#son-webhook-signature

I'm not familiar with spring boot unfortunately. What's the actual error you're getting?

I'm getting the signature verification exception. Do you need the stack trace?

Have you logged the signature that's being checked and the signature it's checking against?

The only difference is the network architecture. In staging. The request will go through nginx proxy and pass to BE api

I'm using the stripe Library, so it's impossible for me to catch the process since it will recompile

Hmm, that definitely complicates things. I'm not really sure what to advise if you can't actually check the value of the signature

Let me see if someone else internally has any ideas

Can you check if the endpoint's secret matches?

This will be in your Dashboard’s Webhooks settings (https://dashboard.stripe.com/webhooks). Select an endpoint that you want to obtain the secret for, then click the Click to reveal button.

https://stripe.com/docs/webhooks/signatures

Ah, so the secret key is from there which start with whsec_<something> ? I'm using the one in the dashboard which start with sk_test_<something>

Correct. Have you checked to make sure it's the same one you're using in your test environment?

sk_test_ is your secret API key. This is different from the webhook secret

I'm using the secret_api_key. So just to confirm, in development when testing against cli, the secret key will be same for api and webhook?