warre002 | Stripe Developers | Page 1

limpid lodgeBOT Oct 21, 2022, 8:41 PM

#

gentle wolf Oct 21, 2022, 8:42 PM

#

Hi there! It's pretty uncommon to verify webhook signatures manually.

#

Official Stripe SDKs do signature verification for you: https://stripe.com/docs/webhooks/signatures#verify-official-libraries

uncut jungle Oct 21, 2022, 8:43 PM

#

Yes, it is with the Stripe SDK?

#

This is the error it returned: StripeSignatureVerificationError: No signatures found matching the expected signature for payload. Are you passing the raw request body you received from Stripe?

#

The route function starts like this: router.post('', express.raw({type: 'application/json'}), (request, response) => {

and in the main file I've this: app.use((req, res, next) => { if (req.originalUrl === '/webhooks') { next(); } else { express.json()(req, res, next); } });

#

So based on forum questions and documentation I've read this should work but it doesn't for some reason

gentle wolf Oct 21, 2022, 8:47 PM

#

ah, sorry about missing that!

uncut jungle Oct 21, 2022, 8:47 PM

#

No worries

gentle wolf Oct 21, 2022, 8:48 PM

#

Looking at this line:
event = stripe.webhooks.constructEvent(request.rawBody, sig, endpointSecret)
Do you still receive an error if you change this to:
event = stripe.webhooks.constructEvent(request.body, sig, endpointSecret) ?

#

Also, I assume the value for endpointSecret matches the signing secret for this endpoint, as it's displayed in the Stripe Dashboard (Developers > Webhooks)?

uncut jungle Oct 21, 2022, 8:52 PM

#

ugh, thank you. a week of problems fixed in 2 minutes haha

gentle wolf Oct 21, 2022, 8:53 PM

#

Glad to hear it's fixed!

#warre002