references https://github.com/signalwire/cloud-product/issues/18868
Background
Customers receive an HMAC signing key on their webhook requests, and they can use this to verify the webhook is secure.
CXML and the JS SDKs offer a through a validateRequest method so customers can pass the URI, body, and signing key without having to do the verification themselves:
https://signalwire.com/docs/platform/webhooks#verify-webhook-signature
https://github.com/signalwire/signalwire-legacy-js/blob/3f61f43626b7f86f6144f12bfd3cf8e759fe8701/packages/web-api/src/validateRequest.ts#L13
https://github.com/signalwire/signalwire-typescript/blob/11c5e3fa210be25e4e087bce06ef167d0ef25211/src/WebhookValidator.ts#L373
Problem
Customers would like to see this functionality in the Server SDKs as well, as it simplifies the signature validation process.
references https://github.com/signalwire/cloud-product/issues/18868
Background
Customers receive an HMAC signing key on their webhook requests, and they can use this to verify the webhook is secure.
CXML and the JS SDKs offer a through a
validateRequestmethod so customers can pass the URI, body, and signing key without having to do the verification themselves:https://signalwire.com/docs/platform/webhooks#verify-webhook-signature
https://github.com/signalwire/signalwire-legacy-js/blob/3f61f43626b7f86f6144f12bfd3cf8e759fe8701/packages/web-api/src/validateRequest.ts#L13
https://github.com/signalwire/signalwire-typescript/blob/11c5e3fa210be25e4e087bce06ef167d0ef25211/src/WebhookValidator.ts#L373
Problem
Customers would like to see this functionality in the Server SDKs as well, as it simplifies the signature validation process.