Docs: New example of how to verify a webhook when framework does not …

…support PSR7 (#53)
PaddleHQ · May 1, 2024 · 9549153 · 9549153
1 parent bb0339f
commit 9549153
Show file tree

Hide file tree

Showing 2 changed files with 27 additions and 1 deletion.
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -1 +1 @@
-* @PaddleHQ/dx
+* @PaddleHQ/developer-experience
diff --git a/examples/webhook_verification_PSR7.php b/examples/webhook_verification_PSR7.php
@@ -0,0 +1,26 @@
+<?php
+
+declare(strict_types=1);
+
+require 'vendor/autoload.php';
+
+/*
+ * Verify a webhook request using PSR-7 when using a framework that does not support PSR-7.
+ * Only requirement is to install guzzlehttp/psr7 package `composer require guzzlehttp/psr7`
+ * @see https://developer.paddle.com/webhooks/signature-verification#verify-sdks?utm_source=dx&utm_medium=paddle-php-sdk
+ */
+
+use GuzzleHttp\Psr7\ServerRequest;
+use Paddle\SDK\Notifications\Secret;
+use Paddle\SDK\Notifications\Verifier;
+
+// Create a PSR-7 compliant request object using the global variables, You don't need this line if you are using a framework that supports PSR-7
+$request = ServerRequest::fromGlobals();
+
+$isVerified = (new Verifier())->verify($request, new Secret('WEBHOOK_SECRET_KEY'));
+
+if ($isVerified) {
+    echo "Webhook is verified\n";
+} else {
+    echo "Webhook is not verified\n";
+}