For verification, the incoming websub document's signature is a number represented as hex string. In the code, only the string representations are compared, not the actual value. This can lead to problems if the incoming signature isn't all lower case.
For verification, the incoming websub document's signature is a number represented as hex string. In the code, only the string representations are compared, not the actual value. This can lead to problems if the incoming signature isn't all lower case.