I'm running a HubSpot application, I can't verify the `X-HubSpot-Signature` for the GET requests in a CRM Extension.
I'm unsure how to treat the query string that is sent with the request.
The original data fetch request makes a request like the following;
GET https://example.com/demo-tickets?userId=12345&userEmail=testuser@example.com&associatedObjectId=78912&associatedObjectType=COMPANY&portalId=9999999&domain=testcompany.com
Source String: yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyyyyyyyGEThttps://www.example.com/webhook_uri The resulting hash would be: eee2dddcc73c94d699f5e395f4b9d454a069a6855fbfa152e91e88823087200e
Being sure to include the query parameters as part of the URI as mentioned previously. If you're more comfortable, you can DM me with the details of your testing so we have specifics to work with from your end.
I faced this for days, even the accepted answer did not work, because it is just copy paste from documentation.
My problem was with the URL. I was taking the URL as provided by Request object by Java, but it was slightly different (encoded) from the URL sent by HubSpot.
To figure out the URL sent by HubSpot, go to your App > Monitoring > CRM Extensions. This is where I found the correct URL and it solved the issue for me.
Source String: yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyyyyyyyGEThttps://www.example.com/webhook_uri The resulting hash would be: eee2dddcc73c94d699f5e395f4b9d454a069a6855fbfa152e91e88823087200e
Being sure to include the query parameters as part of the URI as mentioned previously. If you're more comfortable, you can DM me with the details of your testing so we have specifics to work with from your end.