Webhooks
Ingesting and validating Webhooks
Overview
Stratus subscriptions deliver events via webhooks, enabling your systems to respond immediately to key events. This guide explains how to set up and validate webhook notifications.
Getting Started
Enable Webhooks
Toggle webhooks within your subscription settings
Configure Endpoint
Provide the URL where your system will accept POST requests
Store Signing Key
Save the Signing Key
from your subscription settings for payload validation
Implementation Guide
Webhook Validation
Each webhook payload includes a signature header (x-signature
) that should be validated to ensure authenticity.
Important Considerations
Batching
Multiple events may be batched into a single webhook payload
Retry Logic
Failed webhooks are retried exponentially up to five times
Security
Always validate webhook signatures using your WEBHOOK_SECRET
Never expose your WEBHOOK_SECRET in client-side code or public repositories. Always store it securely in environment variables.