verify_webhook_signature
Validate incoming MojaWave webhooks by verifying their HMAC-SHA256 signature using the raw request body, signature header, and signing secret to ensure authenticity before processing.
Instructions
Verify a MojaWave webhook's HMAC-SHA256 signature.
Pass the RAW request body (exactly as received), the value of the X-MojaWave-Signature header, and your webhook signing secret. Returns whether the signature is valid — only act on webhook events that verify as valid.
Args: payload: The raw webhook request body (do not re-serialize it). signature: The X-MojaWave-Signature header value. secret: Your webhook signing secret (whsec_...).
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| secret | Yes | ||
| payload | Yes | ||
| signature | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| result | Yes |