Verify a Stripe stripe-signature header against the raw request body + the endpoint signing secret. Returns true iff
a v1 signature matches the HMAC of ${t}.${rawBody} AND the timestamp is within tolerance. Pass the RAW (unparsed)
body — re-serializing JSON changes the bytes and breaks the HMAC.
Verify a Stripe
stripe-signatureheader against the raw request body + the endpoint signing secret. Returns true iff a v1 signature matches the HMAC of${t}.${rawBody}AND the timestamp is within tolerance. Pass the RAW (unparsed) body — re-serializing JSON changes the bytes and breaks the HMAC.