Does anybody know what is the correct header name?
The docs say x-square-hmacsha256-signature but the Sandbox log shows x-square-signature?
Thanks,
Paul
Hey there! 
Either of those headers should work, although we recommend using the hmacsha256 one since it’s more secure. We’re currently doing some work to have both headers show in the logs — sorry for the confusion!
1 Like
Small update here: API Logs should now show both headers! 
1 Like