Webhook callback

Usage

The /request/create endpoint allows initiators to define a per-request webhook URL to be used for a callback upon completion of the signature.

Initiators are free to include dynamic parameters as part of the callback URL to uniquely identify a particular request. The URL passed in the webhook-url parameter must be URL-encoded.

Request

The callback is sent as a POST request with an empty body.

Authentication

Optionally and upon request, Certifaction can set a secret value on account level to be used in the webhook calls. This is for the initiator to make sure the callback was in fact issued by Certifaction.

The secret will be attached to the calls in the following header:

• authorization: Bearer <secret>