Webhooks

Configure webhook subscriptions

List webhooks

get

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Responses

200

List of webhooks

application/json

idstring · uuidOptional

urlstring · uriOptional

secretstringOptional

HMAC signing secret for payload verification

activebooleanOptional

organization_idstring · uuidOptional

created_atstring · date-timeOptional

updated_atstring · date-timeOptional

401

Unauthorized - Invalid or missing API key

application/json

get

/webhooks

GET /v1/webhooks HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

[
  {
    "id": "aa0e8400-e29b-41d4-a716-446655440005",
    "url": "https://api.example.com/webhooks/krosai",
    "events": [
      "call.started",
      "call.completed",
      "call.failed"
    ],
    "active": true,
    "created_at": "2024-01-15T10:30:00Z"
  }
]

Create webhook

post

Creates a new webhook subscription. A signing secret is auto-generated for payload verification.

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Body

urlstring · uriRequired

activebooleanOptionalDefault: true

Responses

201

Webhook created

application/json

400

Bad request - Invalid parameters or request body

application/json

401

Unauthorized - Invalid or missing API key

application/json

post

/webhooks

POST /v1/webhooks HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 143

{
  "url": "https://api.example.com/webhooks/krosai",
  "events": [
    "call.started",
    "call.completed",
    "call.failed",
    "call.recording.ready"
  ],
  "active": true
}

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "url": "https://example.com",
  "secret": "text",
  "events": [
    "call.started"
  ],
  "active": true,
  "organization_id": "123e4567-e89b-12d3-a456-426614174000",
  "created_at": "2026-03-20T15:45:27.877Z",
  "updated_at": "2026-03-20T15:45:27.877Z"
}

Get webhook details

get

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Path parameters

idstring · uuidRequired

Webhook UUID

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Responses

200

Webhook details

application/json

idstring · uuidOptional

urlstring · uriOptional

secretstringOptional

HMAC signing secret for payload verification

activebooleanOptional

organization_idstring · uuidOptional

created_atstring · date-timeOptional

updated_atstring · date-timeOptional

404

Resource not found

application/json

get

/webhooks/{id}

GET /v1/webhooks/{id} HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "url": "https://example.com",
  "secret": "text",
  "events": [
    "call.started"
  ],
  "active": true,
  "organization_id": "123e4567-e89b-12d3-a456-426614174000",
  "created_at": "2026-03-20T15:45:27.877Z",
  "updated_at": "2026-03-20T15:45:27.877Z"
}

Delete webhook

delete

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Path parameters

idstring · uuidRequired

Webhook UUID

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Responses

204

Webhook deleted

404

Resource not found

application/json

delete

/webhooks/{id}

DELETE /v1/webhooks/{id} HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Update webhook

patch

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Path parameters

idstring · uuidRequired

Webhook UUID

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Body

urlstring · uriOptional

activebooleanOptional

Responses

200

Webhook updated

application/json

idstring · uuidOptional

urlstring · uriOptional

secretstringOptional

HMAC signing secret for payload verification

activebooleanOptional

organization_idstring · uuidOptional

created_atstring · date-timeOptional

updated_atstring · date-timeOptional

400

Bad request - Invalid parameters or request body

application/json

404

Resource not found

application/json

patch

/webhooks/{id}

PATCH /v1/webhooks/{id} HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 58

{
  "events": [
    "call.started",
    "call.completed"
  ],
  "active": true
}

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "url": "https://example.com",
  "secret": "text",
  "events": [
    "call.started"
  ],
  "active": true,
  "organization_id": "123e4567-e89b-12d3-a456-426614174000",
  "created_at": "2026-03-20T15:45:27.877Z",
  "updated_at": "2026-03-20T15:45:27.877Z"
}

Test webhook

post

Sends a test payload to the webhook endpoint

Authorizations

AuthorizationstringRequired

API key in format kros_live_xxxx for production or kros_test_xxxx for testing. Also accepts JWT tokens from Supabase Auth for dashboard sessions.

Alternative: You can also use the x-api-key header instead of Authorization Bearer.

Path parameters

idstring · uuidRequired

Webhook UUID

Header parameters

x-organization-idstring · uuidOptional

Organization UUID for multi-tenant context. Falls back to user's first organization if not provided.

Responses

200

Test result

application/json

successbooleanOptional

status_codeinteger · nullableOptional

messagestringOptional

post

/webhooks/{id}/test

POST /v1/webhooks/{id}/test HTTP/1.1
Host: api.krosai.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

200

Test result

{
  "success": true,
  "status_code": 200,
  "message": "Webhook test delivered successfully"
}

PreviousAPI Keys NextWebhook Deliveries

Last updated 18 days ago

Good afternoon

hashtagList webhooks

hashtagCreate webhook

hashtagGet webhook details

hashtagDelete webhook

hashtagUpdate webhook

hashtagTest webhook

List webhooks

Create webhook

Get webhook details

Delete webhook

Update webhook

Test webhook