feat: http provider signing key addition (#10641)

# Which Problems Are Solved HTTP Request to HTTP providers for Email or SMS are not signed. # How the Problems Are Solved Add a Signing Key to the HTTP Provider resources, which is then used to generate a header to sign the payload. # Additional Changes Additional tests for query side of the SMTP provider. # Additional Context Closes #10067 --------- Co-authored-by: Marco A. <marco@zitadel.com> (cherry picked from commit 8909b9a2a6)
2025-12-06 17:32:17 +00:00 · 2025-09-08 13:00:04 +02:00
parent d2d94ea088
commit 1a7cd6e1af
36 changed files with 2113 additions and 132 deletions
--- a/internal/notification/handlers/config_email.go
+++ b/internal/notification/handlers/config_email.go
@@ -49,9 +49,10 @@ func (n *NotificationQueries) GetActiveEmailConfig(ctx context.Context) (*email.
 		return &email.Config{
 			ProviderConfig: provider,
 			WebhookConfig: &webhook.Config{
-				CallURL: config.HTTPConfig.Endpoint,
-				Method:  http.MethodPost,
-				Headers: nil,
+				CallURL:    config.HTTPConfig.Endpoint,
+				Method:     http.MethodPost,
+				Headers:    nil,
+				SigningKey: config.HTTPConfig.SigningKey,
 			},
 		}, nil
 	}
--- a/internal/notification/handlers/config_sms.go
+++ b/internal/notification/handlers/config_sms.go
@@ -45,9 +45,10 @@ func (n *NotificationQueries) GetActiveSMSConfig(ctx context.Context) (*sms.Conf
 		return &sms.Config{
 			ProviderConfig: provider,
 			WebhookConfig: &webhook.Config{
-				CallURL: config.HTTPConfig.Endpoint,
-				Method:  http.MethodPost,
-				Headers: nil,
+				CallURL:    config.HTTPConfig.Endpoint,
+				Method:     http.MethodPost,
+				Headers:    nil,
+				SigningKey: config.HTTPConfig.SigningKey,
 			},
 		}, nil
 	}