Rotate webhook secret

post

https://developer.veatimeclock.com/v1/webhooks/{id}/rotate

Rotate the signing secret for a webhook subscription. During the overlap window, the server signs outbound payloads with both the new and old secrets (dual-header: X-Signature-256 and X-Signature-256-Previous).

After rotation_expires_at, only the new secret is used.

Required scope: webhooks

Recent Requests

Time	Status	User Agent
Retrieving recent requests…

Loading…

Responses

Language

Credentials

Bearer

Loading…

Response

Click Try It! to start a request and see the response here! Or choose an example:

application/json

200Secret rotated — new secret shown once

400Invalid subscription ID or validation error

401Missing or invalid API key

403API key does not have the required scope

404Subscription not found or not owned by this API key

422Legacy secret cannot be rotated (delete and recreate instead)

429Rate limit exceeded