Let us add a check to the add nagios check end point in webpay. When pinged, it will send a request to zamboni for some JWT. Zamboni will sign and return the JWT to webpay, which will try and decode it. The point of this is to ensure that the private_mkt.APP_PURCHASE_SECRET and private.SECRET are the same on webpay and zamboni.
all of Marketplace payments broke last week in production because settings were messed up. There were no tracebacks, no Sentry alerts; I'm bumping this to P1 so it doesn't happen again.
Zamboni API to get a JWT for signing https://github.com/mozilla/zamboni/commit/ccae12abe3a682b87486a9303a4209a30b927ade
Zamboni API: bug 908872 WebPay API: bug 908873 after that we'll need a Nagios script
All the blockers are done, can we close this now?