Skip to content

alexellis/hmac

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
pkg.go
pkg.go
 
 
pkg_test.go
pkg_test.go
 
 

Repository files navigation

hmac

Validate HMAC in Golang.

Who uses it HMAC?

GitHub, Patreon and some other parties will use HMAC signing with their outgoing webhooks so that you can verify the webhook is from the expected sender.

Who uses this project?

A few of the notable dependents on this package, but there are many more:

How it works:

HMAC uses a symmetric key that both sender/receiver share ahead of time. The sender will generate a hash when wanting to transmit a message - this data is sent along with the payload. The recipient will then sign payload with the shared key and if the hash matches then the payload is assumed to be from the sender.

Read more on Wikipedia

Documentation

Example:

import "github.com/alexellis/hmac"

...
var input []byte
var signature string
var secret string

valid := hmac.Validate(input, signature, secret)

fmt.Printf("Valid HMAC? %t\n")

About

Validate hmac signatures in Go

Resources

Readme

License

MIT license
Activity

Stars

28 stars

Watchers

3 watching

Forks

8 forks
Report repository

Releases 5

Release with SHA256 support Latest
Oct 28, 2021
+ 4 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 2

  •  
  •  

Languages