Validate shopify webhooks in bubble

tech16 · 2024-09-03T08:41:40.530Z

Hi All,

I am receiving webhooks from shopify in bubble and I want to validate them and for some reason bubble is not including headers in raw body when I reference RequestData.rawbodytext because of which validation is failing.

Is there a way I can add headers along with body before passing it to HMAC SHA 256?

jmalmeida · 2024-09-04T09:21:06.099Z

You could use a service like https://hookdeck.com/ validate the wehook there and then comunicate with your bubble app.

tech16 · 2024-09-09T04:20:30.264Z

Thanks

randomanon · 2024-09-09T05:38:04.243Z

But then how would you validate the hookdeck request to your app? I’ve seen @MattN recommend this as well in a video but don’t understand how it doesn’t just create the same issue.

tech16 · 2024-09-09T06:11:10.536Z

you can generate an API token in bubble and pass it from hookdeck

randomanon · 2024-09-09T07:27:25.468Z

No thanks, would never store my API token in a random 3rd party service. The way Bubble works, you can’t assign granular control to API tokens, it gives full admin access to the entire database. If you want to do this, you’d be better off generating a metadata field with a random string and checking it against that.

system · 2024-11-12T08:42:30.368Z

This topic was automatically closed after 70 days. New replies are no longer allowed.