When you receive a data payload from Wix, it will include a header called 'digest' - the header will hold a JSON web token (JWT) with the signed data. (Here's a sample decoded JWT.)
Use your app’s public key to verify that the data was sent by Wix.
Was this helpful?