Skip to content

Commit

Permalink
Update packages/documentation/src/content/docs/integration/requiremen…
Browse files Browse the repository at this point in the history
…ts/webhook-events.mdx

Co-authored-by: Max Kurapov <[email protected]>
  • Loading branch information
brad-dow and mkurapov authored Nov 21, 2024
1 parent 3b71af3 commit cc18ff0
Showing 1 changed file with 1 addition and 1 deletion.
Original file line number Diff line number Diff line change
Expand Up @@ -141,7 +141,7 @@ Additionally, the [local playground](/integration/playground/overview) contains

## Verify webhook signatures

To protect your endpoint from unauthorized or spoofed requests, Rafiki supports an optional, but highly recommended, webhook signature verification process. By enabling signature verification, you can ensure that webhook requests are genuinely from Rafiki.
To protect your endpoint from unauthorized or spoofed requests, Rafiki supports an optional, but highly recommended, webhook signature verification process. By enabling signature verification, you can ensure that webhook requests are genuinely from Rafiki, and have not been tampered with.

Each webhook request includes a `Rafiki-Signature` header with a timestamp, version, and signature digest. If your instance is configured with both the `SIGNATURE_SECRET` (to generate the signature) and the `SIGNATURE_VERSION` (to set the version, defaults to v1) environment variables, you can verify the authenticity of each webhook request using the steps below.

Expand Down

0 comments on commit cc18ff0

Please sign in to comment.