How can we authenticate the webhook response coming from the Zoom?

Shrav_Malkani · October 10, 2018, 2:23pm

I have a requirement where I am getting all the details through the webhook when a meeting ends.

I have written a public web service which is being called from the Zoom and sends the webhook response to that particular URL when meeting finishes.

I want to authenticate the response that the response is coming from the connected Zoom org. Otherwise, anyone can post the request and change the data by calling the public service if he knows the public service URL.

Please help me with the authentication process to prevent any kind of attack.

Thank in advance!!!

michael_p.zoom · October 12, 2018, 8:02pm

Hi Shrav,

Are you using our webhooks from developer.zoom.us or using our new marketplace?

michael_p.zoom · October 12, 2018, 9:00pm

Hi Shrav,

You can authenticate using Authorization within the webhook response header.

If you set your header using developer.zoom.us, you can see our docs here - https://developer.zoom.us/docs/webhooks-v2/

If you’re using our new marketplace, you can use this - https://marketplace.zoom.us/docs/docs/zoom-app-marketplace/webhooks/webhook-event-schemas/Payload-header.

Thanks

Topic		Replies	Views
Authenticate webhook POST from Zoom API and Webhooks	8	3048	August 21, 2020
Re-validation webhooks API and Webhooks	2	289	April 23, 2023
Webhook Authentication Header option is not listing 'Token Authentication'(OAuth) in my app API and Webhooks	2	195	August 2, 2023
Is there an API for registering for WebHooks? API and Webhooks	6	1362	August 21, 2020
Webhook POST Authentication API and Webhooks	2	600	August 21, 2020

How can we authenticate the webhook response coming from the Zoom?

Related Topics