Hey All; anyone facing a new SHA1 test window in N...
# integrationsl
Luiz Morais
06/15/2022, 6:56 AMHey All; anyone facing a new SHA1 test window in Netsuite? Some integrations using SHA1 stopped to work today but I didn’t find any notice form Netsuite for this test window
m
michoel
06/15/2022, 7:08 AMI know of someone else this happened to today
l
Luiz Morais
06/15/2022, 7:10 AMOk, cool... I opened a ticket, last time they were able to revert this . It doesn’t make sense because we can create this test-window by ourselves. I update here when I get back from Netsuite. Thanks
Luiz Morais
06/15/2022, 8:08 AMGot feedback from Netsuite Support. It’s running a test-window for SHA1 so it was turned off for 24 hours starting yesterday 8am pacific time
d
David
06/15/2022, 1:24 PMwe received several emails about this test window. You might want to ensure you have the right recipient set for those notices, and they don't go into junk/spam.
David
06/15/2022, 1:26 PMAs of NetSuite version 2023.1, HMAC-SHA1 will no longer be accepted as a signature method for TBA integrations. Before customer accounts are upgraded to version 2023.1, you must update your TBA integrated SuiteApps to use the HMAC-SHA256 signature method.
There is a planned 24-hour test window Tuesday, on June 14, 2022 which will help your customers identify TBA integrations in their NetSuite account that are still using the HMAC-SHA1 signature method. During the test window, the HMAC-SHA1 signature method will not be allowed and any TBA integrations using it will stop working.
What is Changing?
When customer accounts are upgraded to NetSuite 2023.1, any TBA integrations that are still using the HMAC-SHA1 as a signature method will stop working. This prohibition will apply to all integrated SuiteApps that use TBA. Upgrades to NetSuite 2023.1 are targeted to occur between February and April of 2023.
What Will Happen During this Test Window?
The planned 24-hour test window will help customers identify TBA integrations in their NetSuite accounts that are still using the HMAC-SHA1 signature method. During the test window, the HMAC-SHA1 signature method will not be allowed and any TBA integrations using it will stop working.
The 24-hour test window will begin on Tuesday, June 14, 2022, at 9:00 a.m. Central Time (CT).
After the test window ends, TBA integrations using the HMAC-SHA1 signature method will be accepted again, until NetSuite 2023.1 is released.
Mandatory Action
Update your TBA integrated SuiteApps to use the HMAC-SHA256 signature method if you have not done so already.
You must update the authorization header to use HMAC-SHA256. The value of the _oauth_signature_method_ parameter must be changed from HMAC-SHA1 to HMAC-SHA256, and the value of the _oauth_signature parameter_ also must change accordingly. For more information, see the help topic Example OAuth Header (SuiteAnswers, ID 50996).
If you are using a library for signing, you must verify that the library supports HMAC-SHA256. If the library you are using does not support HMAC-SHA256, you must either update the library to use HMAC-SHA256 or start using another library that supports HMAC-SHA256.
The 24-hour test window in will begin on Tuesday, June 14, 2022, at 9:00 a.m. CST.
If you require assistance or more information, please contact NetSuite Customer Support.
l
Luiz Morais
06/20/2022, 1:16 PM@David thanks, mate. Sorry late response. Much appreciate.
👍 1
4 Views