# Webhook ## Introduction A webhook (also called a web callback or HTTP push API) is a **way for an app to provide other applications with real-time information**. A webhook delivers data to other applications as it happens, meaning you get data immediately. For using webhook service clients have to register an API application that will have an API key, api-admin credential, and an encryption file for further authentications. This is taken place for a successful webhook event subscription validation. For implementing the webhook service follow the given steps. Available webhook event slugs and their provided data are listed at the end of the webhook document. ## List Events ## List Provided Webhook Events `GET` `‎https://///webhook/list/events/` This API endpoint provided a list of available webhook events. #### Headers | Name | Type | Description | | ----------------------------------------------- | ------ | ------------------- | | apikey\* | string | Apikey | | Authorization\* | string | Bearer access token | {% tabs %} {% tab title="200: OK " %} ```html HTTP/1.1 200 OK Content-Type: application/json { "status_code": 200, "errors": {}, "data": { "results": [ { "id": , "slug": "", "name": "", "trigger_immediate": , "is_active": }, ... ], "count": , "previous": , "next": } } ``` {% endtab %} {% endtabs %} #### Sample Code **Node** ```javascript var request = require('request'); var options = { 'method': 'GET', 'url': 'https://///webhook/list/events/', 'headers': { 'apikey': '', 'Authorization': 'Bearer ' } }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/list/events/', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'GET', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ' ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` ## Subscribe Event ## Subscribe an event `POST` `‎https://///webhook/subscribe/` This API endpoint is used to subscribe to a webhook event. For subscribing to an event minimum of one event slug and an URL is required. Before initiating the validation flow, the system will generate a string that will act as a challenge code. Use this challenge code as a query parameter to make an HTTP POST to your webhook endpoint. eg: [https://webhooks.example.com?challenge\_code](https://webhooks.example.com/linkedin?challengeCode=890e4665-4dfe-4ab1-b689-ed553bceeed0)="\" Your application must compute the challenge\_response using the provided encryption file. Return both the challenge\_code and challenge\_response in a JSON payload with a 200 OK status. challenge\_code - given challenge code through your webhook endpoint as a query param, challenge\_response - encrypt the challenge code using provided encryption file keys, clientSecret key for encryption is **"webhook",** eg response (JSON): **`{"challenge_code`*****`" : "<`*****`challenge_code>", "challenge_response" : "" }`** On receiving the validation response, the system will verify by computing the challenge\_response and comparing it with the challenge\_response returned by the app. If the challenge\_response is successfully verified, then the webhook is ready to be used in subscriptions. If the verification fails, an email will be sent to the admin user, for validating again use the **Webhook Subscriber Validation** endpoint, which is given below. if the validation fails continuously the subscription will be blocked permanently. An event in the system will post a request to the subscribed URL with a header and payload data. the request header contains a webhook signature which is an encrypted event slug and authorization, to identify the event decrypt the event signature using provided encryption file keys, and the clientSecret Key for event-signature is **"webhook-event"**. #### Headers | Name | Type | Description | | ----------------------------------------------- | ------ | ------------------- | | apikey\* | string | Apikey | | Authorization\* | string | Bearer access token | #### Request Body | Name | Type | Description | | ---------------------------------------- | ------ | ---------------------------------------------------------------------------------------- | | events\* | array |

An array of event slug

| | url\* | string | Endpoint url | {% tabs %} {% tab title="200: OK " %} ```html HTTP/1.1 200 OK Content-Type: application/json { "status_code": 200, "errors": {}, "data": { "uuid": "", //save this uuid for future subscription manage. "user": "", "events": [ "", ... ], "url": "", "content_type": "", "is_broken": , "is_verified": , "is_disabled": , "is_plugin": , "created": "" } } ``` {% endtab %} {% endtabs %} #### Sample Code **Node** ```javascript var request = require('request'); var options = { 'method': 'POST', 'url': 'https://///webhook/subscribe/', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', }, body: JSON.stringify({"events":["event_slug",..],"url":""}) }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/subscribe/', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'POST', CURLOPT_POSTFIELDS =>' { "events": ["",...], "url": "" }', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` **Error Responses**

Status Code	Error Type	Field	Description
400	Validation Error	events	This field is required. This list may not be empty. '<event-slug>' this webhook event is already subscribed for this API User.
400	Validation Error	url	This field is required. This field may not be blank. Enter a valid URL. Protocol of recipient URL not allowed (('https://',) only).

Status Code

Error Type

Field

Description

400

Validation Error

events

This field is required.

This list may not be empty.

'<event-slug>' this webhook event is already subscribed for this API User.

400

Validation Error

url

This field is required.

This field may not be blank.

Enter a valid URL.

Protocol of recipient URL not allowed (('https://',) only).

## **Webhook Subscriber Validation** ## Webhook Validation `POST` `‎https://///webhook/subscribe/validate//` This API endpoint is used to validate or verify a non-verified webhook subscription. #### Headers | Name | Type | Description | | ----------------------------------------------- | ------ | ------------------- | | apikey\* | string | Apikey | | Authorization\* | string | Bearer access token | {% tabs %} {% tab title="200: OK " %} ```html { "status_code": 200, "errors": {}, "data": {} } ``` {% endtab %} {% endtabs %} #### **Sample Code** **Node** ```javascript var request = require('request'); var options = { 'method': 'POST', 'url': 'https://///webhook/subscribe/validate//', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', } }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/subscribe/validate//', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'POST', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` #### Error Responses

Status Code	Error Type	Field	Description
400	Validation Error	uuid	This subscription is blocked due to maximum validation attempt (<maxattemptcount>), Please contact admin for unblocking your subscription. This subscription is already verified.
404	Not Found		The requested resource not found.
null

Status Code

Error Type

Field

Description

400

Validation Error

uuid

This subscription is blocked due to maximum validation attempt (<maxattemptcount>), Please contact admin for unblocking your subscription.

This subscription is already verified.

404

Not Found

The requested resource not found.

null

## Update Subscription ## Update a subscription `POST` `‎https://///webhook/update//` This API endpoint is used to update a webhook event subscription. #### Headers | Name | Type | Description | | ----------------------------------------------- | ------ | ------------------- | | apikey\* | string | Apikey | | Authorization\* | string | Bearer access token | #### Request Body | Name | Type | Description | | ------------ | ------- | ----------------- | | url | sring | URL | | events | array | List of events | | is\_disabled | boolean | Enable or Disable | {% tabs %} {% tab title="200: OK " %} ```html HTTP/1.1 200 OK Content-Type: application/json { "status_code": 200, "errors": {}, "data": { "uuid": "", //save this uuid for future subscription manage. "user": "", "events": [ "", ... ], "url": "", "content_type": "", "is_broken": , "is_verified": , "is_disabled": , "is_plugin": , "created": "" } } ``` {% endtab %} {% endtabs %} #### **Sample Code** **Node** ```javascript var request = require('request'); var options = { 'method': 'POST', 'url': 'https://///webhook/update//', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', }, body: JSON.stringify({"events":["event_slug",..],"url":"","is_disabled":}) }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/update//', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'POST', CURLOPT_POSTFIELDS =>' { "events": ["",...], "url": "", "is_disabled": }', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response;p ``` **Note:-** Error Responses are the same as an event subscription. ## Webhook Info ## Webhook Info `GET` `‎https://///webhook/info//` This API endpoint is used to get webhook subscription details. #### Headers | Name | Type | Description | | ----------------------------------------------- | ---------------------------- | ----------- | | apikey\* | string - Apikey | | | Authorization\* | string - Bearer access token | | {% tabs %} {% tab title="200: OK " %} ```javascript HTTP/1.1 200 OK Content-Type: application/json { "status_code": 200, "errors": {}, "data": { "uuid": "", //save this uuid for future subscription manage. "user": "", "events": [ "", ... ], "url": "", "content_type": "", "is_broken": , "is_verified": , "is_disabled": , "is_plugin": , "created": "" } } ``` {% endtab %} {% endtabs %} #### Sample Code **Node** ```javascript var request = require('request'); var options = { 'method': 'GET', 'url': 'https://///webhook/info//', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', } }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/info//', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'GET', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` ## Unsubscribe Event ## Unsubscribe webhook event `DELETE` `‎https://///webhook/unsubscribe//` This API endpoint is used to unsubscribe or delete an event subscription. #### Headers | Name | Type | Description | | ---------------------------------------------- | ---------------------------- | ----------- | | apikey\* | string - Apikey | | | Authorizaion\* | string - Bearer access-token | | {% tabs %} {% tab title="200: OK " %} ```html { "status_code": 200, "errors": {}, "data": {} } ``` {% endtab %} {% endtabs %} #### **Sample Code** **Node** ```javascript var request = require('request'); var options = { 'method': 'DELETE', 'url': 'https://///webhook/unsubscribe//', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', } }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/unsubscribe//', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'DELETE', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` ## List Subscriptions ## List event subscriptions `GET` `‎https://///webhook/list/` This API endpoint is used to list webhook event subscriptions. #### Headers | Name | Type | Description | | ----------------------------------------------- | ---------------------------- | ----------- | | apikey\* | string - Apikey | | | Authorization\* | string - Bearer access token | | {% tabs %} {% tab title="200: OK " %} ```html { "status_code": 200, "errors": {}, "data": { "results": [ { "uuid": "", "user": "", "events": [ "", ... ], "url": "", "content_type": "", "is_broken": , "is_verified": , "is_disabled": , "is_plugin": , "created": "" }, ... ], "count": , "previous": , "next": } } ``` {% endtab %} {% endtabs %} #### Sample Code **Node** ```javascript var request = require('request'); var options = { 'method': 'GET', 'url': 'https://///webhook/list/', 'headers': { 'apikey': '', 'Authorization': 'Bearer ', } }; request(options, function (error, response) { if (error) throw new Error(error); console.log(response.body); }); ``` **PHP** ```php 'https://///webhook/list/', CURLOPT_RETURNTRANSFER => true, CURLOPT_ENCODING => '', CURLOPT_MAXREDIRS => 10, CURLOPT_TIMEOUT => 0, CURLOPT_FOLLOWLOCATION => true, CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1, CURLOPT_CUSTOMREQUEST => 'GET', CURLOPT_HTTPHEADER => array( 'apikey: ', 'Authorization: Bearer ', ), )); $response = curl_exec($curl); curl_close($curl); echo $response; ``` ## Provided Webhook Events These are available webhook events in the system and the data given by the event. {% tabs %} {% tab title="Event Name" %} **User Registration** {% endtab %} {% tab title="Event Slug" %} **user-registration** {% endtab %} {% tab title="Data (JSON)" %} ```html { 'email': '', 'sponsor': '', 'username': '', 'is_active': , 'last_name': '', 'unique_id': '', 'user_role': [ { 'name': '' } ], 'first_name': '', 'phone_code': , 'phone_number': '' } ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Order Creation** {% endtab %} {% tab title="Event Slug" %} **order-creation** {% endtab %} {% tab title="Data (JSON)" %} if the order type is **Commerce,** ```html { 'uid': '', 'status': '', 'products': [ { 'bv': , 'cv': , 'point': 'total': , 'quantity': , 'product_name': '', 'product_base_price': '', 'product_id': '' }, ... ], 'username': '', 'last_name': '', 'first_name': '', 'order_type': '', 'order_total': '', 'currency_code': '', 'order_number': '' } ``` if the order type is **Enrollment,** ```html { 'bv': '', 'cv': '', 'uid': '', 'points': '', 'status': '', 'username': '', 'last_name': '', 'first_name': '', 'order_type': 'ENROLLMENT', 'product_id': '', 'amount_paid': '', 'order_total': '', 'product_name': '', 'actual_amount': '', 'currency_code': '', 'payment_status': '', 'product_base_price': '', 'order_number': '' } ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Block User** {% endtab %} {% tab title="Event Slug" %} **block-user** {% endtab %} {% tab title="Data (JSON)" %} ```html [ {'unique_id': ''}, ... ] ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Unblock User** {% endtab %} {% tab title="Event Slug" %} **unblock-user** {% endtab %} {% tab title="Data (JSON)" %} ```html [ {'unique_id': ''}, ... ] ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Product Creation** {% endtab %} {% tab title="Event Slug" %} **product-creation** {% endtab %} {% tab title="Data (JSON)" %} ```html { 'bundle_id': '' } ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Product Update** {% endtab %} {% tab title="Event Slug" %} **product-update** {% endtab %} {% tab title="Data (JSON)" %} ```html { 'bundle_id': '' } ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Product Delete** {% endtab %} {% tab title="Event Slug" %} **product-delete** {% endtab %} {% tab title="Data (JSON)" %} ```html { 'bundle_id': '' } ``` {% endtab %} {% endtabs %} {% tabs %} {% tab title="Event Name" %} **Profile Update** {% endtab %} {% tab title="Event Slug" %} **profile-update** {% endtab %} {% tab title="Data (JSON)" %} ```html { 'unique_id': '' } ``` {% endtab %} {% endtabs %}