$david | Stripe Developers | Page 1

safe agateBOT Feb 7, 2023, 8:14 PM

#

modern grail Feb 7, 2023, 8:14 PM

#

Metadata for the session will be in the session completed webhook. What metadata are you trying to inspect?

oak raft Feb 7, 2023, 8:15 PM

#

checkout.session.completed?

#

then it must be something wrong in my code

#

StripeSignatureVerificationError: No signatures found matching the expected signature for payload. Are you passing the raw request body you received from Stripe?

#

i am getting this

modern grail Feb 7, 2023, 8:25 PM

#

Ok well that's a different issue, you're encountering issues with webhook signature verification

#

Can you share your webhook endpoint code where you try to verify?

#

And an example event ID

oak raft Feb 7, 2023, 8:26 PM

#

yes

#

const stripewebhook = async (req, res) => {
    const sig = req.headers['stripe-signature']
    console.log(sig)

    let event;

    try {
        event = stripe.webhooks.constructEvent(req.body, sig, endpointSecret)
    } catch (err) {
        console.log(err)
        return res.status(400).send(`Webhook Error: ${err.message}`)
    }

    switch (event.type) {
        case 'checkout.session.completed':
            const session = event.data.object
            console.log(session)
            break
        default:
            console.log(`Unhandled event type ${event.type}`)
    }

    res.send(200)
}

#

2023-02-07 22:24:25   --> payment_intent.succeeded [evt_3MYxiDBUI5OPyd6p17po7g5q]
2023-02-07 22:24:25  <--  [400] POST http://localhost:3500/webhook/v1/stripe [evt_3MYxiDBUI5OPyd6p17po7g5q]

modern grail Feb 7, 2023, 8:33 PM

#

It looks like you're probably using Express. Are hyou sure you're passing in the raw request body, instead of parsed json?

oak raft Feb 7, 2023, 8:33 PM

#

oh

#

// MIDDLEWARE
connectDB()
app.use(logger)
app.use(credentials)
app.use(parseIp)
app.use(cors(corsOptions))
app.use(express.urlencoded({ extended: false }))
app.use(express.json())
app.use(cookieParser())



// ROUTES
app.use('/register', require('./routes/register'))
app.use('/auth',     require('./routes/auth'))
app.use('/logout',   require('./routes/logout'))
app.use('/webhook' , require('./routes/webhook'))

modern grail Feb 7, 2023, 8:34 PM

#

app.use(express.json())

oak raft Feb 7, 2023, 8:34 PM

#

i should put app.use('/webhook before express.json

#

?

modern grail Feb 7, 2023, 8:34 PM

#

Yea, you need to make sure the webhook route is excluded from any json parsing, or that you first preserve the raw request body

oak raft Feb 7, 2023, 8:34 PM

#

got it

modern grail Feb 7, 2023, 8:34 PM

#

Up to you how you want ot achieve that, there are many ways

oak raft Feb 7, 2023, 8:35 PM

#

it's still

#

not working

#

do i have to use

#

express.raw({type: 'application/json'})

#

app.use('/webhook', express.raw({type: 'application/json'}), require('./routes/webhook'))

#

works now

#

sweet

modern grail Feb 7, 2023, 8:37 PM

#

That's another option yes

#$david