plugin-icon

Webhook Signature add-on for Gravity Forms

Add a signature HTTP header to webhook requests to prevent man-in-the-middle and replay attacks.
Version
1.0
Zuletzt aktualisiert
Feb 17, 2021

This plugin can sign the webhook events sent by the Gravity Forms WebHooks Add-On to your endpoints by including a signature in each event’s X-Gform-Signature header. This allows you to verify that the events were sent by the Gravity Forms add-on, not by a third party. As of right now, you must verify the signatures by manually using your own solution. However, an example of a Node.js (JavaScript) implementation is linked below.

Before you can verify signatures, you need to retrieve your endpoint’s public key (more information at this question).

This plugin uses the same keys for every form and endpoint, meaning that the same keys will be used for every signature generated.

Verification implementations

  • Node.js: See the example on Github.
Kostenlosmit kostenpflichtigen Tarifen
Mit deiner Installation stimmst du den Geschäftsbedingungen von WordPress.com sowie den Bedingungen für Drittanbieter-Plugins zu.
Getestet bis
WordPress 5.6.17
Dieses Plugin steht für deine -Website zum Download zur Verfügung.