Docs
BetaThe V4 API is in beta — endpoints and functionality may change.
Webhooksv2

Rotate webhook signing secret

POST/webhooks/{webhookId}/secret/rotate

Generate a new signing secret for the webhook. The new secret is returned only once in this response - store it securely. The old secret becomes invalid immediately.

Path parameters

webhookIdRequiredstring

Unique identifier of the webhook subscription, prefixed with wh_ (e.g. wh_abc123def456). Returned when you create or list webhooks.

Headers

AuthorizationRequiredstring

Your API key, sent as a bearer token: Authorization: Bearer <api_key>. Editing this stays in sync with the API key box on the right.

Bearer

Returns

webhook_idoptionalstring
signing_secretoptionalstring

The new signing secret. Store this securely - it will not be shown again.

rotated_atoptionalinteger

Timestamp when the secret was rotated

rotated_byoptionalstring

Identifier of who rotated the secret

rotation_countoptionalinteger

Total number of times this secret has been rotated

Response codes

200Secret rotated successfully. The new secret is shown only once.
401Authentication required or invalid
404Resource not found

Sends a live request with your values and shows the real response below. Your key is stored only in this browser.

Request
curl -X POST https://api.blooio.com/v2/api/webhooks/wh_abc123def456/secret/rotate \  -H "Authorization: Bearer bl_live_..."
Response objectexample
{  "webhook_id": "wh_a1b2c3d4",  "signing_secret": "sk_live_a1b2c3d4",  "rotated_at": 0,  "rotated_by": "string",  "rotation_count": 3}