Who this is for
- Teams integrating SolvaPay events into app workflows
- Teams that need secure signature verification and idempotent handlers
- Teams handling purchase and payment lifecycle updates
What you will achieve
By the end, your webhook endpoint verifies signatures, handles core events, and is safe to retry.Prerequisites
- A public HTTPS webhook endpoint
- A webhook signing secret from the SolvaPay Console
- Server runtime support for raw request body handling
Steps
- Read the main webhooks reference.
- Follow SDK handling details in TypeScript webhook guide.
- Verify
SV-Signaturebefore processing any event. - Add idempotency protection using delivery identifiers.
- Process the events you care about (
payment.*,purchase.*,checkout_session.*,customer.credit.*,usage.*, and more) and return2xxquickly. Optionally subscribe the endpoint to a specific subset of events.
Verify
- Invalid signatures are rejected
- Valid events are processed exactly once
- Retry behavior does not duplicate business side effects