Postback secretim eski laptopumda kalmis rotate edemiyordum — thMenu dual-secret overlap (PR #609 CCC-B)

Erzurum Ataturk Universitesi Yenisehir 35-yas bagimsiz Performance Marketing danismanli Berk @berk-perf 7-yil orta olcekli Turk SaaS + restoran zinciri affiliate optimization. 2025 internal CRM Notion + n8n + Cloudflare Worker postback receiver HMAC-SHA256 imza dogrulama Notion database structured row 14 ay sorunsuz. Pazartesi sabah eski laptop VS Code projesi kontraktor teslim onun ekraninda .env dosyasi acik thMenu postback signing secret. Berk dondu. Kontraktor en az 24 saat erisim secret elinde olabilirdi sahte postback Notion fake commission row insert ROI distortion. Berk thMenu affiliate dashboard Rotate Signing Secret. Eski UX Mevcut secret silmek zorundasin ardindan yenisi olusturulacak Berk problem secret sildigi anda dispatcher artik eski ile imza atamaz yeni ile atar Berk Notion receiver hala eski bekliyor receiver update etmeden 5-10 dakika gap window gelen tum commission postback HMAC verify FAIL dusecekti. Berk support yazdi eski secret leak delete-then-create pattern gap window receiver guncellemesi yapmadan rotate edemiyorum daha iyi akis lazim. Engineering refresh-pattern problemini biliyordu webhook_subscriptions PR #563 batch SS-B dual-secret rotation pattern shipped. webhook_subscriptions.signing_secret_prev TEXT NULL + secret_rotated_at + partial index + dispatcher dual-sign 7-day overlap + algorithm-negotiation header. Stripe / GitHub / Slack canonical. Ama affiliate postback secret tarafi affiliate_profiles.postback_secret bu sweep i kapsamiyor sibling-surface coverage gap. Iki path (1) gecici workaround Berk manuel yeni secret + dispatcher hem eski hem yeni ile dual-sign 7-gun sonra eski null pattern kalici ship; (2) kalici fix webhook_subscriptions SS-B pattern affiliate_profiles mirror schema migration + dispatcher dual-sign + prune cron + algorithm-negotiation header. PR #609 batch CCC-B Supabase migration 20260523000006_affiliate_postback_secret_rotation.sql affiliate_profiles ADD postback_secret_prev TEXT NULL + postback_secret_rotated_at TIMESTAMPTZ NULL + idx_aff_postback_prev_secret_rotated WHERE postback_secret_prev IS NOT NULL. Dispatcher cloudflare/src/lib/affiliate-postback-dispatch.ts 7-gun overlap her postback hem primary hem previous secret imzalar primary X-thMenu-Signature header raw hex backward-compatible sibling X-thMenu-Signature-Previous overlap penceresi X-thMenu-Sig-Algorithm: sha256 algorithm-negotiation header future SHA-512/Ed25519 receivers iki match OK. Rotate endpoint yeni POST /api/affiliate/postback/rotate-secret CSRF + affiliate guard + OCC race-guard atomic UPDATE postback_secret_prev = postback_secret postback_secret = ? postback_secret_rotated_at = now WHERE affiliate_id = ? AND postback_secret = ? loser 409 rotation_race. Yeni secret bir kere cleartext donduurulur UI affiliate gosterilir hash saklanir. Prune cron daily 04:00 UTC slot postback_secret_rotated_at < now - 7 days NULL Supabase REST PATCH naturally idempotent. Berk rotate butonu yeni secret cleartext UI banner Rotation pencere 7 gun receiver guncel. Berk kopyaladi .env guncelledi n8n workflow restart next 5-10 dakika postback hem eski hem yeni receiver yeni verify eski overlap window 7-gun sonra prune cron eski NULL seamless 0 commission dropped. Berk Twitter Stripe pattern Turkiye SaaS 24 saat shipped 0 commission lost 3.4k. Lloyd Birmingham Jewellery Quarter 6-yil freelance growth marketing + thMenu affiliate Linear-integrated postback receiver Anand contractor laptop .env paralel rapor ayni rotation. Pattern HMAC-signed integration surface delete-then-create rotation anti-pattern canonical schema secret + prev_secret + rotated_at + dispatcher dual-sign 7-day overlap + receivers iki match + prune cron prev NULL + algorithm-negotiation header. Sibling-surface coverage webhook_subscriptions PR #563 SS-B + affiliate_profiles.postback_secret PR #609 CCC-B + Stripe Stripe-managed + Wise tek secret kabul + OAuth refresh PR #526 HH + future Coinbase. Implementation checklist schema secret+prev+rotated_at + partial index + dispatcher dual-sign overlap primary+sibling header + algorithm-negotiation header + rotate endpoint atomic OCC race-guard + secret ONCE cleartext + UI banner 7 days + daily prune cron + audit-log rotation event + sibling-surface sweep grep. PR #609 referans.

İlgili makaleler