webhooks

package

v0.5.1 Latest Latest Go to latest Published: Jun 23, 2022 License: MIT Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/gocancel/gocancel-go

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func ComputeSignature(t time.Time, payload []byte, secret string) []byte
func ValidatePayload(payload []byte, header string, secret string) error
func ValidatePayloadIgnoringTolerance(payload []byte, header string, secret string) error
func ValidatePayloadWithTolerance(payload []byte, header string, secret string, tolerance time.Duration) error

Constants ¶

View Source

const (
	// DefaultTolerance indicates that signatures older than this will be rejected.
	DefaultTolerance time.Duration = 300 * time.Second
)

Variables ¶

View Source

var (
	ErrInvalidHeader    = errors.New("webhook has invalid Gocxl-Signature header")
	ErrNoValidSignature = errors.New("webhook had no valid signature")
	ErrNotSigned        = errors.New("webhook has no Gocxl-Signature header")
	ErrTooOld           = errors.New("timestamp wasn't within tolerance")
)

This block represents the list of errors that could be raised when using the webhook package.

Functions ¶

func ComputeSignature ¶

func ComputeSignature(t time.Time, payload []byte, secret string) []byte

ComputeSignature computes a webhook signature using GoCancel's v1 signing method.

func ValidatePayload ¶

func ValidatePayload(payload []byte, header string, secret string) error

ValidatePayload validates the payload against the Gocxl-Signature header using the specified signing secret. Returns an error if the body or Gocxl-Signature header provided are unreadable, if the signature doesn't match, or if the timestamp for the signature is older than DefaultTolerance.

func ValidatePayloadIgnoringTolerance ¶

func ValidatePayloadIgnoringTolerance(payload []byte, header string, secret string) error

ValidatePayloadIgnoringTolerance validates the payload against the Gocxl-Signature header header using the specified signing secret. Returns an error if the body or Gocxl-Signature header provided are unreadable or if the signature doesn't match. Does not check the signature's timestamp.

func ValidatePayloadWithTolerance ¶

func ValidatePayloadWithTolerance(payload []byte, header string, secret string, tolerance time.Duration) error

ValidatePayloadWithTolerance validates the payload against the Gocxl-Signature header using the specified signing secret and tolerance window. Returns an error if the body or Gocxl-Signature header provided are unreadable, if the signature doesn't match, or if the timestamp for the signature is older than the specified tolerance.

Types ¶

This section is empty.

Source Files ¶

View all Source files

payload.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL