> ## Documentation Index
> Fetch the complete documentation index at: https://docs.usenexio.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Get Webhook Delivery

> Inspect environment-scoped delivery metadata and durable attempt summaries.



## OpenAPI

````yaml GET /api/v1/webhooks/{endpointID}/deliveries/{deliveryID}
openapi: 3.1.0
info:
  title: Nexio API
  version: '1.0'
  description: |
    Nexio agentic infrastructure API. Configure engines for placement,
    entity analysis, and other patterns. Submit runs, poll for results,
    or subscribe to signed webhook callbacks.
  contact:
    email: support@usenexio.com
    url: https://docs.usenexio.com
servers:
  - url: https://api.usenexio.com
    description: Production
security:
  - BearerAuth: []
tags:
  - name: EngineManagement
    description: Create, configure, and manage inference engines.
  - name: Engines
    description: Engine-scoped endpoints for submitting runs and retrieving results.
  - name: Runs
    description: Retrieve and reconcile submitted runs.
  - name: Environments
    description: Isolated tenancy scopes under your org (one live plus non-live sandboxes).
  - name: Webhooks
    description: Manage webhook endpoints for push-based delivery of terminal run events.
paths:
  /api/v1/webhooks/{endpointID}/deliveries/{deliveryID}:
    get:
      tags:
        - Webhooks
      summary: Get Webhook Delivery
      description: |
        Return environment-scoped delivery metadata and the durable attempt
        ledger summary. Signed payload bytes, receiver response bodies, and
        operator-only fields are not returned. Scoped partner keys require
        `webhooks:manage`.
      operationId: getWebhookDelivery
      parameters:
        - $ref: '#/components/parameters/EndpointID'
        - $ref: '#/components/parameters/DeliveryID'
      responses:
        '200':
          description: Delivery metadata and attempt summaries.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/WebhookDeliveryDetail'
        '400':
          $ref: '#/components/responses/BadRequest'
        '401':
          $ref: '#/components/responses/Unauthorized'
        '403':
          $ref: '#/components/responses/Forbidden'
        '404':
          $ref: '#/components/responses/DeliveryNotFound'
        '429':
          $ref: '#/components/responses/RateLimited'
        '503':
          $ref: '#/components/responses/AuthUnavailable'
components:
  parameters:
    EndpointID:
      name: endpointID
      in: path
      required: true
      description: Webhook endpoint UUID.
      schema:
        type: string
        format: uuid
    DeliveryID:
      name: deliveryID
      in: path
      required: true
      description: Webhook delivery UUID.
      schema:
        type: string
        format: uuid
  schemas:
    WebhookDeliveryDetail:
      type: object
      additionalProperties: false
      required:
        - delivery
        - attempts
      properties:
        delivery:
          $ref: '#/components/schemas/WebhookDelivery'
        attempts:
          type: array
          items:
            $ref: '#/components/schemas/WebhookDeliveryAttempt'
    WebhookDelivery:
      type: object
      additionalProperties: false
      required:
        - id
        - event_id
        - endpoint_id
        - run_id
        - event_type
        - webhook_version
        - target_url
        - status
        - attempt_count
        - max_attempts
        - next_attempt_at
        - next_attempt_trigger
        - created_at
      properties:
        id:
          type: string
          format: uuid
          description: Delivery identifier.
        event_id:
          type: string
          description: Deterministic event identifier.
        endpoint_id:
          type: string
          format: uuid
          description: Target endpoint identifier.
        run_id:
          type: string
          format: uuid
          description: Associated run identifier.
        event_type:
          type: string
          enum:
            - run.completed
            - run.failed
            - run.superseded
          description: Event type.
        webhook_version:
          type: string
          description: Payload version.
        target_url:
          type: string
          format: uri
          description: Snapshot of the endpoint URL at delivery creation time.
        status:
          type: string
          enum:
            - pending
            - in_progress
            - success
            - dead_letter
            - cancelled
          description: Current delivery status.
        attempt_count:
          type: integer
          description: Number of delivery attempts made.
        max_attempts:
          type: integer
          description: Maximum delivery attempts before dead-lettering.
        next_attempt_at:
          type: string
          format: date-time
          description: Scheduled time for the next retry.
        next_attempt_trigger:
          type: string
          enum:
            - automatic
            - manual
          description: >-
            Whether the next attempt belongs to automatic retry or manual
            resend.
        last_attempt_at:
          type: string
          format: date-time
          description: Timestamp of the most recent attempt.
        last_status_code:
          type: integer
          description: HTTP status code from the most recent attempt.
        last_error:
          type: string
          description: Error message from the most recent failed attempt.
        created_at:
          type: string
          format: date-time
          description: When the delivery was created.
        completed_at:
          type: string
          format: date-time
          description: When the delivery reached a terminal state.
    WebhookDeliveryAttempt:
      type: object
      additionalProperties: false
      required:
        - id
        - resend_generation
        - attempt_ordinal
        - started_at
        - state
      properties:
        id:
          type: string
          format: uuid
        resend_generation:
          type: integer
          minimum: 0
        attempt_ordinal:
          type: integer
          minimum: 1
        started_at:
          type: string
          format: date-time
        completed_at:
          type: string
          format: date-time
        state:
          type: string
          enum:
            - started
            - finalized
            - abandoned
        outcome:
          type: string
        status_code:
          type: integer
        status_class:
          type: string
        error_class:
          type: string
        duration_ms:
          type: integer
          format: int64
        next_retry_at:
          type: string
          format: date-time
    Error:
      type: object
      required:
        - code
        - message
      properties:
        code:
          type: string
          description: |
            Stable snake_case error identifier. Safe to match programmatically.

            Known codes: `invalid_request`, `invalid_input`, `unauthorized`,
            `auth_unavailable`, `rate_limited`, `missing_run_id`,
            `invalid_run_id`, `run_not_found`, `invalid_offerings`,
            `missing_input`, `queue_unreachable`,
            `engine_not_found`, `engine_slug_conflict`, `engine_archived`,
            `invalid_engine_type`, `validation_error`,
            `webhook_not_found`, `webhook_limit_exceeded`, `invalid_url`,
            `invalid_events`, `invalid_description`, `invalid_auth_token`,
            `missing_endpoint_id`, `invalid_endpoint_id`, `missing_delivery_id`,
            `invalid_delivery_id`, `delivery_not_found`,
            `delivery_not_resendable`, `insufficient_capability`,
            `engine_version_required`, `engine_version_exact_required`,
            `engine_version_not_found`, `engine_version_invalid_format`,
            `engine_version_draft_requires_sandbox_key`,
            `engine_version_none_released`, `test_scenario_sandbox_only`,
            `test_scenario_forbidden`, `test_scenario_exact_version_required`,
            `test_scenario_version_not_supported`, `invalid_test_scenario`,
            `request_bound_exceeded`, and `run_cap_exceeded`.
        message:
          type: string
          description: Human-readable error message. May change between versions.
        details:
          description: |
            Optional request-specific details. Request-bound failures use the
            `RequestBoundDetails` object. Validation failures may use an array
            of field issues or another documented object.
  responses:
    BadRequest:
      description: Invalid request.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          examples:
            invalidRequest:
              summary: Malformed JSON
              value:
                code: invalid_request
                message: Request body is not valid JSON
            invalidInput:
              summary: Input validation failed
              value:
                code: invalid_input
                message: Input failed validation
                details:
                  - field: input.address.state
                    message: address.state is required for placement runs.
            invalidOfferings:
              summary: Placement run missing offerings
              value:
                code: invalid_offerings
                message: Inline offerings failed validation
                details:
                  - field: offerings
                    message: >-
                      Offerings are required for placement runs. Pass provider
                      offerings in the top-level offerings array.
    Unauthorized:
      description: Missing or invalid API key.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          example:
            code: unauthorized
            message: Missing or invalid API key
    Forbidden:
      description: Scoped key does not have the capability required by this operation.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          example:
            code: insufficient_capability
            message: API key does not have permission for this action
    DeliveryNotFound:
      description: Delivery not found in the authenticated endpoint and environment scope.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          example:
            code: delivery_not_found
            message: Delivery not found
    RateLimited:
      description: Rate limit exceeded. Retry after the window resets.
      headers:
        Retry-After:
          description: Seconds until the rate limit window resets.
          schema:
            type: integer
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          example:
            code: rate_limited
            message: Rate limit exceeded
    AuthUnavailable:
      description: API key authentication is temporarily unavailable.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
          example:
            code: auth_unavailable
            message: API key authentication is temporarily unavailable
  securitySchemes:
    BearerAuth:
      type: http
      scheme: bearer
      description: |
        Send the credential as `Authorization: Bearer <key>`.

        Scoped partner credentials use the exclusive `nxsk_v1_...` namespace.
        Each scoped key is bound at issuance to one organization, one canonical
        named environment, an explicit engine set, and a least-privilege
        capability set. A malformed, unknown, rotated, or revoked `nxsk_` key
        fails closed and is never retried as a legacy key.

        Capabilities used by this API are `runs:write`, `runs:read`,
        `engines:read`, `webhooks:manage`, `runs:defensibility:read`, and
        `runs:test`. Operation descriptions name the required capability.
        Grandfathered `nx_live_...` and `nx_test_...` keys retain their existing
        broad access during the compatibility window.

````