admin/n8n-enterprise-unlocked
1
0
Fork 0
mirror of https://github.com/Abdulazizzn/n8n-enterprise-unlocked.git synced 2025-12-17 18:12:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

Deactivate Asana Trigger webhhook validation

Browse Source
This commit is contained in:
Jan Oberhauser
2020-09-16 23:57:27 +02:00
parent 2fee4396f1
commit b90f4fb3f6
1 changed files with 12 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
packages/nodes-base/nodes/Asana/AsanaTrigger.node.ts
View File

@@ -197,6 +197,7 @@ export class AsanaTrigger implements INodeType {
// that no webhooks are registred anymore
delete webhookData.webhookId;
delete webhookData.webhookEvents;
delete webhookData.hookSecret;
}
return true;
@@ -233,13 +234,17 @@ export class AsanaTrigger implements INodeType {
return {};
}
// Check if the request is valid
// (if the signature matches to data and hookSecret)
const computedSignature = createHmac('sha256', webhookData.hookSecret as string).update(JSON.stringify(req.body)).digest('hex');
if (headerData['x-hook-signature'] !== computedSignature) {
// Signature is not valid so ignore call
return {};
}
// TODO: Had to be deactivated as it is currently not possible to get the secret
// in production mode as the static data overwrites each other because the
// two exist at the same time (create webhook [with webhookId] and receive
// webhook [with secret])
// // Check if the request is valid
// // (if the signature matches to data and hookSecret)
// const computedSignature = createHmac('sha256', webhookData.hookSecret as string).update(JSON.stringify(req.body)).digest('hex');
// if (headerData['x-hook-signature'] !== computedSignature) {
// // Signature is not valid so ignore call
// return {};
// }
return {
workflowData: [