Slack request signing (HMAC-SHA256).
Slack signs every request to your app so you can verify it really came from
Slack. The signature is computed over the string "v0:<timestamp>:<body>"
using your app's signing secret as the HMAC-SHA256 key, and is sent in the
x-slack-signature header (with the timestamp in x-slack-request-timestamp).
This module produces and verifies those signatures so the inbound simulation loop can exercise the same code path a real Slack request would.
Summary
Functions
Compute the Slack signature for body at timestamp using signing_secret.
Return whether signature is the valid Slack signature for body at
timestamp under signing_secret. Uses a constant-time comparison.
Functions
Compute the Slack signature for body at timestamp using signing_secret.
Returns "v0=" <> lowercase_hex.
Return whether signature is the valid Slack signature for body at
timestamp under signing_secret. Uses a constant-time comparison.