X-Git-Url: https://git.octo.it/?p=kraftakt.git;a=blobdiff_plain;f=fitbit%2Ffitbit.go;fp=fitbit%2Ffitbit.go;h=9466b12f9de0edf8d326705a5a51b8587f3db5d9;hp=33f2ccd762a94fcb3c08e0b01715d17e47c2e33b;hb=b0b4324f51ba7658e5e97b294ebd8ab7008d8f2a;hpb=e4ad49d50f4b79c10fdbdba69f45f77fd64f8b1e

diff --git a/fitbit/fitbit.go b/fitbit/fitbit.go
index 33f2ccd..9466b12 100644
--- a/fitbit/fitbit.go
+++ b/fitbit/fitbit.go
@@ -6,6 +6,7 @@ import (
 	"crypto/hmac"
 	"crypto/sha1"
 	"encoding/base64"
+	"encoding/hex"
 	"encoding/json"
 	"fmt"
 	"io/ioutil"
@@ -70,6 +71,12 @@ func CheckSignature(ctx context.Context, payload []byte, rawSig string) bool {
 	mac.Write(payload)
 	signatureWant := mac.Sum(nil)
 
+	if !hmac.Equal(signatureGot, signatureWant) {
+		log.Debugf(ctx, "CheckSignature(): got %q, want %q",
+			hex.EncodeToString(signatureGot),
+			hex.EncodeToString(signatureWant))
+	}
+
 	return hmac.Equal(signatureGot, signatureWant)
 }