.letscode | Stripe Developers | Page 1

tawdry pewterBOT Jul 27, 2023, 2:39 PM

#

fast bridge Jul 27, 2023, 2:40 PM

#

anything i missed?

torn breach Jul 27, 2023, 2:40 PM

#

Hi there. Did everything work when you were testing with the same code in test mode?

#

Or did you just start in prod?

fast bridge Jul 27, 2023, 2:41 PM

#

yes same code with different webhook id and url (dev server)

#

can i provide subscription id or signature,

#

?

torn breach Jul 27, 2023, 2:42 PM

#

Don't provide signature

#

Can you send the event id of the event that got the above error?

fast bridge Jul 27, 2023, 2:42 PM

#

sure

#

evt_1NYVHVFG3Dh3H5V4t8tUfia4

#

can you please take high priority as it's in production? Sorry to bother

torn breach Jul 27, 2023, 2:52 PM

#

Looking now

fast bridge Jul 27, 2023, 2:52 PM

#

@torn breach any update?

torn breach Jul 27, 2023, 2:52 PM

#

Discord is busy, so I'll get to you when I can

#

There's no response body for the request we made to your endpoint

#

Can you paste the exact error you saw in your server logs?

fast bridge Jul 27, 2023, 3:32 PM

#

No signatures found matching the expected signature for payload

#

this is message i'm reciving in code

#

} catch (SignatureVerificationException e) {
log.info("Failed signature verification");
log.info(e.getMessage());
log.info("end of stripeWebhook");

#

code block to print error

#

let me know if any changes need to get more details

torn breach Jul 27, 2023, 3:34 PM

#

And you confirmed the webhook signing secret you're using matches the LIVE mode one from the dashboard by printing it out in that block?

fast bridge Jul 27, 2023, 3:34 PM

#

log.info("sigHeader: " + sigHeader);
log.info("endpointSecret: "+endpointSecret);

#

these two i'm printin

#

signature header printing long and ( t=1690472055,v1=cacd073d1************************23b3a765)

#

it matching with code and dashboard

torn breach Jul 27, 2023, 3:40 PM

#

Don't paste the endpoint secret, but does that match as well?

fast bridge Jul 27, 2023, 3:40 PM

#

yes.. it's partial end point and matching with code and webhook

torn breach Jul 27, 2023, 3:41 PM

#

Can you check that there's no whitespace in the secret (like a trailing or leading space or some character)?

#

That's a common cause for signature verification errors

fast bridge Jul 27, 2023, 3:42 PM

#

hope this is the right way to verify in code

#

event = Webhook.constructEvent(payload, sigHeader, endpointSecret);

#

verified space also, not found in keys

#

what are the alternative ways to verify this issue?

tawdry pewterBOT Jul 27, 2023, 3:46 PM

#

cyan solar Jul 27, 2023, 3:47 PM

#

👋 hopping in here to help out

fast bridge Jul 27, 2023, 3:47 PM

#

okay.. looks like taking time.. can i change keys and try?

#

@cyan solar suggest

cyan solar Jul 27, 2023, 3:49 PM

#

There isn't really a way to roll the webhook endpoint keys, so ifyou want to ttry changing keys you'd have to create a new endpoint in the dashboard

fast bridge Jul 27, 2023, 3:49 PM

#

yes

#

know

#

let me try taht

cyan solar Jul 27, 2023, 3:49 PM

#

I have a couple of questions - did you confirm that the raw payload looks correct (when you log payload)

fast bridge Jul 27, 2023, 3:49 PM

#

yes

cyan solar Jul 27, 2023, 3:49 PM

#

and do you have an event ID I can take a look at (just want to see if I can see anything)

fast bridge Jul 27, 2023, 3:50 PM

#

evt_1NYVHVFG3Dh3H5V4OZj9ddWw

cyan solar Jul 27, 2023, 3:55 PM

#

Are you 100% sure this is failing at signature verification? Is it possible it's throwing the error after signature verification passes?

fast bridge Jul 27, 2023, 4:09 PM

#

found the issue: i mentioned we_<key> instead of whsec_<key>

#

testing

cyan solar Jul 27, 2023, 4:11 PM

#

Aha, that would definitely do it

fast bridge Jul 27, 2023, 4:11 PM

#

working

#

thank you

#.letscode