Get Webhook Secret
GET
/internal/v1/stripe/connections/{connectionBizId}/webhook-secretInternalRetrieves the plaintext webhook signing secret for a Stripe connection. This is an internal-only endpoint used by the webhook processing service to verify incoming Stripe webhook signatures.
Authentication
Auth Chain: Internal — no JWT required. This endpoint is restricted to internal service-to-service calls and is not exposed through the public gateway.
Request Parameters
| Name | Type | Required | In | Description |
|---|---|---|---|---|
connectionBizId | string | Yes | path | Business ID of the Stripe connection |
Success Response
Success200
{
"version": "1.3.0",
"timestamp": 1709337600000,
"success": true,
"code": "2000",
"message": "SUCCESS",
"data": {
"webhookSecret": "whsec_**********"
}
}Error Responses
Not Found404
{
"success": false,
"code": "4040",
"message": "Stripe tenant connection not found"
}Notes
- This endpoint returns sensitive credential data and must never be exposed to external clients.
- The webhook secret is stored encrypted at rest and decrypted only when served through this internal endpoint.
- Only non-deleted connections are returned.