SecurityManager
Defined in: packages/webhook/src/security/security.manager.ts:18
Webhook 보안 관리자 서명 생성 및 검증을 담당
Constructors
섹션 제목: “Constructors”Constructor
섹션 제목: “Constructor”new SecurityManager(
webhookConfig):SecurityManager
Defined in: packages/webhook/src/security/security.manager.ts:22
Parameters
섹션 제목: “Parameters”webhookConfig
섹션 제목: “webhookConfig”Pick<WebhookConfig, "algorithm" | "signatureHeader" | "signaturePrefix">
Returns
섹션 제목: “Returns”SecurityManager
Methods
섹션 제목: “Methods”createSecurityHeaders()
섹션 제목: “createSecurityHeaders()”createSecurityHeaders(
payload,secret):Record<string,string>
Defined in: packages/webhook/src/security/security.manager.ts:120
Webhook 전송을 위한 보안 헤더 생성
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
secret
섹션 제목: “secret”string
Returns
섹션 제목: “Returns”Record<string, string>
createSignedPayload()
섹션 제목: “createSignedPayload()”createSignedPayload(
payload,timestamp):string
Defined in: packages/webhook/src/security/security.manager.ts:39
Canonical string to sign when a timestamp header is present.
Format: ${timestamp}.${payload}
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
timestamp
섹션 제목: “timestamp”string
Returns
섹션 제목: “Returns”string
extractSignature()
섹션 제목: “extractSignature()”extractSignature(
headers):string|null
Defined in: packages/webhook/src/security/security.manager.ts:105
HTTP 헤더에서 서명 추출
Parameters
섹션 제목: “Parameters”headers
섹션 제목: “headers”Record<string, string>
Returns
섹션 제목: “Returns”string | null
generateSignature()
섹션 제목: “generateSignature()”generateSignature(
payload,secret):string
Defined in: packages/webhook/src/security/security.manager.ts:46
Webhook 페이로드에 대한 서명 생성
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
secret
섹션 제목: “secret”string
Returns
섹션 제목: “Returns”string
generateSignatureWithTimestamp()
섹션 제목: “generateSignatureWithTimestamp()”generateSignatureWithTimestamp(
payload,timestamp,secret):string
Defined in: packages/webhook/src/security/security.manager.ts:56
Generate signature for a timestamped webhook.
(Recommended when also validating X-Webhook-Timestamp to prevent replay.)
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
timestamp
섹션 제목: “timestamp”string
secret
섹션 제목: “secret”string
Returns
섹션 제목: “Returns”string
getConfig()
섹션 제목: “getConfig()”getConfig():
SecurityConfig
Defined in: packages/webhook/src/security/security.manager.ts:218
현재 보안 설정 반환
Returns
섹션 제목: “Returns”SecurityConfig
updateConfig()
섹션 제목: “updateConfig()”updateConfig(
config):void
Defined in: packages/webhook/src/security/security.manager.ts:211
보안 설정 업데이트
Parameters
섹션 제목: “Parameters”config
섹션 제목: “config”Partial<SecurityConfig>
Returns
섹션 제목: “Returns”void
verifySignature()
섹션 제목: “verifySignature()”verifySignature(
payload,signature,secret):boolean
Defined in: packages/webhook/src/security/security.manager.ts:70
Webhook 서명 검증
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
signature
섹션 제목: “signature”string
secret
섹션 제목: “secret”string
Returns
섹션 제목: “Returns”boolean
verifySignatureWithTimestamp()
섹션 제목: “verifySignatureWithTimestamp()”verifySignatureWithTimestamp(
payload,timestamp,signature,secret):boolean
Defined in: packages/webhook/src/security/security.manager.ts:89
Verify signature for a timestamped webhook.
Parameters
섹션 제목: “Parameters”payload
섹션 제목: “payload”string
timestamp
섹션 제목: “timestamp”string
signature
섹션 제목: “signature”string
secret
섹션 제목: “secret”string
Returns
섹션 제목: “Returns”boolean
verifyTimestamp()
섹션 제목: “verifyTimestamp()”verifyTimestamp(
timestamp,toleranceSeconds?):boolean
Defined in: packages/webhook/src/security/security.manager.ts:142
타임스탬프 기반 재생 공격 방지 검증
Parameters
섹션 제목: “Parameters”timestamp
섹션 제목: “timestamp”string
toleranceSeconds?
섹션 제목: “toleranceSeconds?”number = 300
Returns
섹션 제목: “Returns”boolean