Fetch Webhook

Fetch Webhooks

curl --request GET \
  --url https://secureapi.tender.cash/v1/api/webhook \
  --header 'authorization: <api-key>' \
  --header 'x-access-id: <x-access-id>' \
  --header 'x-request-id: <x-request-id>' \
  --header 'x-timestamp: <x-timestamp>'

{
  "status": "<string>",
  "message": "<string>",
  "data": {
    "_id": "<string>",
    "merchantId": "<string>",
    "description": "<string>",
    "url": "<string>",
    "eventTypes": [
      "<string>"
    ],
    "headers": {},
    "isActive": true,
    "isDeleted": true,
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z"
  }
}

GET

api

webhook

Fetch Webhooks

curl --request GET \
  --url https://secureapi.tender.cash/v1/api/webhook \
  --header 'authorization: <api-key>' \
  --header 'x-access-id: <x-access-id>' \
  --header 'x-request-id: <x-request-id>' \
  --header 'x-timestamp: <x-timestamp>'

{
  "status": "<string>",
  "message": "<string>",
  "data": {
    "_id": "<string>",
    "merchantId": "<string>",
    "description": "<string>",
    "url": "<string>",
    "eventTypes": [
      "<string>"
    ],
    "headers": {},
    "isActive": true,
    "isDeleted": true,
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z"
  }
}

Headers

authorization

string

required

Base64-encoded HMAC-SHA256 signature of the request payload using the API secretMinimum string length: 1Example:

"5e73d044c44d733fcf819ad3409aaaddca840d421b69cb0b04e2c750fc62e-ce7526d36296237663ad1f06f62a730c0466516507196b3ce6567493c-c52a7cf63d"

x-timestamp

string

required

Current timestamp in ISO 8601 formatExample: "2025-03-15T09:45:53.000Z"

x-request-id

string

required

Unique identifier for the request (UUID v4)Example: "550e8400-e29b-41d4-a716-446655440000"

x-access-id

string

required

Your API access ID provided by TenderExample: "your-access-id-here"

Response

status

string

required

Status of the API requestExample: "success"

message

string

required

Human-readable message describing the resultExample: "Webhooks fetched"

data

object

required

The active webhook configuration

Show data properties

_id

string

Unique MongoDB identifier for the webhookExample: "69105ed34b9f23d52d1be957"

merchantId

string

Merchant ID associated with the webhookExample: "6538e8f9bdec6d1a21978a64"

description

string

Description of the webhookExample: "example requests"

url

string

Webhook endpoint URLExample: "https://example.com"

eventTypes

array

Array of subscribed event typesExample: ["transaction_completed"]

headers

object

Custom headers for webhook requestsExample: { "api-key": "allow-requior" }

isActive

boolean

Whether the webhook is currently activeExample: true

isDeleted

boolean

Whether the webhook has been deletedExample: false

createdAt

string

ISO 8601 timestamp when the webhook was createdExample: "2025-11-09T09:28:51.401Z"

updatedAt

string

ISO 8601 timestamp when the webhook was last updatedExample: "2025-11-09T09:28:51.401Z"

__v

number

Version key for MongoDB documentExample: 0

Authorizations

authorization

string

header

required

HMAC-SHA256 signature. Required headers: x-access-id, x-request-id (UUID), x-timestamp (ISO), authorization (HMAC signature)

Headers

authorization

string

required

Base64-encoded HMAC-SHA256 signature of the request payload using the API secret

x-timestamp

string<date-time>

required

Current timestamp in ISO 8601 format

x-request-id

string<uuid>

required

Unique identifier for the request (UUID v4)

x-access-id

string

required

Your API access ID provided by Tender

Response

200 - application/json

Webhooks retrieved successfully

status

string

message

string

data

object

Show child attributes

Add Webhook Delete Webhook

Overview

Agents & businesses

Payment

System

Webhooks

Headers

Response

Authorizations

Headers

Response

Overview

Agents & businesses

Payment

System

Webhooks

​Headers

​Response

Authorizations

Headers

Response

Headers

Response