Issue with Webhook Secret and Authentication Mechanism
I have configured a webhook for an alert and was able to pass a secret while setting it up. However, I am receiving the webhook API calls even without the secret being validated, and I am unable to see the secret anywhere in the request headers or body.
Could you clarify where the secret is being passed, or if there's a specific way to verify it within the request?
Additionally, is there any way to authenticate the webhook request using client credentials, similar to how client credential-based authentication works in other APIs?
Answers
-
Thanks for reaching out to our community forum.
The secret you configured for your Domo webhook is primarily used for security purposes. It acts as a verification mechanism to ensure that the incoming webhook request originates from Domo and hasn't been tampered with. Due to security reasons, it's typically not visible.
The method of how the secret is passed and validated can vary depending on the webhook provider and your specific configuration.
If you need further assistance, please create a support case and provide the following details:
1) Webhook provider: Which service or platform are you using?
2) Webhook configuration: How did you set up the webhook in Domo?
3) Request inspection: Share the request headers and body.
Please note that authenticating the webhook request using client credentials is not currently supported.
Let us know if you have any other questions.
0 -
Thanks @NemishTambatkasar.
I have one last question on how I can ensure that the incoming webhook request originates from Domo using the secret. I understand the purpose of it, but even after passing the secret, I am receiving the message as it is in the webhook receiver service without performing any authentication step.
I am using the webhook from the Alert creation step as mentioned in this document's "attach an action" section and have a C# API to consume that webhook.0
Categories
- All Categories
- 1.9K Product Ideas
- 1.9K Ideas Exchange
- 1.6K Connect
- 1.3K Connectors
- 303 Workbench
- 6 Cloud Amplifier
- 9 Federated
- 2.9K Transform
- 104 SQL DataFlows
- 637 Datasets
- 2.2K Magic ETL
- 3.9K Visualize
- 2.5K Charting
- 763 Beast Mode
- 65 App Studio
- 42 Variables
- 709 Automate
- 184 Apps
- 460 APIs & Domo Developer
- 54 Workflows
- 11 DomoAI
- 39 Predict
- 16 Jupyter Workspaces
- 23 R & Python Tiles
- 401 Distribute
- 116 Domo Everywhere
- 277 Scheduled Reports
- 8 Software Integrations
- 134 Manage
- 131 Governance & Security
- 8 Domo Community Gallery
- 44 Product Releases
- 12 Domo University
- 5.4K Community Forums
- 40 Getting Started
- 30 Community Member Introductions
- 111 Community Announcements
- 4.8K Archive