fix: validate hmac unconditionally (#28372) (#28374)

(cherry picked from commit c0f06bc8e3) Co-authored-by: Ankush Menat <ankush@frappe.io>
2021-11-12 14:53:27 +05:30
parent 68ff68a357
commit d44cab3926
1 changed files with 0 additions and 1 deletions
--- a/erpnext/erpnext_integrations/utils.py
+++ b/erpnext/erpnext_integrations/utils.py
@@ -25,7 +25,6 @@ def validate_webhooks_request(doctype,  hmac_key, secret_key='secret'):
 			)

 			if frappe.request.data and \
-				frappe.get_request_header(hmac_key) and \
 				not sig == bytes(frappe.get_request_header(hmac_key).encode()):
 					frappe.throw(_("Unverified Webhook Data"))
 			frappe.set_user(settings.modified_by)