Hi everyone,
We’ve had a Zoom application in the marketplace for a couple years… we average a couple hundred thousand webhook requests back to our app, from Zoom, to our endpoints, per day, as documented here:
/docs/api/webhooks/#webhook-structure (can’t include the full URL because links aren’t allowed?)
Over the last week from Friday at ~4pm PST to Monday ~2pm PST, the incoming webhook did not contain the header “authorization”, as documented in the above link… but then for a brief period on Tuesday, until about 8pm, we were getting that header… and now we’re back to not seeing the authorization header in the incoming webhooks.
I’ve verified that there’s nothing in place on our firewall or WAF that might be removing it… it just seems like there’s something happening on the Zoom side. Happy to provide any additional information if someone wants to take a deeper look.