Common verification errors
Missing signature header
The request does not contain the MeSomb-Signature header.
Possible causes:
- request did not come from MeSomb;
- proxy or server removed the header;
- endpoint is misconfigured.
Invalid signature
The computed signature does not match the signature sent by MeSomb.
Possible causes:
- wrong webhook secret;
- raw request body was modified before verification;
- JSON was parsed and re-serialized before verification;
- request did not come from MeSomb.
Timestamp outside tolerance
The webhook timestamp is too old or too far in the future.
Possible causes:
- replayed webhook request;
- server clock is incorrect;
- webhook was delayed for too long.