Overview
This section covers server-to-server communication where BRIJ calls your endpoints. There are two types of outbound calls: webhooks and requests.
Webhooks vs Requests
Webhooks
Webhooks are one-way notifications that inform your system about events. When BRIJ sends a webhook:
- Your server only needs to return a valid
2xxHTTP status code - You may optionally perform actions based on the webhook (update your database, trigger workflows, etc.)
- If your server returns a non-
2xxresponse, BRIJ will retry the webhook multiple times
Requests
Requests are two-way interactions where BRIJ needs specific data from your system. When BRIJ sends a request:
- Your server must return a response with the requested data in a specific format
- BRIJ issues each request only once — there are no automatic retries
- These are typically used when BRIJ needs real-time information (e.g., a quote for an order, confirmation to proceed)
Authentication
All webhooks and requests from BRIJ include a cryptographic signature in the X-BRIJ-Signature HTTP header. You
should verify this signature to ensure the request:
- Originated from BRIJ
- Has not been tampered with in transit
- Is not a replay of a previous request
See Signature Verification for detailed implementation instructions and code examples.
