small bug on paths check

Author: saito-sv

api/middleware/middleware.go

@@ -110,11 +110,11 @@ func VerifyWebhookPayload(pskey string, ckoskey string) echo.MiddlewareFunc {
 			var validateFunc func([]byte, string, string) bool
 
 			switch c.Path() {
-			case "webhooks/checkout":
+			case "/webhooks/checkout":
 				signatureHeaderName = "Cko-Signature"
 				secretKey = ckoskey
 				validateFunc = validateSignatureCheckout
-			case "webhooks/persona":
+			case "/webhooks/persona":
 				signatureHeaderName = "Persona-Signature"
 				secretKey = pskey
 				validateFunc = validateSignaturePersona

api/middleware/middleware_test.go

@@ -28,31 +28,31 @@ func TestVerifyWebhookPayload(t *testing.T) {
 	}{
 		{
 			name:          "Test unauthorized access due to invalid signature for Checkout",
-			path:          "webhooks/checkout",
+			path:          "/webhooks/checkout",
 			signatureKey:  "invalid_signature",
 			signatureName: "Cko-Signature",
 			secretKey:     checkoutSecretKey,
 			expectCode:    http.StatusUnauthorized,
 		},
 		{
 			name:          "Test successful access for Checkout",
-			path:          "webhooks/checkout",
+			path:          "/webhooks/checkout",
 			signatureKey:  computeHmacSha256("hello", checkoutSecretKey),
 			signatureName: "Cko-Signature",
 			secretKey:     checkoutSecretKey,
 			expectCode:    http.StatusOK,
 		},
 		{
 			name:          "Test unauthorized access due to invalid signature for Persona",
-			path:          "webhooks/persona",
+			path:          "/webhooks/persona",
 			signatureKey:  "t=1629478952,v1=invalid_signature",
 			signatureName: "Persona-Signature",
 			secretKey:     personaSecretKey,
 			expectCode:    http.StatusUnauthorized,
 		},
 		{
 			name:          "Test successful access for Persona",
-			path:          "webhooks/persona",
+			path:          "/webhooks/persona",
 			signatureKey:  fmt.Sprintf("t=1629478952,v1=%s", computeHmacSha256("1629478952.hello", personaSecretKey)),
 			signatureName: "Persona-Signature",
 			secretKey:     personaSecretKey,