Skip to main content
WEBHOOK
payout.updated
{
  "id": "a2b6f9c8-7d5f-4c2b-bd7a-1c2f9b5c44b9",
  "event": "payout.updated",
  "created_at": "2026-03-02T12:34:56Z",
  "subscription_id": "7a6b5c4d-3e2f-1a0b-9c8d-7e6f5a4b3c2d",
  "data": {
    "id": "8e0c87c1-948c-4e57-9b48-9b5ab4c0d7e8",
    "status": "created",
    "reason": null,
    "reference_id": "6ae5b965-ad32-4d21-bff9-f1e661f05ca3",
    "payout_intent_id": "05545ccf-0798-4661-8b36-2ad7c0bf5375",
    "date": "2025-09-30T14:59:37.055Z"
  }
}

Authorizations

Authorization
string
header
required

Pass your API key as a bearer token: Authorization: Bearer <API_KEY>.

Headers

X-Karat-Signature
string
required

HMAC-SHA256 signature of the delivery, in the format v1=<base64>.

X-Karat-Webhook-Timestamp
string
required

Unix epoch seconds when the event was sent. Used in the signed payload and for replay protection.

X-Karat-Subscription-Id
string<uuid>
required

The subscription this delivery belongs to. Use it to look up the signing secret.

X-Karat-Webhook-Id
string<uuid>
required

Unique delivery ID, for deduplication.

Body

application/json

Envelope delivered to your callback URL when an event fires.

id
string<uuid>

Unique ID for this delivery.

event
string
Example:

"payout.updated"

created_at
string<date-time>
subscription_id
string<uuid>
data
object

Event-specific payload.

Response

200

Return a 2xx status to acknowledge receipt.