Docs Home
Dev Essentials
PaymentsCommerceCustomersStaffMerchants
Publish
Release notes

Docs

Docs Home
Dev Essentials
Payments
Commerce
Customers
Staff
Merchants
Publish
Release notes
Create an Account and App
Make your First API Call
View the API Logs
Verify the Payment
What's Next
Overview
Versioning
Access Tokens
Frontend and Backend Development
TLS and HTTPS
Using the REST API
Handling Errors
Collecting Information
Language Preferences
Working with Dates
Working with Monetary Amounts
Working with Addresses
Custom Attributes
Idempotency
Pagination
Optimistic Concurrency
Clear Object Fields
Square eCommerce APIs
Square API Lifecycle
Developer Tools
Developer Console
Square Dashboard
Test in Sandbox
Sandbox Payments
API Explorer
API Logs
Webhook Event Logs
Webhooks
Create a Notification URL
Subscribe to Event Notifications
Verify and Validate an Event Notification
Manage Operations
Move Event Notifications to Production
Webhook Events Reference
Troubleshooting
Authentication
Postman
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Quickstart
Project Setup
Using the SDK
Common API Patterns
Stay Current with SDK Version
Sample Applications
GraphQL Basics
Build your First Query
GraphQL Explorer
Query Examples
Create Redirect URL and Authorization Page URL
Receive Authorization and Manage OAuth Tokens
Refresh and Revoke OAuth Tokens
Token Introspection
OAuth Best Practices
OAuth Walkthrough
Migrate to the Square API OAuth Flow
Move OAuth to Production
Permissions Reference
Webhook Subscriptions
Events
Deprecated Items
v1 Payments API
v1 Refunds API
Square Transactions API
Migrate Employees to Team Members
Migrate from CreateCheckout to CreatePaymentLink
OAuth and Testing
International Payments
Regional Differences for International Development
Compliance with Japan's Tax Invoice System

/

Dev Essentials

/

Developer Tools

/

Webhooks

Manage Webhook Operations

Learn about the final step to creating Square webhooks, which is to have your application safely process and store the event information.

Overview
Understand when events are triggered
Manage event notifications
Disable failed webhooks
Webhooks best practices
Link to section

Overview

There are two aspects of Square webhook events that you need to understand: when events are triggered in a transaction and how to manage event notifications.

Link to section

Understand when events are triggered

Events that you can subscribe to using webhooks are generated by the various Square applications and Square APIs. For example, during a sales transaction, several events could be generated including an updated customer record and inventory adjustment along with an invoice creation.

Link to section

Manage event notifications

When your notification URL endpoint receives an event notification, you must respond in a timely manner to the POST request and store the event information securely.

Cloud-based serverless applications, microservices, and function as a service (FaaS) applications let you handle event notifications without setting up a server. The Sandbox 101: Implementing Webhooks video shows how to create a serverless application on Amazon Web Services that responds to event notifications and stores the data for later retrieval. It includes sample code on GitHub. For more information about using FaaS applications with Square webhook event notifications, see the blog post Stop Using Servers to Handle Webhooks.

Link to section

Disable failed webhooks

If your notification URL endpoint doesn't respond with a single 2xx HTTP status code within three weeks, Square takes the following actions:

  1. Sends a warning email after the first week.
  2. Sends a warning email after the second week.
  3. Sends a final warning email after the third week.

Following this final email, Square automatically disables your webhook subscription.

To diagnose issues with your webhook subscription, see Troubleshoot Webhooks.

Link to section

Webhooks best practices

  • Use idempotency - A generated idempotency value is included as the event_id field in the body of each event notification. Design your application to use this value to bypass processing if it's a repeated value.
  • Use message versioning - If your application passes Square data to another application, you should add versioning to the data before passing it to avoid duplication and to make auditing of the data transfer easier.
Link to section

See also

On this page
OverviewUnderstand when events are triggeredManage event notificationsDisable failed webhooksWebhooks best practicesSee also