Webhook Ingest | Convertmax Docs

Use this reference when integrating an external system with the Convertmax inbound webhook pipeline.

Route

Convertmax accepts inbound webhook traffic on:

sourceConfigId points to a saved inbound webhook setup that defines:

Use this source type for authenticated JSON webhook payloads that do not need a special provider-specific parser.

Supported auth patterns:

Authorization: Bearer <token>
optional x-convertmax-signature HMAC verification when a signing secret is configured

Typical payload shape:

{
  "inbound_event_id": "evt_123",
  "event_type": "lead.updated",
  "payload": {
    "lead_id": "lead_42",
    "status": "qualified"
  }
}

Use this source type when sending Segment-style event payloads directly into Convertmax.

Supported auth pattern:

Supported shapes:

After authentication and parsing, Convertmax standardizes inbound traffic into an internal event shape with fields including:

Rate limiting is enforced before queueing.

Behavior:

limits are counted in normalized events
batch payloads consume one unit per event item
webhook requests still return HTTP 200
internal volume protection still controls how requests are handled behind the scenes

Duplicate handling is enforced in the inbound queue consumer.

Behavior:

Convertmax checks (inbound_event_id, source_config_id) before processing
if that pair already exists in the processed-event store, the event is skipped
if processing succeeds, Convertmax archives the result, writes a receipt, and then marks the event as processed

This ordering ensures an event is not marked processed before its audit trail is written.

Inbound webhook requests now return HTTP 200.

A successful response means:

It does not necessarily mean downstream business processing has already completed.