Lead webhooks are sent using the webhook automation action. These webhooks are a simple HTTP request made by Funnel containing the Lead's UUID. No personal data is included in the webhook to reduce any security risks.

The structure of the webhook request payload is as follows:

The Funnel GraphQL API can fetch lead information using the UUID. This API provides a secure facility for accessing the data inside Funnel.

A secret key can be specified on the action to verify that a webhook payload has come from Funnel without being modified. This is then used to generate a signature for the request payload.

The signature will be passed in the request header as X-Signature and is calculated by hashing the raw request body (using the HMAC method with SHA256 for the hashing algorithm with the specified secret key).

We currently do not have a client-facing user interface for webhook logging. For further details around why a webhook has failed please reach out to our Support team.