Learn about the webhooks used by the Session API.
Implement the handler
Register the webhook
POST /v2/session/apps/{appID}/webhooks
endpoint.Activate the webhook
POST /v2/session/apps/{appID}/webhooks/{webhookID}/activate
endpoint.Verify the webhook
200 OK
along with the challenge response to acknowledge receipt of the event. See more details in the Activation Challenge Request page.Start receiving events
200 OK
HTTP response to the POST request to acknowledge receipt of the event. If you don’t, Prelude will retry sending the event for 2 weeks.rsassa-pss-sha256=
in the X-Webhook-Signature
header of each request to your webhook endpoint.
You can get the public key to verify the signature from the JWKS endpoint of your application.
user.created
user.deleted
user.profile.updated
user.identifier.created
user.identifier.deleted
user.session.created
user.session.revoked
The schema is of type object
.