Webhook Management Compatibility Note
This page is kept for compatibility with older docs links that described generic webhook endpoint CRUD on the public API.Reviewed Public Status
The reviewed public gateway does not currently include a canonical genericPOST /api/v1/webhooks, GET /api/v1/webhooks, PUT /api/v1/webhooks/{id}, or DELETE /api/v1/webhooks/{id} management surface.
What The Reviewed Public Surface Does Expose
POST /api/v1/webhooks/cards/{provider}for provider callbacksGET /api/v1/webhooks/cards/events/{card_id}for authenticated event reviewPOST /api/v1/webhooks/cards/events/{event_id}/replayfor replay-safe operational recovery
Important Notes
- If your tenant has configurable webhook endpoints, that capability is managed through separately issued tooling or contract documentation.
- Do not infer a generic reviewed CRUD surface from older SDK examples or legacy docs links.
- Keep callback handling replay-safe, signature-verified, and auditable regardless of how endpoint configuration is managed for your tenant.
Next Steps
Webhooks Overview
See the reviewed public webhook surface
Webhook Events
Review the current event catalogue
Verify Signatures
Validate webhook authenticity