sébastien | Stripe Developers | Page 1

fleet spadeBOT Nov 21, 2022, 4:27 PM

#

frail egret Nov 21, 2022, 4:28 PM

#

Hello 👋
Are you looking for the payment itself or just the checkout session?

night crest Nov 21, 2022, 4:33 PM

#

I'm trying to see if in my endpoint I can add a check and verify my public (or secret) key. Is this info (or another that could be useful) found in the request sent by Stripe in POST?

frail egret Nov 21, 2022, 4:35 PM

#

Are you just trying to make sure that the checkout session came from your own integration?

#

The checkout session ID should look something like cs_test_xxxxx (cs_live_xxxx for livemode)
which you can retrieve using your secret key on server-side which should allow you to confirm if the checkout session belongs to your account

night crest Nov 21, 2022, 4:38 PM

#

Ok, thanks

frail egret Nov 21, 2022, 4:40 PM

#

A better way would be to verify webhook signatures
https://stripe.com/docs/webhooks/signatures

Our SDKs have built-in support for verifying webhook events

night crest Nov 21, 2022, 4:43 PM

#

I will look into it. Thank you again and have a good evening

#sébastien