0

I am following this extensiv doc in order to configure the webhooks for receiving the updates on our endpoint. Create webhook flow

I see this another doc for validating the RSA signature for message validity.

Problem that I am seeing is my API endpoint is secured with Basic Auth and when I am using that endpoint in the configure webhook page in extensiv, I am not seeing any section for authorization for this endpoint. So how do I authenticate the calls coming from extensiv ?

Is there a way I can provide authorization details for my endpoint to extensiv ?

Improve this question
3
  • Don't see their docs mentioning anything about this. You could try if they support the "syntax" of providing the credentials in the URL - https://username:password@.... If not, then you might need to remove HTTP Auth for this endpoint.
    – CBroe
    Commented Jul 8 at 13:02
  • Great ideas @CBroe but these are not feasible for us because of security concerns.
    – litttle fish
    Commented Jul 10 at 6:44
  • What exactly are those concerns? If you are worried a 3rd party could send fake requests, then validate the signature.
    – CBroe
    Commented Jul 10 at 6:49
Related questions
1
How does Event Grid + CloudEvents + Webhooks support updating the access_token?
23
GitHub WebHooks triggered globally instead of per branch
0
ClickUp webhook
Load 5 more related questions Show fewer related questions

0

Reset to default

Browse other questions tagged or ask your own question.