• Partners
  • Email Us
  • Product
    • Channels
      • Voice
      • Email
      • SMS
      • Chat
      • Messenger
      • Omnichannel
    • Features
      • Predictive Dialer
      • VCC Live Pay
      • Outbound IVR
      • Inbound IVR
      • Voicemail Detection
      • Live Dashboards
      • ACD
      • Salesforce Integration
      • Dialogflow
  • Solutions
    • Customer Service
    • Sales Teams
    • Debt Collection
    • Virtual Call Center
  • Pricing
  • Resources
    • Blog
    • Case Studies
    • Ebooks
    • Courses
    • Webinars
    • Information Security
    • Learning Center
    • Developers
  • Company
    • About us
    • Careers
    • News
    • Partners
  • Partners
  • Email Us
+44 208 638 0169
GET STARTED
Developer GuidesWebhookOverviewSecuring Requests
  • Overview
    • About Webhooks
    • Firewall Settings
    • Responding to Requests
    • Securing Requests
  • Setting up Webhooks
    • Setting up Global Webhooks
    • Setting up Project Specific Webhooks
    • Testing Webhook Requests
    • Using Dynamic URLs
  • Async Webhook Requests
    • About Async Webhook Requests
    • Call Disposition (Async)
    • Payment Transaction (Async)
    • SMS (Async)
    • User Created and User Changed (Async)
  • Sync Webhook Requests
    • About Sync Webhook Requests
    • IVR (Sync)
    • Project Login (Sync)
Back to Support and Learning Center
English Hungarian

Securing Requests

You can take a few extra steps to prevent malicious developers accessing your requests.

Table of Contents

  • Use HTTPS
  • Set Up Your Firewall
  • Use a Token or Secure Key
  • Enable HTTP Body Encryption
  • Use Random Initialization Vector

Use HTTPS

Use (https://) instead of (http://) in your URL to ensure a more secure communication channel.

Set Up Your Firewall

Use the required firewall settings. See Firewall Settings.

Use a Token or Secure Key

In the URL, add a secret key to all requests received via a Webhook, for example: https://your-url/resource?secret-key=xxxxxxxxxxxxxx.
When your server receives a request, but the authorization fails, send a response back with the HTTP response code ‘401 Unauthorized’.

Enable HTTP Body Encryption

You can enable encryption in the HTTP body. Many cipher methods are available.

For decryption, you need:

  • The HTTP body (base64 encoded if encryption is enabled)
  • The selected cipher method
  • The secret key
  • The iv (if you enabled random initialization vector)

Tip: For an example decryption code, see Processing Webhook Requests.

Note: If you enable encryption, you must set up a secret key for encryption and decryption.

Use Random Initialization Vector

Random initialization vector is a commonly used technique. To use this technique, use the “iv” URL parameter. See To Use Dynamic URLs section.

Example URL: https://your-url/resource?iv=${iv}

Note: If you disable it, an empty initialization vector is used instead.

Back to Support and Learning Center

Comments

Can’t find what you need? Use the comment section below to connect with others, get answers from our experts, or share your ideas with us.


There are no comments yet.

Click here to cancel reply.

Please note that by clicking on the Submit button, you agree to a member of VCC Live team contacting you with business offers. You can find detailed information on how we can establish contact with you in our Privacy Policy

  • Channels
    • Voice
    • Email
    • SMS
    • Chat
    • Messenger
    • Omnichannel
  • Main Features
    • Call Center Software
    • Predictive Dialer
    • VCC Live Pay
    • Outbound IVR
    • Inbound IVR
    • Voicemail Detection
    • Live Dashboards
    • ACD
    • Salesforce Integration
    • Dialogflow
  • Solutions
    • Customer Service
    • Sales Teams
    • Debt Collection
    • Virtual Call Center
  • Resources
    • Blog
    • Case Studies
    • Ebooks
    • Courses
    • Webinars
    • Information Security
    • Learning Center
    • Developers
    • Download
  • Company
    • About us
    • Careers
    • News
    • Partners
https://vcc.live/wp-content/uploads/2019/07/iso-cert-1.png https://vcc.live/wp-content/uploads/2019/07/iso-cert-2.png https://vcc.live/wp-content/uploads/2019/07/iso-cert-3.png
Social Media
https://vcc.live/wp-content/uploads/2019/07/linkedin.svg https://vcc.live/wp-content/uploads/2019/07/twitter.svg https://vcc.live/wp-content/uploads/2019/07/facebook-1.svg https://vcc.live/wp-content/uploads/2019/07/instagram-1.svg
Call us
Hungary
+36 19996400
UK
+44 2086380169
Germany
+49 3021782516
Poland
+48 123950886
Romania
+40 31706167
USA
+1 3024988337
Hungary
+36 19996400
UK
+44 2086380169
Germany
+49 3021782516
Poland
+48 123950886
Romania
+40 31706167
USA
+1 3024988337
  • Privacy Policy
  • Cookie Policy
  • Legal Statement
  • General Terms of Agreement
  • Magyar nyelvű jogi dokumentumok