SendPromptly Webhooks — Reference Kit

This GitHub Pages site is a reference kit. Canonical documentation lives on sendpromptly.com.

Signature Verification Test Vectors

Signature verification test vectors (HMAC-SHA256)

Canonical guide: https://sendpromptly.com/docs/guides/webhook-signature-verification-cookbook/

Repo file:

schemas/signature-test-vectors/v1-hmac-sha256.json

Contract (SendPromptly-style)

X-SP-Timestamp: unix timestamp (seconds)
X-SP-Signature: v1=<hex>
string_to_sign = "{timestamp}.{raw_body}"
signature = HMAC_SHA256(secret, string_to_sign) as hex

Quick verify

python3 scripts/verify_test_vectors.py