| Server IP : 45.33.98.47 / Your IP : 216.73.216.243 Web Server : Apache/2.4.66 (Debian) System : Linux 8783c923f53b 6.8.0-51-generic #52-Ubuntu SMP PREEMPT_DYNAMIC Thu Dec 5 13:09:44 UTC 2024 x86_64 User : www-data ( 33) PHP Version : 8.3.30 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : OFF | Perl : ON | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /var/www/html/wp-content/plugins/wpforms-lite/src/Integrations/Square/Api/ |
Upload File : |
<?php
namespace WPForms\Integrations\Square\Api;
use RuntimeException;
use WPForms\Integrations\Square\Helpers;
use WPForms\Vendor\Square\Utils\WebhooksHelper;
/**
* Webhook event handler.
*
* @since 1.9.5
*/
class WebhookEvent {
/**
* Construct and validate the Square webhook event.
*
* @since 1.9.5
*
* @param string $payload The raw JSON payload from Square.
* @param string $signature The Square webhook signature from headers.
* @param string $webhook_secret The webhook signing secret from Square Developer Dashboard.
*
* @return object The decoded event data.
*
* @throws RuntimeException If the webhook payload structure is invalid.
*/
public static function construct_event( string $payload, string $signature, string $webhook_secret ) {
// Validate the webhook signature.
if ( ! WebhooksHelper::isValidWebhookEventSignature( $payload, $signature, $webhook_secret, Helpers::get_webhook_url() ) ) {
throw new RuntimeException( 'Invalid webhook signature. Possible unauthorized request.' );
}
// Decode JSON payload.
$event = json_decode( $payload, false );
// Check for JSON decoding errors.
if ( json_last_error() !== JSON_ERROR_NONE ) {
throw new RuntimeException( 'Invalid JSON payload' );
}
if ( ! $event || ! isset( $event->type, $event->data ) ) {
throw new RuntimeException( 'Invalid webhook payload structure.' );
}
return $event;
}
}