Overview
Authentication
Bank Account
Webhooks
Create Webhook
Copy
curl --request POST \
--url https://api.owem.com.br/v4/i/webhooks/config \
--header 'Authorization: <authorization>' \
--header 'Content-Type: application/json' \
--data '
{
"event": [
{}
],
"targetUrl": "<string>",
"authHeader": "<string>"
}
'Copy
{
"requestId": "a111b222-c333-4d44-8e55-f66677788899",
"success": true,
"size": 1,
"data": {
"configId": "wc_bd121426-4da1-4de4-b420-1b063aef81ee",
"userId": "usr_abcdef12",
"event": ["*"],
"targetUrl": "https://hooks.yourserver.com/owem",
"authHeader": "Bearer whsec_abc123example",
"isEnabled": true,
"createdAt": 1760000000000,
"updatedAt": 1760000000000,
"deletedAt": null
}
}
Webhooks
Create Webhook
Creates a webhook configuration to receive events from Owem. Configure real-time notifications for PIX IN, PIX OUT and MEDs.
POST
https://api.owem.com.br
/
v4
/
i
/
webhooks
/
config
Create Webhook
Copy
curl --request POST \
--url https://api.owem.com.br/v4/i/webhooks/config \
--header 'Authorization: <authorization>' \
--header 'Content-Type: application/json' \
--data '
{
"event": [
{}
],
"targetUrl": "<string>",
"authHeader": "<string>"
}
'Copy
{
"requestId": "a111b222-c333-4d44-8e55-f66677788899",
"success": true,
"size": 1,
"data": {
"configId": "wc_bd121426-4da1-4de4-b420-1b063aef81ee",
"userId": "usr_abcdef12",
"event": ["*"],
"targetUrl": "https://hooks.yourserver.com/owem",
"authHeader": "Bearer whsec_abc123example",
"isEnabled": true,
"createdAt": 1760000000000,
"updatedAt": 1760000000000,
"deletedAt": null
}
}
Purpose
Creates a webhook configuration to receive events from Owem. When a configured event occurs, Owem sends a POST to your URL with the event data.Authentication
Basic Auth required in format:
Basic {Base64(API_KEY:API_SECRET)}Request Body
Events of interest. Use
"*" for all events, or provide a list (e.g.,
["pix_in:qrcode_paid","pix_out:processing"]).Public HTTPS URL to receive webhooks. Must accept POST and return 2xx
within 3s.
Value to be sent in
Authorization on all webhook calls. Useful for
validation on your end.Supported Events
| Event | Trigger |
|---|---|
pix_in:qrcode_paid | Payment via QR Code |
pix_in:credited | Credit via PIX key |
pix_in:refunded_processing | PIX IN refund initiated |
pix_in:refunded_med_processing | PIX IN refund by MED |
pix_out:processing | PIX OUT transfer registered |
pix_out:refunded_processing | PIX OUT refund initiated |
med:received | MED received |
* | All events |
Response
UUID for tracking
Operation status
Number of returned items
Show data
Show data
Configuration identifier
Configuration owner
Configured events (or
["*"])Registered endpoint
Configured value for
AuthorizationIndicates if config is active
Creation epoch ms
Last update epoch ms
null (not deleted)
Copy
{
"requestId": "a111b222-c333-4d44-8e55-f66677788899",
"success": true,
"size": 1,
"data": {
"configId": "wc_bd121426-4da1-4de4-b420-1b063aef81ee",
"userId": "usr_abcdef12",
"event": ["*"],
"targetUrl": "https://hooks.yourserver.com/owem",
"authHeader": "Bearer whsec_abc123example",
"isEnabled": true,
"createdAt": 1760000000000,
"updatedAt": 1760000000000,
"deletedAt": null
}
}
Status Codes
| HTTP | When it occurs |
|---|---|
| 201 | Configuration created successfully |
| 400 | Invalid payload (malformed URL, invalid events, missing fields) |
| 401 | Invalid/revoked credentials |
| 403 | IP not allowlisted |
| 409 | Conflict (duplicate config for same targetUrl/scope) |
| 429 | Rate limit exceeded |
| 500 | Internal error |
Best Practices
Use a dedicated URL for webhooks with observability
(logs/trace/metrics).
Protect the
authHeader as a secret and rotate it periodically.Was this page helpful?
⌘I