Webhooks

List webhook endpoints registered in the current workspace.

Register a new webhook endpoint and subscribe it to one or more event types. The endpoint is created in unverified status and a fresh secret is returned in the response. Use the verify action to activate the endpoint.

Important: event_types must contain identifiers returned by GET /api/v3/webhook_event_types/ (e.g. load_completed, transformation_completed). Unknown event names are accepted by the request but no deliveries will be sent for them — always source the names from the event types endpoint rather than hard-coding them.

Retrieve detailed information about a webhook endpoint, including its current subscriptions and signing secret.

Permanently delete a webhook endpoint and all of its subscriptions. Pending and in-flight deliveries for this endpoint are abandoned.

Partially update a webhook endpoint. Either field may be omitted.

• Setting event_types replaces the full list of subscriptions for this endpoint.
• Updating either field resets the endpoint status to unverified; you must call verify again before the endpoint will receive events.

Trigger ownership verification of the endpoint URL.

Improvado sends a GET request to the endpoint URL with the headers:

• X-Improvado-Verify-Token — the endpoint's signing secret
• X-Improvado-Challenge — a one-time random token

The receiver must respond with HTTP 200 and the value of X-Improvado-Challenge as the response body. On success, the endpoint transitions to active. On failure (non-200 status, mismatching body, or connection error), the endpoint remains unverified and a 400 is returned.

Generate a new signing secret for the endpoint. The previous secret is invalidated immediately and the endpoint is reset to unverified status, so the endpoint must be re-verified before it will receive further events. Update your receiver to use the new secret before re-verification.

List event types that can be subscribed to via event_types when creating or updating a webhook endpoint.