Payment Service Providers (PSPs) must send webhooks to Wix to confirm payment and refund events and to notify Wix about any changes to a payment or refund status. Webhooks are sent using the Submit Event API. This article includes general information about sending webhooks. For details about when in the payment and refund flows to send webhooks, see Processing Payments and Processing Refunds.
We created a code example using Node.js that demonstrates how to send webhooks. You can use this code as a reference when you implement your own validation logic.
Every call to the Submit Event API must include an Authorization header with an access token as its value.
Before you can obtain an access token, your Wix Developers Center app must have the appropriate permissions. To get these permissions, contact the Wix Payments team and confirm that your app has the CASHIER.GET_ACCESS permission.
To obtain an access token, send a POST request to this endpoint:
Include this header:
The body of the request must be a JSON object with following format:
To find your app ID and app secret, go to OAuth in your app's dashboard.
The response to the request has a body with the following format:
Use the value for access_token as the value for the Authorization header in your Submit Event requests.
Notes:
Submit Event API. You can't use them for other Wix APIs."grant_type" values can't be used to send webhooks.To send a webhook, send a request to the Submit Event API with the following format:
If the webhook is received successfully, the response has a status code of 200, the Content-Type header's value is application/json, and the response body is an empty JSON object. Any other response indicates that the webhook wasn't received. In this case, retry sending the webhook later.
Note: When you send currency values in your webhook data, use the minor currency units described in the currencies table.