Hi Jay,
We have other provisions for guaranteeing the post comes from Netlify and we have no plans to change the way our infrastructure contacts yours, so I’d suggest investigating the available alternatives:
- using a function to gate access, and you can send whatever token you want from the function to prove that it was originated via your netlify site
- using the JWS that we can provide for proxy’d calls to your server: Rewrites and proxies | Netlify Docs
- setting a cookie on our side and verifying it on your backend