Zoho Sign Webhooks Security

in Zoho Sign, what protection is in place - if any - so that the receiving endpoint can verify the authenticity of the sender (Zoho DC / app). otherwise anyone knowing the https address of my endpoint can forge the request.

webhooks signatures would be ideal.

is it possible to whitelist Zoho Sign EU DC IPs at least?

query params with secret token would be possible but that's generally quite a weak protection.

I could not find anything in the docs:

https://help.zoho.com/portal/en/kb/zoho-sign/admin-guide/webhooks/articles/webhooks-management#Zoho_Sign_Webhooks

https://help.zoho.com/portal/en/kb/zoho-sign/admin-guide/webhooks/articles/webhooks-best-practices

Tout forum

France ZUGs

Topic Participants
David
Rajkiran RV

Sticky Posts
Free webinar: The critical role of electronic signatures in HR
Hello everyone, Businesses and organizations have started implementing electronic signatures across departments, and human resources is no exception. Employee and employer signatures are crucial in HR processes, as they serve as an acknowledgment of critical
Zoho Sign: Product updates - Mid - 2024
Hello, everyone! We've crossed the halfway point in 2024, and here's what Zoho Sign has been up to lately. We've been part of several Zoho User Groups, and we've started creating video content for our developers. Along with this, we have once again been

Zoho Sign Webhooks Security

Zoho Sign Webhooks Security

France ZUGs

Topic Participants

David

Rajkiran RV

Sticky Posts

Free webinar: The critical role of electronic signatures in HR

Zoho Sign: Product updates - Mid - 2024