Webhook Configuration

Creating a Webhook

Navigate to Settings → Integrations → Webhooks
Click Create Webhook
Configure:
- Name: Descriptive name (e.g., "Security Team Slack")
- URL: Destination endpoint
- Events: Select event types to receive
- Active: Enable/disable webhook
Click Save

Sentry will send a test payload to verify the endpoint.

Webhook Payload

Sentry sends POST requests with JSON payloads:

{
  "event": "BREACH_ALERT",
  "timestamp": "2026-01-07T10:30:00Z",
  "organizationId": "org_abc123",
  "severity": "HIGH",
  "data": {
    "title": "New credential breach detected",
    "message": "Email [email protected] found in Dropbox breach",
    "service": "Dropbox",
    "breachDate": "2024-08-15",
    "dataClasses": ["Email", "Password"]
  },
  "metadata": {
    "alertId": "alert_xyz789",
    "dashboardUrl": "https://sentry.auditware.io/alerts/alert_xyz789"
  }
}

Webhook Security

HTTPS Required: Sentry only sends to HTTPS endpoints (enforced security).

Signature Verification: Each webhook includes a signature header:

X-Sentry-Signature: sha256=<signature>

The secret is the shared key, and the signature is the cryptographic proof. Sentry doesn't send the secret itself (that would be insecure), it sends the signature computed from the secret.

IP Allowlisting: Optionally restrict to Sentry's webhook IPs (provided in settings).

PreviousAlert Webhooks NextPlatform Integrations

Last updated 1 month ago

Good evening

hashtagCreating a Webhook

hashtagWebhook Payload

hashtagWebhook Security

Creating a Webhook

Webhook Payload

Webhook Security