https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/73758#M45729 <P>I have a webhooks endpoint setup in a node project build using Hapi.js. I am using the crypto module to generate the hash to verify the payload. Everything seems to work fine when I do a test webhook, the hash I generate matches the hash in the headers. However, when I turn on the webhook and subscribe to the '<SPAN>net.authorize.payment.authorization.created' event the hashes don't seem to match. I don't know what I could be doing wrong because the test event works fine, the only difference I can thing of is that the test event is an authCapture instead of an authorization.created. I don't know why that would make a difference, but here is my code.</SPAN></P><P>&nbsp;</P><PRE>const isValidPayload = (request) =&gt; { const header = _.get('headers.x-anet-signature', request); const payload = JSON.stringify(request.payload); const hash = crypto.createHmac('sha512', config.get('authorizenet:signature_key')) .update(payload) .digest('hex'); return header === `sha512=${hash.toUpperCase()}`; };</PRE><P><SPAN>I've been banging my head against a wall with this problem for the last week. If anyone has some insight please let me know. Thanks.</SPAN></P><P>&nbsp;</P><P><SPAN>edit: I should probably mention this is in a sandbox environment as well</SPAN></P> Tue, 27 Oct 2020 19:38:34 GMT nbreaux 2020-10-27T19:38:34Z https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/73758#M45729 <P>I have a webhooks endpoint setup in a node project build using Hapi.js. I am using the crypto module to generate the hash to verify the payload. Everything seems to work fine when I do a test webhook, the hash I generate matches the hash in the headers. However, when I turn on the webhook and subscribe to the '<SPAN>net.authorize.payment.authorization.created' event the hashes don't seem to match. I don't know what I could be doing wrong because the test event works fine, the only difference I can thing of is that the test event is an authCapture instead of an authorization.created. I don't know why that would make a difference, but here is my code.</SPAN></P><P>&nbsp;</P><PRE>const isValidPayload = (request) =&gt; { const header = _.get('headers.x-anet-signature', request); const payload = JSON.stringify(request.payload); const hash = crypto.createHmac('sha512', config.get('authorizenet:signature_key')) .update(payload) .digest('hex'); return header === `sha512=${hash.toUpperCase()}`; };</PRE><P><SPAN>I've been banging my head against a wall with this problem for the last week. If anyone has some insight please let me know. Thanks.</SPAN></P><P>&nbsp;</P><P><SPAN>edit: I should probably mention this is in a sandbox environment as well</SPAN></P> Tue, 27 Oct 2020 19:38:34 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/73758#M45729 nbreaux 2020-10-27T19:38:34Z https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/83833#M52867 <P><SPAN>Hello, did you ever resolve this issue? I am unfortunately at a loss for days with the same problem</SPAN></P> Thu, 18 Aug 2022 17:52:36 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/83833#M52867 three60sb 2022-08-18T17:52:36Z https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/85035#M53502 <P>Please response if you ever resolved the above problem</P> Thu, 24 Nov 2022 13:00:51 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/Verify-webhook-payload/m-p/85035#M53502 DivyaArun 2022-11-24T13:00:51Z