This document describes Flipt’s webhook support.
X-Flipt-Webhook-Signature
header populated. This value can be set in the Audit Events - Webhook section of the Flipt server configuration.
The value in the X-Flipt-Webhook-Signature
header is the request body HMAC SHA256 signed with the signing secret you specified. On the webhook server, you can validate the signature by using the same signing secret. It’s strongly recommended that you do this to prevent requests to your webhook server that are from invalid origins.
toJson
utility function that will transform an
input into JSON if it fits the structure.POST
request when events need to be emitted to the URL https://example.com
with the HTTP headers, Content-Type
and Authorization
, and the body which is a Go template that will be executed when an event comes in.
The event structure looks like this: