Webhooks Reference

HMAC-SHA256 signed POST to your callback URL on payment completion. Retry policy and signature verification examples.

Webhooks

Receive real-time notifications about payment events.

Signature Verification

Monipay signs every webhook payload using HMAC-SHA256. The signature is sent in the X-Monipay-Signature header. You should verify this signature using your Secret Key to ensure the request is authentic.

Retry Policy

If your server returns a non-200 response, Monipay will retry the delivery with exponential backoff for up to 24 hours.

Example Payload

{
  "event": "payment.succeeded",
  "data": {
    "orderId": "ord_123",
    "amount": "10.00",
    "currency": "USDC",
    "txHash": "0x...",
    "moniTag": "@customer"
  }
}

Read next

Related Pages

Introduction: What is Monipay