webhooks should have verification token provided by the user
For added security, it would be nice to have webhooks sending verification token in the POST headers, like auth token, which will be provided by the user at the time of creating webhook. Verification token makes it possible to know if the webhook is actually originated from zoho subscriptions.
1
vote
Hari Prasad
shared this idea
Hi there,
Thanks for posting your suggestion. Zoho Subscriptions now allows you to secure your webhooks by adding a secret key. To know how to set this up, you can refer this FAQ:
https://www.zoho.com/subscriptions/kb/webhooks/securing-webhooks.html
Cheers,
Reshma