INC. ALL RIGHTS RESERVED. X-Twilio-Signature headerの検証 // 検証に利用する値 const url = "https://example.com"; const params = req.body; const authToken = process.env.TWILIO_AUTH_TOKEN; const signature = req.headers['x-twilio-signature']; // リクエストを検証 if (twilio.validateRequest(authToken, signature, url, params)) { // 通常の処理を実装 } else { res.status(401).send('not authorized'); } https://www.twilio.com/docs/usage/tutorials/how-to-secure-yo ur-express-app-by-validating-incoming-twilio-requests