Webhook verification failed due to special characters in payload

tech-zoom_zp · September 27, 2023, 5:15am

Thanks for reply!

I tried on my end again, but un-successful.
Could you tell me what is wrong with my python code? It fails only when the request body includes an Unicode emoji.

The python code I use for verification.

import hmac
import json
from hashlib import sha256

class HasVerifiedZoomSignature(BasePermission):
    def has_permission(self, request, view):
        secret_token = settings.ZOOM["SECRET_TOKEN"]
        timestamp = request.headers.get("x-zm-request-timestamp")
        signature = request.headers.get("x-zm-signature")

        json_request = json.dumps(request.data, separators=(",", ":"), ensure_ascii=False)
        message = f"v0:{timestamp}:{json_request}"
        hashed_message = f"v0={hmac.new(secret_token.encode(), message.encode(), sha256).hexdigest()}"

        result = signature == hashed_message
        return result

Edit: I believe the case is the same as this one (the solution is not explained in the thread, though).

Topic		Replies	Views
Unable to verify zoom event webhooks if body contains emojis API and Webhooks webhooks	5	431	February 13, 2023
Signature Verification Issue with Webhook API and Webhooks	4	523	May 10, 2023
Event notification endpoint URL - URL validation failed. Try again later Webhook Only App Webinars	22	4896	November 16, 2023
Unable to verify zoom's web hook request with Zoom's header API and Webhooks webhooks , recording	15	659	July 15, 2023
Implementing client secret validation Events webhooks	3	1452	March 1, 2023

Webhook verification failed due to special characters in payload

Related Topics