FoxSellApp · dev-prakhar · Feb 19, 2022 · Feb 19, 2022
diff --git a/smoothcode_auth/auth.py b/smoothcode_auth/auth.py
@@ -14,3 +14,7 @@ def is_dashboard_request(self, shop: str):
     def is_webhook_request(self, webhook_data: dict):
         webhook_id = webhook_data.get('id')
         return generate_hmac(self.client_secret, str(webhook_id)) == self.hmac
+
+    def is_gdpr_webhook_request(self, webhook_data: dict):
+        shop_id = webhook_data.get('shop_id')
+        return generate_hmac(self.client_secret, str(shop_id)) == self.hmac
diff --git a/tests/test_auth.py b/tests/test_auth.py
@@ -21,3 +21,13 @@ def test_is_webhook_request_with_incorrect_data(self):
         client_secret = 'client_secret'
         request_hmac = 'request_hmac'
         assert not SmoothCodeAuth(request_hmac, client_secret).is_webhook_request({'id': 'webhook'})
+
+    def test_is_gdpr_webhook_request_with_correct_data(self):
+        client_secret = 'client_secret'
+        request_hmac = '3999c5c10e23bee670e28ad67f446ac5e7b9c47ca1ee39c4bdf0c7bf056f8d71'
+        assert SmoothCodeAuth(request_hmac, client_secret).is_gdpr_webhook_request({'shop_id': 1235643534})
+
+    def test_is_gdpr_webhook_request_with_incorrect_data(self):
+        client_secret = 'client_secret'
+        request_hmac = 'request_hmac'
+        assert not SmoothCodeAuth(request_hmac, client_secret).is_gdpr_webhook_request({'shop_id': 'webhook'})