Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.sertexity.com/llms.txt

Use this file to discover all available pages before exploring further.

Webhooks Overview

Sertexity sends HTTP POST notifications to your server when events occur — no polling needed.

How it works

  1. Register a webhook URL via POST /webhooks.
  2. When an event fires, Sertexity sends a signed POST to your URL within seconds.
  3. Respond with any 2xx status within 10 seconds to acknowledge.
  4. On failure, Sertexity retries 5 times with exponential back-off: 30 s → 2 min → 10 min → 30 min → 2 h.

Signature verification

Every delivery includes: 
X-Sertexity-Signature: sha256=<HMAC_SHA256_hex>
Verify with the secret you provided when registering: 
import hmac, hashlib

def verify(secret: str, payload: bytes, header: str) -> bool:
    expected = "sha256=" + hmac.new(
        secret.encode(), payload, hashlib.sha256
    ).hexdigest()
    return hmac.compare_digest(expected, header)
Always verify signatures before processing a payload.

Payload structure

{
  "id": "evt_01hz9g4k1m3p7r8s",
  "type": "operation.completed",
  "created_at": "2024-09-15T10:30:05Z",
  "data": {
    "object": { "...": "full object" }
  }
}
FieldDescription
idUnique event ID — use as an idempotency key
typeEvent type string
created_atISO 8601
data.objectThe complete resource that changed