Verifying webhook response

Hirthikraj · ‎Mar 31, 2022

Hi Team,

I need to verify the webhook response received from HubSpot.

There are three methods to verify the response which is v1,v2 and v3.

Can I verify the response in any method or should i verify the response with the version included in X-HubSpot-Signature-Version ?

If yes, is value in the X-HubSpot-Signature-Version header randomly generated ?

Thank you.

RMones · ‎Apr 1, 2022

Hi @Hirthikraj ,

No for the three types of security headers you have three different solutions to check if the webhook call is valid.. So you can't use v1 header with the check for v2..
You can use the header HubSpot-Signature-Version to check which version you need.

And no the header versions are not generated but always the same for the type of webhook type call..

Webhook from your app
Webhook from an Workflow

CRM Card

Regards Ronald

View solution in original post

RMones · ‎Apr 1, 2022

Hi @Hirthikraj ,

No for the three types of security headers you have three different solutions to check if the webhook call is valid.. So you can't use v1 header with the check for v2..
You can use the header HubSpot-Signature-Version to check which version you need.

And no the header versions are not generated but always the same for the type of webhook type call..

Webhook from your app
Webhook from an Workflow

CRM Card

Regards Ronald

dennisedson · ‎Apr 1, 2022

@RMones ,

Any thoughts on this?

APIs & Integrations