> ## Documentation Index
> Fetch the complete documentation index at: https://docs.straddle.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Webhooks 101

> Learn the basics of deploying webhook endpoints, ingesting Straddle event payloads, and verifying signatures so your platform reacts to ACH events reliably.

The Straddle APIs utilize webhooks to notify you in real-time when certain events occur within your platform or account. At their core, webhooks are simply **HTTP POST** requests to a pre-configured endpoint that you control.

## How Webhooks Work

1. **Event Occurs**: A relevant event happens within the Straddle platform (e.g., a customer makes a payment).

2. **Webhook Sent**: Straddle sends a POST request to your designated endpoint with a JSON payload describing the event.

3. **Your Response**: To indicate successful processing, return a **2xx** (200–299) HTTP status code within 15 seconds. This assures Straddle you’ve received the event and prevents unnecessary retries.

<Info>
  Make sure to disable CSRF protection on your webhook endpoint if your framework has it enabled by default.
</Info>

### Why Verify?

To ensure that the webhook you receive is indeed from Straddle and not from a malicious source, it’s important to:

* **Verify the Signature**: Check the cryptographic signature attached to the event.

* **Verify the Timestamp**: Validate the event’s timestamp to prevent replay attacks.

See the [Why Verify Webhooks](/webhooks/security/why-verify) section for more details.

## Key Concepts at a Glance

<CardGroup cols={2}>
  <Card title="Verification" icon="shield-check">
    Ensure authenticity by verifying signatures and timestamps.
  </Card>

  <Card title="Timely Response" icon="clock">
    Respond with a 2xx status code within 15s to confirm receipt.
  </Card>

  <Card title="Filtering Events" icon="filter">
    Subscribe only to the events you need to reduce noise.
  </Card>

  <Card title="Replay & Recovery" icon="rotate-left">
    Easily replay events from the dashboard if something goes wrong.
  </Card>
</CardGroup>

## Dashboard Console

The Straddle Dashboard provides a comprehensive **webhook console** for managing your webhook integration:

* **Configure Endpoints**: Add or edit endpoints that receive webhooks.

* **Select Event Types**: Subscribe to the events that matter to you.

* **Monitor Deliveries & History**: View timestamps, statuses, and payload data of past deliveries.

* **Inspect Payloads**: Examine each event’s payload to assist in debugging.

* **Retry & Replay**: Manually resend events that may have failed.

* **Activity Tracking**: Understand what happened and when.

## Get Started Quickly

<CardGroup cols={2}>
  <Card title="Use the Dashboard" icon="rectangle-code">
    Set up endpoints and configure event types right from the dashboard.
  </Card>

  <Card title="Test with Dummy Data" icon="alien-8bit">
    Use Svix Play or the built-in debugger to simulate events before going live.
  </Card>

  <Card title="Secure Your Endpoint" icon="lock">
    Implement signature and timestamp checks to ensure payload integrity.
  </Card>

  <Card title="Go Live" icon="rocket">
    Once tested, deploy your endpoint and start receiving real-time events.
  </Card>
</CardGroup>

While the dashboard is the quickest way to get started, you can also use the Straddle API to build custom webhook management workflows tailored to your environment.

With these fundamentals in place, you’re ready to confidently integrate and handle webhooks from Straddle.

```
```
