Back
How to handle webhooks from external services?
Hi, so I am trying to setup multiple services which send events through webhooks to my appwrite project.
I have setup functions that will receive and process these requests.
A typical configuration in these services asks for a webhookUrl at which they will send their updates. I understand this url would be the execution url of my function. Ex.https://myprojecturl/v1/functions/function-id/executions
- for external services to be able to hit an appwrite url, they need to include a header ie. x-appwrite-project:<ProjectId>. I dont see any configuration in these services where I can ask them to include this custom header in their requests. Is there a different way that I can allow requests?
- When working with these external requests the function must have "Guest" scope enabled, this means anyone can hit it. Is there any way that I can selectively allow only a certain service to be able to access my function?
TL;DR
To handle webhooks from external services in Appwrite:
1. Use the function [domain](https://appwrite.io/docs/products/functions/execute#domains) for webhook handling.
2. Perform authentication checks within your function code, such as verifying signatures for services like Stripe.
1. Utilize the function domain for webhook setup instead of configuring headers in external services.
2. Implement auth checks within your function code to selectively allow specific services to access it.
- use the function domain instead.
- do the auth check in your function code. For example, for stripe, we check the webhook signature and validate it.
