Webhook (under maintenance)
Explanation and illustration of our webhook service, which triggers your callbackUrl(upon task creation) to provide results.
1. A valid URL meets the following conditions:
2. Webhook Body (with POST method)
3. Verify the webhook
Before you respond to a webhook, you need to verify that the webhook was sent from HardCaptcha. You can verify the webhook by calculating a digital signature.
Each webhook request includes a X-HardCaptcha-Hmac-SHA256
header, which is generated using your API key
along with the data sent in the request.
4. Response
Your webhook acknowledges that it received data by sending a 20x OK
response. Any response outside of the 20x range, including 3XX HTTP redirection codes, indicates that you didn't receive the webhook.
Request timeout: 5 seconds
Retry frequency: 3 three times with a backoff period of 5 seconds.
Last updated