Webhooks Overview

What Webhooks Do
Requirements
Security
Retries
Quick Start

What Webhooks Do

Webhooks send HTTP POST requests to your endpoint when:

Accounts are connected or updated
Sync jobs start, complete, or fail
Records are created, updated, or deleted

Requirements

Requirement	Details
HTTPS only	Your endpoint must use HTTPS
POST method	All webhooks are POST requests
Return 200	Respond with 200 to acknowledge receipt

Security

Each webhook includes an X-Handled-Signature header containing a SHA256 HMAC signature. Use your webhook secret to verify requests come from Handled.

Retries

If your endpoint fails (4xx or 5xx response):

Handled retries up to 3 times
Exponential backoff between retries (max 10 seconds)
Webhook is deactivated after persistent failures

You’ll receive an email when a webhook is deactivated due to persistent failures.

Quick Start

Create Webhook

Create a webhook via UI or API

Set Up Endpoint

Create an HTTPS endpoint to receive events

Verify Signatures

Implement signature verification

Process Events

Handle events based on their type

Connection Validation Results

Creating Webhooks via UI

Getting Started

How Handled Works

Integrations

Unified APIs

Integrated Accounts

Webhooks

Link SDK

RapidBridge (Sync Jobs)

RapidForm

Workflows

Platform

Webhooks Overview

What Webhooks Do

Requirements

Security

Retries

Quick Start

Getting Started

How Handled Works

Integrations

Unified APIs

Integrated Accounts

Webhooks

Link SDK

RapidBridge (Sync Jobs)

RapidForm

Workflows

Platform

​What Webhooks Do

​Requirements

​Security

​Retries

​Quick Start

What Webhooks Do

Requirements

Security

Retries

Quick Start