Customize response

[MarJose123]

Hi, it is possible to customize the error response to invalid signature? Instead of 500 I will customize it to 401, like for Xero accounting app.

[freekmurze]

You could listen for the InvalidSignatureEvent and throw the exception you want there.

[kasperwandahl]

Hi @freekmurze I was just looking into this exact thing as a company I'm working with received the 500 Internal Server Error and pointed their fingers at me, when the issue was in their side not sending the signature. I think a 401 Unauthorized is a better response code as it's their input which fails to pass validation. Would you be willing to consider this change?

[freekmurze]

Send a PR with tests, and I'll consider merging it in.

[mbroadhead]

@kasperwandahl @whoami213
You could also just override the rendering of the exception in app/Exceptions/Handler.php:

use Spatie\WebhookClient\Exceptions\WebhookFailed;
 
/**
 * Register the exception handling callbacks for the application.
 *
 * @return void
 */
public function register()
{
    $this->renderable(function (WebhookFailed $e, $request) {
         if ($request->is('api/*') && $e->getMessage() == 'The signature is invalid.') {
             return response()->json(['message' => $e->getMessage()], 401);
         }
    });
}