3 docs tagged with "hmac"

How to authenticate against each Sumeru Systems surface — admin API (bearer tokens), public endpoints (CORS or API keys), webhooks (HMAC). Plus the full scopes catalog for the v1 admin API.

Inbound webhook handlers (Shopify, WhatsApp, marketplaces) and outbound webhooks (Zapier, custom) — auth schemes, payload contracts, retry semantics, replay protection.

Meta-signed WhatsApp Cloud API webhooks — incoming messages, delivery + read events, template status, and the verification handshake.