Matiss/xarticleaudio
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add HMAC webhook signature verification utilities

Browse Source
This commit is contained in:
Codex
2026-02-18 12:33:58 +00:00
parent 3c0584a057
commit 53e0daecaf
2 changed files with 73 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
test/signature.test.js Normal file
View File

@@ -0,0 +1,33 @@
"use strict";
const test = require("node:test");
const assert = require("node:assert/strict");
const { hmacSHA256Hex, verifySignature } = require("../src/lib/signature");
test("verifies valid signature", () => {
const payload = JSON.stringify({ hello: "world" });
const secret = "topsecret";
const sig = hmacSHA256Hex(payload, secret);
assert.equal(
verifySignature({ payload, secret, signature: `sha256=${sig}` }),
true,
);
});
test("rejects invalid signature", () => {
const payload = JSON.stringify({ hello: "world" });
const secret = "topsecret";
assert.equal(
verifySignature({ payload, secret, signature: "sha256=deadbeef" }),
false,
);
});
test("rejects missing signature", () => {
const payload = "abc";
const secret = "topsecret";
assert.equal(verifySignature({ payload, secret, signature: "" }), false);
});