Webhooks

Configure outgoing webhooks to receive real-time notifications when events occur in your account.

Webhook Endpoints

GET/v1/webhooksList webhook endpoints

POST/v1/webhooksCreate webhook endpoint

DELETE/v1/webhooks/:idDelete webhook endpoint

curl

curl -X POST https://api.icodrip.com/v1/webhooks \
  -H "Authorization: Bearer sk_live_xxxxxxxxxxxxx" \
  -H "Content-Type: application/json" \
  -d '{
    "url": "https://yourapp.com/webhooks/icodrip",
    "events": ["conversion.created", "payout.completed"]
  }'

Webhook Events

affiliate.createdA new affiliate signed up

affiliate.approvedAn affiliate was approved

conversion.createdA new conversion was tracked

conversion.approvedA conversion was approved

payout.createdA payout was initiated

payout.completedA payout was successfully sent

Signature Verification

Every webhook request includes an X-Icodrip-Signature header containing an HMAC-SHA256 signature of the raw request body, signed with your webhook secret. Always verify this signature before processing any webhook payload.

Node.js

import crypto from "crypto";

function verifySignature(payload: string, signature: string, secret: string) {
  const expected = crypto
    .createHmac("sha256", secret)
    .update(payload)
    .digest("hex");
  return crypto.timingSafeEqual(
    Buffer.from(signature),
    Buffer.from(expected)
  );
}

Clicks Installation