Back to Docusign.com
I am writing an app to download documents after being signed to integrate into our in-house application.
I am having a little trouble with “public static bool HashIsValid(string secret, string payload, string verify)”
In the development environment this works without error.
I create a document, sign it and via connect the json and headers are sent to webhook.site
I pick up the json and x-docusign-signature-1. I place the HMAC from development connect as the secret, the json as the payload, and x-docusign-signature-1 as verify and my json verifies.
In production I do the same, I place the HMAC from admin connect as the secret, the json as the payload, and x-docusign-signature-1 as verify, but it always fails.
I have also published this application out for testing. I change connect to use the URL of my application. I read the HMAC for development, the json and x-docusign-signature-1 are read from what DocuSign sends. The HMAC is validated and the document is stored in the appropriate directory.
I then go to production, set my connect URL to my application. The HMAC for production is read in and of course the json and x-docusign-signature-1 are read from what DocuSign sends.
Production HMAC always fails
Has anyone else had issues using HMAC and HashIsValid in production?
Thanks,
Dennis W. Watson
