Skip to content

Compare HMAC of request body with X-Hub-Signature header #21

New issue
New issue
Open
Open
Compare HMAC of request body with X-Hub-Signature header#21
@charlie-s

Description

@charlie-s
charlie-s
opened on Jul 17, 2014

I think it would be smart to generate the HMAC of the request body using the secret key that's set when configuring the webhook and compare it with the X-Hub-Signature header that GitHub sends in the request.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions