Skip to content

Secure Actions Webhook

Actions
Post data and an hmac signature to an endpoint
0.1.2
Latest
By koraykoska
Star (4)

Tags

 (2)
deploymentpublishing

secure-actions-webhook

Securely call CD servers / notification services after your Action finishes

Usage

Sending a string:

- name: Webhook
  uses: ybrin/[email protected]
  env:
    REQUEST_URI: ${{ secrets.REQUEST_URI }}
    REQUEST_DATA: "something_interesting"
    HMAC_SECRET: ${{ secrets.HMAC_SECRET }}

Sending a json string:

- name: Webhook
  uses: ybrin/[email protected]
  env:
    REQUEST_URI: ${{ secrets.REQUEST_URI }}
    REQUEST_DATA: '{ "something": "interesting" }'
    HMAC_SECRET: "secret_used_to_generate_signature"

The request will include the header X-Hub-Signature, which is the hmac signature of the raw body just like in Github webhooks (sha1=<hmac_signature>).
Verify it on your endpoint for integrity.

Resources

Secure Actions Webhook is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.

About

Post data and an hmac signature to an endpoint
0.1.2
Latest
By koraykoska

Tags

 (2)
deploymentpublishing

Resources

Secure Actions Webhook is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.