UNPKG

@lobehub/chat

Version:

Lobe Chat - an open-source, high-performance chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application.

github.com/lobehub/lobe-chat

lobehub/lobe-chat

51 lines (46 loc) 1.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
import { headers } from 'next/headers'; import { createHmac } from 'node:crypto'; import { authEnv } from '@/config/auth'; export type LogtToUserEntity = { applicationId?: string; avatar?: string; createdAt?: string; customData?: object; id: string; identities?: object; isSuspended?: boolean; lastSignInAt?: string; name?: string; primaryEmail?: string; primaryPhone?: string; username?: string; }; interface LogtoWebhookPayload { // Only support user event currently data: LogtToUserEntity; event: string; } export const validateRequest = async (request: Request, signingKey: string) => { const payloadString = await request.text(); const headerPayload = await headers(); const logtoHeaderSignature = headerPayload.get('logto-signature-sha-256')!; try { const hmac = createHmac('sha256', signingKey); hmac.update(payloadString); const signature = hmac.digest('hex'); if (signature === logtoHeaderSignature) { return JSON.parse(payloadString) as LogtoWebhookPayload; } else { console.warn( '[logto]: signature verify failed, please check your logto signature in `LOGTO_WEBHOOK_SIGNING_KEY`', ); return; } } catch (e) { if (!authEnv.LOGTO_WEBHOOK_SIGNING_KEY) { throw new Error('`LOGTO_WEBHOOK_SIGNING_KEY` environment variable is missing.'); } console.error('[logto]: incoming webhook failed in verification.\n', e); return; } };