jcalentine | Stripe Developers | Page 1

steel waspBOT Oct 13, 2023, 2:07 AM

#

grim zephyr Oct 13, 2023, 2:08 AM

#

Hi there, can you tell me more about the problems that you are trying to resolve?

thorny spire Oct 13, 2023, 2:08 AM

#

ok so I am currently trying to implement a webhook after a successful payment.

#

I am getting successful payments with no issues but the webhook is giving me 403 errors

grim zephyr Oct 13, 2023, 2:10 AM

#

OK, do you have the webhook event ID?

thorny spire Oct 13, 2023, 2:10 AM

#

on the checkout.session.completed

#

yes one sec

#

we_1O0E7uJ4gBUKtXvTynXD3xs6

#

the payments are all succeeding but the webhooks are not.

grim zephyr Oct 13, 2023, 2:11 AM

#

Ok, this is your latest chekout.session.completed event https://dashboard.stripe.com/test/events/evt_1O0adqJ4gBUKtXvTjXdMqEiz

Stripe Login | Sign in to the Stripe Dashboard

Sign in to the Stripe Dashboard to manage business payments and operations in your account. Manage payments and refunds, respond to disputes and more.

thorny spire Oct 13, 2023, 2:12 AM

#

and i need the webhook to update my database after a successful checkout session

grim zephyr Oct 13, 2023, 2:12 AM

#

and this event is still pending because your webhook endpoint responded 400, and the response from your server says Invalid Stripe Signature

thorny spire Oct 13, 2023, 2:12 AM

#

yes

grim zephyr Oct 13, 2023, 2:12 AM

#

I'd suggest you to double check the webhook secret that you use in your webhook integration.

thorny spire Oct 13, 2023, 2:12 AM

#

that was because I tried something else

#

look at the one prior

#

one sec

#

let me do it again i just re-deployed my test server

#

here you go: we_1O0E7uJ4gBUKtXvTynXD3xs6

grim zephyr Oct 13, 2023, 2:16 AM

#

Was there a new event? I don't see any

thorny spire Oct 13, 2023, 2:16 AM

#

yeah one sec

#

you should see one 10:14:30pm

grim zephyr Oct 13, 2023, 2:17 AM

#

No I don't see any, the latest event occured at
2023-10-13 02:14:29 UTC

thorny spire Oct 13, 2023, 2:19 AM

#

can you check now?

grim zephyr Oct 13, 2023, 2:19 AM

#

Still the same.

#

Do you have the event ID? it starts with evt_

thorny spire Oct 13, 2023, 2:22 AM

#

evt_1O0axoJ4gBUKtXvTnnHa84Mx

#

here is the one prior: "id": evt_1O0atVJ4gBUKtXvT4pbzZDke

grim zephyr Oct 13, 2023, 2:23 AM

#

Your server returned 403 this time

  <h1>Forbidden <span>(403)</span></h1>
  <p>CSRF verification failed. Request aborted.</p>```

thorny spire Oct 13, 2023, 2:23 AM

#

yes

#

but my webhook is set with a csrf_exempt decorator because it is not required correct?

grim zephyr Oct 13, 2023, 2:25 AM

#

Why do you want to set a CSRF verification in your webhook server?

thorny spire Oct 13, 2023, 2:26 AM

#

I do not. I want to wait until i get a checkout.session.completed. Then i want to flag a user from standard to premium user in the database

#

i have this in my view: @csrf_exempt
def stripe_webhook(request):

grim zephyr Oct 13, 2023, 2:28 AM

#

OK, then I'd suggest you to fix this CSRF problem and try again.

thorny spire Oct 13, 2023, 2:29 AM

#

i am confused. So i need to provide a csrf token for the webhook?

grim zephyr Oct 13, 2023, 2:31 AM

#

No, I don't think you need to do that. I mean you should remove the CSRF verification for webhook events sent from Stripe.

thorny spire Oct 13, 2023, 3:01 AM

#

what about this event "id": "evt_1O0bbBJ4gBUKtXvT5FBL6Kfa",

#jcalentine