Y
Hacker News
new
|
ask
|
show
|
jobs
by
kichik
202 days ago
The echo server will have no knowledge on how to construct the string to be signed.
1 comments
lillesvin
201 days ago
But neither does the actual server. HMAC only verifies that the message is from whoever it claims to be from and that it is intact. It won't know what you intended the body of the request to look like.
link