Github-Auto-Deploy Compare HMAC of request body with X-Hub-Signature header

Compare HMAC of request body with X-Hub-Signature header

Open charlie-s opened this issue 10 years ago • 1 comments

I think it would be smart to generate the HMAC of the request body using the secret key that's set when configuring the webhook and compare it with the X-Hub-Signature header that GitHub sends in the request.

Jul 17 '14 22:07 charlie-s

:+1:

Nov 13 '15 21:11 NiclasLindqvist

Github-Auto-Deploy Github-Auto-Deploy copied to clipboard

Compare HMAC of request body with X-Hub-Signature header

Github-Auto-Deploy
Github-Auto-Deploy copied to clipboard