Rotate webhook signing secret
Generate a new HMAC-SHA256 signing secret for webhook delivery.
The new secret is returned once in this response. Store it securely and update your
webhook receiver to verify future requests with this value.
Authorizations
Your API key, passed as a query parameter on every request.
Response
New webhook signing secret generated.
Webhook signing configuration. The secret field is returned only when generated or rotated.
Whether Ochy signs webhook requests.
true
Signature algorithm used for webhook requests.
HMAC-SHA256 "HMAC-SHA256"
Last four characters of the current signing secret, for identification.
"n6p8"
When the current signing secret was created (ISO 8601 UTC).
"2026-03-23T10:45:00Z"
When the signature configuration was last updated (ISO 8601 UTC).
"2026-03-23T10:45:00Z"
Full signing secret. Returned only when generated or rotated; store it securely.
"YOUR_GENERATED_SIGNING_SECRET"