JavaScript must be installed and enabled to use these boards.
Your browser appears to have JavaScript disabled or does not support JavaScript. Please refer to your browser's help file to determine how to enable JavaScript.
Sep 2, 2020 7:35 PM
I am trying to validate this in my java app like
String sha256 = request.getHeader("X-HubSpot-Signature"); String requestBody = request.getReader().lines().collect(Collectors.joining(System.lineSeparator())); String clientSecret = "xxxxxx"; String source = clientSecret + requestBody; MessageDigest digest = MessageDigest.getInstance("SHA-256"); byte[] hash = digest.digest(source.getBytes(StandardCharsets.UTF_8)); String encoded = Base64.getEncoder().encodeToString(hash); return sha256.equals(encoded);
This always returns false, can anyone see what's the issue here. I have redacted the client-secret.
Sep 8, 2020 2:44 PM
Hey @surekhas ,
I admit that I am unfamiliar with programming in java, but looking at the code you have here, I am not seeing the http method or the URI anywhere.
Referencing the v2 request validation docs, It specifies that you will need a string with the following concatenated
Client secret + http method + URI + request body (if present)
Client secret
http method
URI
request body
Hope this helps,
Sep 8, 2020 2:58 PM
Hey @dennisedson , I am using the version v1, so followed https://legacydocs.hubspot.com/docs/faq/v1-request-validation
Sep 8, 2020 3:00 PM
I could get it working with below code
final String sha256 = request.getHeader("X-HubSpot-Signature"); final String requestBody = request.getReader().lines().collect(Collectors.joining()); final String source = clientSecret + requestBody; final String encoded = Hashing.sha256().hashString(source, StandardCharsets.UTF_8).toString(); return sha256.equals(encoded);
Fresh content delivered to your inbox every month.
