plugin-icon

Webhook Signature add-on for Gravity Forms

投稿者: danielboven·
Add a signature HTTP header to webhook requests to prevent man-in-the-middle and replay attacks.
バージョン
1.0
最終更新日時
Feb 17, 2021

This plugin can sign the webhook events sent by the Gravity Forms WebHooks Add-On to your endpoints by including a signature in each event’s X-Gform-Signature header. This allows you to verify that the events were sent by the Gravity Forms add-on, not by a third party. As of right now, you must verify the signatures by manually using your own solution. However, an example of a Node.js (JavaScript) implementation is linked below.

Before you can verify signatures, you need to retrieve your endpoint’s public key (more information at this question).

This plugin uses the same keys for every form and endpoint, meaning that the same keys will be used for every signature generated.

Verification implementations

  • Node.js: See the example on Github.
無料有料プラン
インストールすることで、WordPress.com の利用規約サードパーティプラグイン利用規約に同意したことになります。
最大テスト回数
WordPress 5.6.17
このプラグインをダウンロードして、 サイトに使用できます。