github-mirror/n8n
1
0
Fork 0
mirror of https://github.com/n8n-io/n8n.git synced 2026-05-28 15:27:03 +02:00
Code Issues Actions 41 Packages Projects Releases Wiki Activity Graph
observational-memory-cli-integration
n8n/packages/nodes-base/nodes/Figma/FigmaTriggerHelpers.ts
Dawid Myslak 910822fb09
feat(Figma Trigger Node): Add webhook request verification (#29262) 
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-08 09:34:11 +00:00

32 lines
1.3 KiB
TypeScript
Raw Permalink Blame History

import type { IWebhookFunctions } from 'n8n-workflow';
import { verifySignature as verifySignatureGeneric } from '../../utils/webhook-signature-verification';
/**
* Verifies the Figma webhook request by comparing the `passcode` field in the
* payload body against the passcode stored in the workflow static data when
* the webhook was created.
*
* Figma includes the passcode supplied at webhook creation time in every
* event payload (including PING). See:
* https://developers.figma.com/docs/rest-api/webhooks-security/
*
* @returns true if the passcode matches, false otherwise
* @returns true if no passcode is stored (backward compatibility with
* webhooks created before this verification was added)
*/
export function verifySignature(this: IWebhookFunctions): boolean {
const webhookData = this.getWorkflowStaticData('node');
const expectedPasscode = webhookData.webhookSecret;
const bodyData = this.getBodyData();
const actualPasscode = bodyData.passcode;
return verifySignatureGeneric({
getExpectedSignature: () =>
typeof expectedPasscode === 'string' && expectedPasscode.length > 0 ? expectedPasscode : null,
skipIfNoExpectedSignature: true,
getActualSignature: () =>
typeof actualPasscode === 'string' && actualPasscode.length > 0 ? actualPasscode : null,
});
}
Reference in New Issue View Git Blame Copy Permalink