Add webhook handling

[theolujay]

Users still have to decode Paystack webhook signature by themselves. The SDK can handle this for them with something like the following:

from os import getenv
from paystack import PaystackClient, APIError

paystack_client = PaystackClient(secret_key=getenv("PAYSTACK_SECRET_KEY"))

def paystack_webhook(request):
    try:
        paystack_client.webhook.verify_signature(request)
        webhook_data = paystack_client.webhook,get_data(request)
        # ...rest of user's code
    except APIError as e:
        return (
            f"Failed to verify Paystack signature header: {e}"
        )

[gray-adeyi]

@theolujay hi! You can try out this package https://gray-adeyi.github.io/pypaystack2/v3.2/ . It does something similar to what you're trying to achieve with

Python 3.11.13 (main, Sep  2 2025, 14:20:25) [Clang 20.1.4 ] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> from pypaystack2 import PaystackClient
>>> client = PaystackClient()
>>> payload = ... # webhook payload e.g., b'{"event": "customeridentification.success", "data": {"customer_id": 324345768, "customer_code": "CUS_e7urjebaoyk1ze2", "email": "jddae8446e-e54c-42ab-bf37-e5abff14527e@example.com", "identification": {"country": "NG", "type": "bank_account", "bvn": "123*****543", "account_number": "342****22", "bank_code": "121"}}}'
>>> signature = ... # x-paystack-signature e.g., "5d049eb93c7c71fa098f5215d7297bda401710b62df8b392b9052adf8d1a02ff308f6ca57a1db14ffeabd5b66264e9c42de029b7067b9c71eb9c231fb2a8e383"
>>> is_verified_webhook_payload = client.is_verified_webhook_payload(payload,signature)
>>> print(is_verified_webhook_payload)
True

[theolujay]

Interesting. Thanks for the reminder.

[gray-adeyi]

No problems. You can also check out paystack-cli too it your into that kind of thing too https://youtu.be/GuYtyh1Ew5E?si=EZDkWlO2GBpCxF1P