louislegourmet | Stripe Developers | Page 1

quartz lanternBOT Jul 11, 2023, 3:07 PM

#

robust trout Jul 11, 2023, 3:07 PM

#

Hi there

stray robin Jul 11, 2023, 3:07 PM

#

Hi

#

Sorry I didn't see your message previously

robust trout Jul 11, 2023, 3:08 PM

#

Okay so if you are using the Stripe CLI are you using the Webhook Secret that the CLI gave you?

#

No worries!

stray robin Jul 11, 2023, 3:08 PM

#

Yes

#

I even printed it and checked that they are the same

#

I can show you the logs if you want

robust trout Jul 11, 2023, 3:09 PM

#

That's okay, I believe you.

#

If that is the case then it is most likely an issue with not having the raw body of the request

#

Most of the time this means something in your framework is manipulating the raw body before this verification occurs

#

How are you constructing your payload?

stray robin Jul 11, 2023, 3:10 PM

#

Mmh...I am using tomcat to deploy the java app and test it perhaps there is something to do with it?

#

String payload = request.getReader().lines().collect(Collectors.joining(System.lineSeparator()));
String sigHeader = request.getHeader("Stripe-Signature");

#

This is how I define payload

robust trout Jul 11, 2023, 3:13 PM

#

Hmm yeah I would assume that is the issue then

#

You are going to want to look at that framework and see how you can get the raw body of the request

#

You can see in our webhook builder sample (https://stripe.com/docs/webhooks/quickstart?lang=java) that we just do String payload = request.body();

#

To grab the raw body immediately

stray robin Jul 11, 2023, 3:16 PM

#

So I should just replace the request.getReader() by request.body() ?

robust trout Jul 11, 2023, 3:16 PM

#

Depends on your framework

#

But yeah I'd try that

stray robin Jul 11, 2023, 3:17 PM

#

I am not using spark but tomcat

#

So the request is a ```HttpServletRequest````object

#

There is no .body() method I am afraid :/

robust trout Jul 11, 2023, 3:18 PM

#

Yeah I'm not familiar with tomcat but you will likely want to look at their docs for how to get the raw body

stray robin Jul 11, 2023, 3:19 PM

#

https://stackoverflow.com/questions/8100634/get-the-post-request-body-from-httpservletrequest

Yeah, I looked at this and it seems pretty similar to what I had written

Stack Overflow

Get the POST request body from HttpServletRequest

I am trying to get the whole body from the HttpServletRequest object.

The code I am following looks like this:

if ( request.getMethod().equals("POST") )
{
StringBuffer sb = new StringBuffer()...

#

(first answer)

#

It seems like String payload = request.getReader().lines().collect(Collectors.joining(System.lineSeparator()));

allows mee to directly access the raw body of the request

robust trout Jul 11, 2023, 3:27 PM

#

Think https://stackoverflow.com/questions/5023718/how-to-retrieve-raw-post-data-from-httpservletrequest-in-java is what you want actually

#

Pretty sure you want the byte stream

stray robin Jul 11, 2023, 3:31 PM

#

Oh okay I will try that then thank you

#

Thank you so much

#

This worked !!!

#louislegourmet