This topic was automatically generated from Slack. You can find the original thread here.
The webhooks from DBT Cloud provide a way to validate the origin of the requests, but it requires the raw request body.
What would be the best way to do that in Pipedream?
How can I access the raw request body from an HTTP trigger?
I’ve tried re-encoding the body in JSON, but it doesn’t seem to create the exact same string as the original. 
Here is some python code: signature = hmac.new(app_secret, request_body, hashlib.sha256).hexdigest()
What would be the node.js equivalent?
Are you using the job-run-completed source in Pipedream?
Or is it a custom HTTP webhook?
right now it’s custom.
Is the HTTP source emitting body only or the full request?
full request (because I need to check the headers for the auth)
Ah then the rawBody should be emitted also, are you able to see it?
Maybe I missed it 
Haha happens with all of us
This is all I seem to get 
rawBody is undefined (unless I’m doing it wrong)
Strange, is dbt sending the rawBody? Pipedream doesn’t remove it, many sources use it for validating the webhooks
OH! 
:man-facepalming:
I think I should be good now! 
It’s working!
Thank you!! 
Here’s the node.js code to authenticate the requests:
import crypto from "crypto";
const sign = crypto
.createHmac('sha256', <DBT_WEBHOOK_KEY>)
.update(<RAW_BODY_FROM_DBT_WEBHOOK>)
.digest('hex');