Rotate webhook secret
POST/v2/organizations/:orgId/webhook-secret
Generate a fresh webhook secret for the organization, replacing any existing one. The plaintext secret is returned in the response and is never shown again, so store it before you close the connection. It's used to sign outbound webhook payloads, and your receiver verifies them with the same value.
Request
Path Parameters
Organization ID
Responses
- 200
- 401
- 403
- 404
- 429
- 500
Webhook secret generated successfully
- application/json
- Schema
- Example (from schema)
Schema
The plaintext webhook secret (32 bytes encoded as 64-character lowercase hex)
{
"secret": "3f4a8c1b2d6e9f0a7b5c8d1e2f4a6b8c0d2e4f6a8b0c2d4e6f8a0b2c4d6e8f0"
}
Unauthorized
- application/json
- Schema
- Example (from schema)
Schema
Available only when the message includes additional error details.
{
"message": "string",
"statusCode": 0,
"error": "string"
}
Forbidden
- application/json
- Schema
- Example (from schema)
Schema
Available only when the message includes additional error details.
{
"message": "string",
"statusCode": 0,
"error": "string"
}
Organization not found
- application/json
- Schema
- Example (from schema)
Schema
Available only when the message includes additional error details.
{
"message": "string",
"statusCode": 0,
"error": "string"
}
Too Many Requests
- application/json
- Schema
- Example (from schema)
Schema
Available only when the message includes additional error details.
{
"message": "string",
"statusCode": 0,
"error": "string"
}
Internal Server Error
- application/json
- Schema
- Example (from schema)
Schema
Available only when the message includes additional error details.
{
"message": "string",
"statusCode": 0,
"error": "string"
}