Ping a Specific Port

Question

jrz

Asked: 2021-02-23 07:02:46 +0800 CST2021-02-23 07:02:46 +0800 CST 2021-02-23 07:02:46 +0800 CST

Nginx read secret and webhook headers

772

A Webhook from Github is passing through Nginx proxy.

The webhook uses secret and the header is sent as X-Hub-Signature-256.

I want to make Nginx filtering requests, i.e I need Nginx to take the webhook header value and compare it to $SECRET_TOKEN. If the secret is right, it will send 200 and If not, 403.

I thought of something like this, but could find a way to implement it:

server {
  listen 80;
  server_name _;

  location /payload {
      
      #Read the header sent by the webhook
      #If the header content matches $SECRET_TOKEN I defined on Nginx then return 200
      #Else, return 403 
  }
}

Please help with implementing this pseudo as I couldn't find any example online.

Thanks in advance.

1 Answers

Voted

Tero Kilkanen · Answer 1 · 2021-02-23T12:53:20+08:00

Tero Kilkanen

2021-02-23T12:53:20+08:002021-02-23T12:53:20+08:00

On http level, create a map:

map $http_x_hub_signature_256 $retcode {
    <token> 200;
    default 403;
}

And your location would be:

location /payload {
    return $retcode;
}

1

Nginx read secret and webhook headers

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?