Webhook Data Action Targets in Data Cloud

Send a Data Cloud data action event to a webhook target and protect the message integrity with a Salesforce-generated secret key. A webhook is a type of HTTP request that’s triggered by an event in a source system and sent to a destination system with a payload. A webhook is event-driven rather than request-driven. Webhooks are sent automatically when an event is triggered in the source system. The secret key based signature validates the payload requests sent from Salesforce.

A webhook transports HTTP payload with events in the format of DataObjectDataChgEvent.

• Generate a Secret Key for Signature Validation

  To protect a webhook system from malicious attacks, generate a secret key for validation. If you don't generate a secret key, targets don't receive a payload, and calls are marked with Signing Key Not Found. In Data Cloud, data actions use the HMACSHA256 signature algorithm.

• Regenerate a Secret Key

  We recommend regenerating the secret key used in your webhook system at least every 12 months. After you regenerate a secret key, it takes up to 15 minutes to be effective. Until the new key is configured for use, validations at the webhook target fail.

• Payload Signature

  Payload-based signature validates the payload requests sent to your webhook system from Salesforce.

• Validating the Signature

  To validate the signature, you can use this sample Java code. Make sure to perform JSON escaping on the payload received at the target.

See Also

• Salesforce Developers Blog: Unleashing the Power of Data Actions Using a Webhook as a Target