Are Stripe webhook signatures verified?

Do Make’s official Stripe modules verify webhook signatures as recommended by Stripe? I can’t seem to find a definitive answer.

Perhaps a better way to word my question is…

Is it possible to verify Stripe webhook signatures (as recommended by Stripe) with a Make webhook?

The process involves computing a hash using the payload. Is that possible?

Hi @Shotster!

What you can do is to use a filter just after the webhook module.
This filter can check for the webhook signature to match a function like SHA256 that you set with the raw data and a key.

Keep in mind that if you use a key in the filter, the key value is stored as plain text. If you want to encrypt the key value, so no one using the Make account can see it, you muy use an encryptor module to do the function.