Closed pju- closed 8 years ago
Webhook requests can be validated this way: http://docs.snipcart.com/configuration/json-crawler#validating-the-request
I don't think it would be very hard to add to the plugin.
Thanks @pju- and @couellet! I'll get the plugin updated when I can and close this out.
All set with this update, which includes a bit more cleanup as well. Thanks again for reporting, @pju-, and @couellet for help understanding the validation process.
Hello, it seems there is not authentication taking place with the "order completed" webhook. Is that right? So anyone sending a faked post request can mess with the inventory if one would implement the hook as is?