LogoLogo
ProductsDevelopersAPI ReferenceContact Us
Developers
Developers
  • KORE Developer Experience Overview
  • API Management
    • API Clients
    • Authorization
    • API Responses
  • Webhooks
    • Connection Settings
    • Verifying Callbacks from KORE
    • Idempotency
  • Event Streams
    • Destinations
    • Streaming Rules
    • Events
  • Get Started
    • APIs
    • Webhooks
    • Event Streams
      • AWS Kinesis Quick Start
        • Script to Create a Kinesis Stream
      • Webhook Quick Start
  • How To ...
    • Invite and collaborate with developers
    • APIs
      • Refresh API Access Token
    • Webhooks
      • Validate Webhook Signatures
      • Rotate my Webhook Secret
      • Test and Troubleshoot my Webhook Integration
    • Event Streams
      • Test My Destination
      • Modify my Destination
      • Modify my Streaming Rule
On this page

Was this helpful?

  1. Webhooks

Verifying Callbacks from KORE

PreviousConnection SettingsNextIdempotency

Last updated 8 months ago

Was this helpful?

When your application receives a callback from KORE, you should verify the the events are coming from KORE.

When KORE responds to the URL you have configured, regardless of how you have configured it (API, UI, Event Streams), KORE signs every Webhook with a kore-signature header so you can validate that the sender is KORE and the contents haven't been modified.

KORE signs the Webhook using a secret that you generate through the . When you register for the first time, you will not have a Webhook secret for your account, so you need to, if you would like to sign your events. You can refer to our for details on validating Webhook signatures.

If no secret is created for your account, KORE will respond with an empty value for the kore-signature header.

KORE strongly encourages you to generate a Webhook secret.

If you generate a new Webhook secret, all new Webhook sent will be using the new secret. Refer to our on secret rotation for more details.

developer portal
guide
guide
generate your first secret