Subscribe to instant push notifications for revocation events. Each payload is HMAC-signed with your subscription secret and Ed25519-signed by the operator.
Receives revocation.opened, revocation.reinstated, revocation.appeal_decided. View events · Operator public key
| URL | Events | Status | Last result | |
|---|---|---|---|---|
| Loading… | ||||
Every request carries two signatures:
X-WAB-Webhook-Signature: t=<unix>,v1=<hex>. Recompute over ${'`${t}.${rawBody}`'} with your secret.X-WAB-Operator-Signature + embedded signature.value. Fetch the public key at /api/operator-key.json and verify over the RFC 8785 canonicalisation of the envelope minus the signature field.