Rotate Webhook Secret

curl --request POST \
  --url https://api.usenexio.com/api/v1/webhooks/{endpointID}/rotate-secret \
  --header 'Authorization: Bearer <token>'

{
  "id": "550e8400-e29b-41d4-a716-446655440000",
  "secret": "whsec_newkey789",
  "previous_secret_expires_at": "2026-03-23T12:00:00Z"
}

POST

api

webhooks

{endpointID}

rotate-secret

Rotate Webhook Secret

curl --request POST \
  --url https://api.usenexio.com/api/v1/webhooks/{endpointID}/rotate-secret \
  --header 'Authorization: Bearer <token>'

{
  "id": "550e8400-e29b-41d4-a716-446655440000",
  "secret": "whsec_newkey789",
  "previous_secret_expires_at": "2026-03-23T12:00:00Z"
}

Authorization

string

header

required

API key with environment prefix. Use nx_test_... for sandbox and nx_live_... for production. Obtain keys at platform.usenexio.com/settings/api-keys.

endpointID

string<uuid>

required

Webhook endpoint UUID.

New secret generated.

string<uuid>

required

Endpoint identifier.

secret

string

required

New signing secret (whsec_...). Displayed only once.

previous_secret_expires_at

string<date-time>

When the previous secret stops being valid (24-hour overlap).