Configure Webhooks

Overview

Configure webhook endpoints to receive real-time notifications about job status changes. This endpoint returns a portal link where you can manage your webhook configurations.

Webhook event delivery is currently under development. The configuration portal is fully functional, but events are not yet being sent.

How It Works

Request Portal Link

Call this endpoint to get your unique portal URL

Visit Portal

Open the portal link in your browser

Add Endpoints

Configure one or more webhook URLs to receive events

Test & Save

Test your endpoints and save the configuration

Portal Features

The webhook configuration portal allows you to:

Add Multiple Endpoints - Configure different URLs for different event types
Set Authentication - Add headers or basic auth to your webhooks
Filter Events - Choose which events to receive at each endpoint
Test Endpoints - Send test events to verify your setup
View Logs - See delivery attempts and debug failed webhooks

Webhook Security

Each webhook request includes security headers for verification:

webhook-id: msg_2Jv7pYGL7UwXqF3v6RjLVxQYPZG
webhook-timestamp: 1704067200
webhook-signature: v1,g0hM9SsE+OTPJTjfm/kBRBOlqPmYFYpwTEFfQK6UHdI=

Verifying Webhook Signatures

import hmac
import hashlib
import time

def verify_webhook(payload, headers, webhook_secret):
    """Verify webhook authenticity using HMAC signature."""
    
    webhook_id = headers.get('webhook-id')
    webhook_timestamp = headers.get('webhook-timestamp')
    webhook_signature = headers.get('webhook-signature')
    
    if not all([webhook_id, webhook_timestamp, webhook_signature]):
        return False
    
    # Check timestamp to prevent replay attacks (5 minute window)
    current_time = int(time.time())
    if abs(current_time - int(webhook_timestamp)) > 300:
        return False
    
    # Construct signed content
    signed_content = f"{webhook_id}.{webhook_timestamp}.{payload}"
    
    # Extract signature from header (format: v1,signature)
    signature = webhook_signature.split(',')[1] if ',' in webhook_signature else webhook_signature
    
    # Compute expected signature
    expected = hmac.new(
        webhook_secret.encode(),
        signed_content.encode(),
        hashlib.sha256
    ).hexdigest()
    
    # Constant-time comparison
    return hmac.compare_digest(signature, expected)

Webhook Events (Coming Soon)

Once enabled, you’ll receive events for:

Job Status Events

{
  "type": "job.completed",
  "timestamp": "2024-01-15T10:30:00Z",
  "data": {
    "job_id": "123e4567-e89b-12d3-a456-426614174000",
    "status": "completed",
    "pages_processed": 25,
    "processing_time": 12.5
  }
}

Event Types

Event	Description
`job.created`	New async job created
`job.processing`	Job started processing
`job.completed`	Job completed successfully
`job.failed`	Job failed with error
`job.cancelled`	Job was cancelled

Example Implementation

Express.js Webhook Handler

const express = require('express');
const crypto = require('crypto');

const app = express();
app.use(express.raw({ type: 'application/json' }));

app.post('/webhook', (req, res) => {
  const payload = req.body.toString();
  
  // Verify webhook signature
  if (!verifyWebhook(payload, req.headers, process.env.WEBHOOK_SECRET)) {
    return res.status(401).send('Unauthorized');
  }
  
  const event = JSON.parse(payload);
  
  // Handle different event types
  switch (event.type) {
    case 'job.completed':
      console.log(`Job ${event.data.job_id} completed`);
      // Process completed job
      break;
    case 'job.failed':
      console.error(`Job ${event.data.job_id} failed: ${event.data.error}`);
      // Handle failure
      break;
  }
  
  res.status(200).send('OK');
});

Python Flask Handler

from flask import Flask, request, abort
import json

app = Flask(__name__)

@app.route('/webhook', methods=['POST'])
def handle_webhook():
    payload = request.get_data(as_text=True)
    
    # Verify webhook
    if not verify_webhook(payload, request.headers, app.config['WEBHOOK_SECRET']):
        abort(401)
    
    event = json.loads(payload)
    
    # Process event
    if event['type'] == 'job.completed':
        process_completed_job(event['data'])
    elif event['type'] == 'job.failed':
        handle_failed_job(event['data'])
    
    return '', 200

Best Practices

Endpoint Security

Error Handling

Performance

Troubleshooting

Common Issues

Issue	Solution
Not receiving webhooks	Check endpoint URL is publicly accessible
Signature verification fails	Ensure you’re using the correct secret
Timeouts	Process webhooks async and respond quickly
Duplicate events	Implement idempotency using webhook-id

Testing Your Endpoint

Before going live:

Use webhook testing tools like ngrok for local development
Send test events from the portal
Verify signature validation works
Test error handling and retries
Monitor initial production events closely

Next Steps

API Reference

Explore other endpoints

Async Processing

Learn about async jobs

Authorizations

x-api-key

string

header

required

API key for authentication

Response

200

application/json

Portal link generated

The response is of type object.

API Reference

Endpoints

​Overview

​How It Works

​Portal Features

​Webhook Security

​Verifying Webhook Signatures

​Webhook Events (Coming Soon)

​Job Status Events

​Event Types

​Example Implementation

​Express.js Webhook Handler

​Python Flask Handler

​Best Practices

​Troubleshooting

​Common Issues

​Testing Your Endpoint

​Next Steps

API Reference

Async Processing

Authorizations

Response

Overview

How It Works

Portal Features

Webhook Security

Verifying Webhook Signatures

Webhook Events (Coming Soon)

Job Status Events

Event Types

Example Implementation

Express.js Webhook Handler

Python Flask Handler

Best Practices

Troubleshooting

Common Issues

Testing Your Endpoint

Next Steps