Centre d'Aide - Luneo | Luneo Platform

Vérification de signature

// Verify Webhook Signature
const crypto = require('crypto');

function verifyWebhook(payload, signature, secret) {
  const hash = crypto
    .createHmac('sha256', secret)
    .update(payload)
    .digest('hex');
    
  return hash === signature;
}

app.post('/webhooks/luneo', (req, res) => {
  const signature = req.headers['x-luneo-signature'];
  const payload = JSON.stringify(req.body);
  
  if (!verifyWebhook(payload, signature, process.env.WEBHOOK_SECRET)) {
    return res.status(401).send('Invalid signature');
  }
  
  // Process webhook
  res.json({ received: true });
});

⚠️ Important

Toujours vérifier la signature des webhooks pour garantir l'authenticité des requêtes. Ne traitez jamais un webhook sans vérification de signature.

Vérification de signature

// Verify Webhook Signature
const crypto = require('crypto');

function verifyWebhook(payload, signature, secret) {
  const hash = crypto
    .createHmac('sha256', secret)
    .update(payload)
    .digest('hex');
    
  return hash === signature;
}

app.post('/webhooks/luneo', (req, res) => {
  const signature = req.headers['x-luneo-signature'];
  const payload = JSON.stringify(req.body);
  
  if (!verifyWebhook(payload, signature, process.env.WEBHOOK_SECRET)) {
    return res.status(401).send('Invalid signature');
  }
  
  // Process webhook
  res.json({ received: true });
});

⚠️ Important

Toujours vérifier la signature des webhooks pour garantir l'authenticité des requêtes. Ne traitez jamais un webhook sans vérification de signature.

Webhook Security

Vérification de signature

⚠️ Important

Articles liés

Setup

Events

Webhook Security

Vérification de signature

⚠️ Important

Articles liés

Setup

Events