Currently Shopware is using GET URLs with the parameters location-id and privileges these parameters are missing in the validation funtion, therefore the calculates hashes are wrong. Following a proposed fix in the file WebhookAuthenticator
public static function authenticateGetRequest(string $shopSecret): bool
{
$queryString = $_SERVER['QUERY_STRING'];
$queries = [];
Currently Shopware is using GET URLs with the parameters
location-id
andprivileges
these parameters are missing in the validation funtion, therefore the calculates hashes are wrong. Following a proposed fix in the fileWebhookAuthenticator
public static function authenticateGetRequest(string $shopSecret): bool { $queryString = $_SERVER['QUERY_STRING']; $queries = [];