jignesh_74410 | Stripe Developers | Page 1

woeful crystalBOT Feb 23, 2024, 1:55 PM

#

Hello! We'll be with you shortly. Below are links to other discussions we've had with you in the past week in case you want to review that information. If your question is related to one of these previous discussions, please provide a comprehensive summary of the current state and what you need help with now. We help many users simultaneously, so a summary allows us to resolve your issue as soon as possible.

jignesh_74410, 29 minutes ago, 22 messages
jignesh_74410, 2 days ago, 59 messages
jignesh_74410, 2 days ago, 26 messages

shell locust Feb 23, 2024, 1:55 PM

#

You would just ignore the event if livemode = false on the event object for your production webhook

rugged thorn Feb 23, 2024, 1:56 PM

#

But we can construct the webhook event object only after validating the Stripe-Signature header, then how would we know that which signature should be used for verification

#

String stripeSig = httpServletRequest.getHeader("Stripe-Signature"); Event event = Webhook.constructEvent(payload, stripeSig, webhookSecret);

#

So this is the standard code that I am using

#

as we can see, the Event object is only generated after signature is verified

#

we would have different signatures for livemode and testmode

shell locust Feb 23, 2024, 1:58 PM

#

Not true exactly

#

You can get the event data becore verifying signature

#

See here: https://docs.stripe.com/webhooks/quickstart?lang=java

#jignesh_74410