Hi all - I am using the Stripe API for my app. I have connected to Stripe using the API connector directly (which works great) as opposed to using the Bubble Stripe plugin. In order to listen to Stripe events (e.g. a new subscription to my app is confirmed), I have set up webhooks in Bubble, which again works great.
Now, I want to make sure that the events sent to my webhooks are indeed coming from Stripe (and not another potentially rogue service that is sending data to make me think they are Stripe so I make changes in my database).
In order to verify that I am really listening to events sent by Stripe, Stripe can sign their webhook events (see here). Does anyone know how I can setup my webhooks in Bubble to verify the Stripe signature?
I read through this forum post already which addresses this question but as far as I understand, no clear answers came out of the discussion and the topic is now closed.