5:[["$","script",null,{"type":"application/ld+json","nonce":"$undefined","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"TechArticle\",\"headline\":\"Webhook-Sicherheit\",\"description\":\"Signaturen verifizieren\",\"url\":\"https://lui.lu/s/docs/webhooks-security\",\"datePublished\":\"2026-04-04T21:44:56.640Z\",\"dateModified\":\"2026-04-05T09:52:58.694Z\",\"publisher\":{\"@id\":\"https://lui.lu/#organization\"},\"isPartOf\":{\"@id\":\"https://lui.lu/#website\"},\"proficiencyLevel\":\"Beginner\"}"}}],["$","script",null,{"type":"application/ld+json","nonce":"$undefined","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"LUI\",\"item\":\"https://lui.lu\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Dokumentation\",\"item\":\"https://lui.lu/s/docs\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Webhook-Sicherheit\",\"item\":\"https://lui.lu/s/docs/webhooks-security\"}]}"}}],["$","div",null,{"className":"min-h-screen bg-gray-50","children":[["$","div",null,{"className":"bg-gradient-to-br from-gray-900 via-gray-800 to-gray-900 text-white","children":["$","div",null,{"className":"max-w-4xl mx-auto px-4 py-12","children":[["$","$L14",null,{"href":"/s/docs","className":"inline-flex items-center text-white/80 hover:text-white mb-6","children":[["$","svg",null,{"ref":"$undefined","xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-left w-4 h-4 mr-1","children":[["$","path","1wnfg3",{"d":"m15 18-6-6 6-6"}],"$undefined"]}],"Zurück zur Dokumentation"]}],["$","div",null,{"className":"flex items-center gap-3 text-sm text-white/80 mb-4","children":[["$","span",null,{"className":"px-3 py-1 rounded-full text-xs font-medium bg-purple-100 text-purple-600","children":"Webhooks"}],["$","span",null,{"className":"flex items-center gap-1","children":[["$","svg",null,{"ref":"$undefined","xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-clock w-4 h-4","children":[["$","circle","1mglay",{"cx":"12","cy":"12","r":"10"}],["$","polyline","68esgv",{"points":"12 6 12 12 16 14"}],"$undefined"]}],4," min Lesezeit"]}]]}],["$","h1",null,{"className":"text-3xl md:text-4xl font-bold","children":"Webhook-Sicherheit"}],["$","p",null,{"className":"text-white/90 mt-4 text-lg","children":"Signaturen verifizieren"}]]}]}],["$","div",null,{"className":"max-w-4xl mx-auto px-4 py-12","children":[["$","div",null,{"className":"grid lg:grid-cols-4 gap-8","children":[["$","aside",null,{"className":"lg:col-span-1","children":["$","div",null,{"className":"sticky top-8 bg-white rounded-xl shadow-sm border p-4","children":[["$","h3",null,{"className":"font-bold text-gray-900 mb-3 text-sm","children":"Webhooks"}],["$","ul",null,{"className":"space-y-1","children":[["$","li","webhooks-einrichten",{"children":["$","$L14",null,{"href":"/docs/webhooks-einrichten","className":"block px-3 py-2 rounded-lg text-sm transition-colors text-gray-600 hover:bg-gray-100","children":"Webhooks einrichten"}]}],["$","li","webhooks-security",{"children":["$","$L14",null,{"href":"/docs/webhooks-security","className":"block px-3 py-2 rounded-lg text-sm transition-colors bg-gray-900 text-white font-medium","children":"Webhook-Sicherheit"}]}]]}]]}]}],["$","article",null,{"className":"lg:col-span-3 bg-white rounded-2xl shadow-sm border p-8 md:p-12","children":["$","div",null,{"className":"prose prose-lg max-w-none prose-headings:text-gray-900 prose-p:text-gray-700 prose-a:text-blue-600 prose-code:bg-gray-100 prose-code:px-1 prose-code:rounded prose-pre:bg-gray-900 prose-pre:text-green-400","dangerouslySetInnerHTML":{"__html":"

Webhook-Sicherheit

Jeder Webhook-Request enthält eine Signatur im Header.

Signatur verifizieren

const crypto = require(\"crypto\");\n\nfunction verifySignature(payload, signature, secret) {\n  const hash = crypto\n    .createHmac(\"sha256\", secret)\n    .update(payload)\n    .digest(\"hex\");\n  return hash === signature;\n}\n

\n"}}]}]]}],"$L15","$L16"]}]]}]]