Siva_K-webhook-signature | Stripe Developers | Page 1

weary oracle Jul 13, 2022, 11:22 AM

#

Hey, you'd verify the signature in the event headers: https://stripe.com/docs/webhooks/signatures

Check the webhook signatures

Verify the events that Stripe sends to your webhook endpoints.

zealous dagger Jul 13, 2022, 11:24 AM

#

We are using the Salesforce system

#

I didn't rreceive my webhook secreate key in the header

#

of Event

weary oracle Jul 13, 2022, 11:26 AM

#

Your secret key is in the Dashboard page of the webhook

#

The event will include a Stripe-Signature header that you verify using that signing secret

zealous dagger Jul 13, 2022, 11:27 AM

#

I got the webhook secret from dashboard not sure how to verify the webhook event header

#

do I need to make a API call to verify it>

#

?

weary oracle Jul 13, 2022, 11:28 AM

#

That document outlines the process. Either using our client libraries or doing it manually!

zealous dagger Jul 13, 2022, 11:28 AM

#

Here is the header of webhook event

#

RestRequest:[headers={Accept=/; q=0.5, application/xml, Cache-Control=no-cache, CipherSuite=ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 443, Content-Type=application/json; charset=UTF-8, Host=webhookstripe-developer-edition.ap27.force.com, Stripe-Signature=t=1657710788,v1=fc8cf4406ba361d3bbd49b67ee489a084950575b5ce4ac26a8177b3bb991b44c,v0=4ad7961279e7d048191f2cd7999742b81545f7c5639f8f57621c2c264edec7e6, User-Agent=Stripe/1.0 (+https://stripe.com/docs/webhooks), X-B3-Sampled=0, X-B3-SpanId=3490f1d650502658, X-B3-TraceId=3490f1d650502658, ...}, httpMethod=POST, params={}, remoteAddress=13.235.122.149, requestBody=Blob[8722], requestURI=/api/stripe/webhooks, resourcePath=/services/apexrest/api/stripe/webhooks]

#

webhook secrete

weary oracle Jul 13, 2022, 11:29 AM

#

You shouldn't share your whsec_xxx

#

Ok, and are you using one of our SDKs?

zealous dagger Jul 13, 2022, 12:50 PM

#

no

elder grove Jul 13, 2022, 12:50 PM

#

ok, so what's the question now?

#Siva_K-webhook-signature