Testing event-driven architectures is a pain, and webhooks are no exception. When testing webhooks, you need to have your test suite be able to receive and verify webhooks are what you expect. This often means that your test suite would need to be able to receive webhooks from 3rd parties over the internet. While this is doable, and there are some utilities that help with that (including our own ), we thought we could make things even easier. Svix Play That's why we are now introducing the . Svix Play API We have been using the Svix Play API in our internal test suite for over a year and have had customers testing it for the last few months, so we figured it's finally ready for public release! The Play API makes it extremely easy to test webhooks as part of your test suite. We made it our goal to make webhooks easy and reliable for everyone, whether you are a Svix customer or not, and we hope this will lead to easier and better testing of webhooks. Testing Webhooks When talking about testing webhooks, it's important to differentiate between two scenarios. The first is testing your own webhooks, so webhooks that you send as part of your service, and the tests should cover that the right events are sent at the right times (and with the right data). The second is more of an integration test, and the idea there is to verify that a specific action with a third party causes the expected activity on your end (triggered by a webhook). We will cover below some common ways of testing webhooks, and while most of them work for both, some of them only make sense for one or the other. Not Testing This is the easiest and most straightforward way of dealing with webhooks testing; not doing it. Because testing webhooks is a pain, many people just don't bother with testing their integrations. This is not recommended, but still worth mentioning as it's quite common! Mocking Webhooks Mocking webhooks essentially means triggering the webhook handler without actually receiving a webhook. So, if for example, you have a function called , you'll call it directly from your test suite with a known payload, signature, and timestamp. handle_incoming_webhook() This works especially well with tests that also mock API calls to external services. So, for example, if you're testing a Stripe integration, your test may look something like this: def test_payment():
    # ... snip ...
    fake_stripe_payment(customer)

    # Calling our webhook handler
    handle_stripe_webhook("invoice.payment_failed", invoice_failed_payload, headers)

    assert get_customer().status == PaymentFailed Svix makes it very easy to mock webhooks by providing that also support signing payloads. libraries for many languages Forwarding Requests to the Test Instance Another common option is using a tool like or to forward all webhooks to the local test runner. This is most often used as a way of doing integration tests to ensure that the full integration path works when dealing with an external service. ngrok Svix Play's listen command The many issues with this, however, are that it's more annoying to set up, and it makes the tests much less reliable as it depends on network conditions, and multiple tests can conflict. Testing With the New Svix Play API The new Svix API works best in conjunction with mocking, or potentially as a simple alternative to forwarding requests. It's great for testing webhooks you receive from third parties, but even better for testing your own webhook system. When testing external webhooks, the Svix Play API essentially gives you a persistent URL that you can use with your webhooks sender (e.g., ) which you can configure the webhooks provider to send webhooks to. https://play.svix.com/in/e_94XdF-OwN3EaTKty4izJDWRAH3V/ All the webhooks will then be sent to Play, and you will be able to use the API to poll it, check for new messages, and then act on them accordingly. This makes things much nicer when testings in environments where proxying isn't easy or possible. When testing webhooks that you send, it can do much more. For example, you can make it return specific status codes (e.g., 429 or 503), as well as echo the full request body back to the sender. These make it very easy to verify your webhook implementation is sending exactly what you expect it to send, and to ensure that it correctly handles various error codes. If you use the Svix libraries for signing payloads, you can also have it automatically verify webhooks are signed correctly for even more robust testing. We use the Play API internally in our test suite, canary tests, and ongoing monitoring to ensure that the Svix service continues to run smoothly with no interruption, and we are releasing it to the public today in the hopes that it will help more webhook providers send more reliable webhooks. The Svix Play API is free for everyone, both Svix customers and not, and you can start using it now by going to . For more information on how to use it, please refer to . the Svix Play website the Svix Play API docs For more content like this, make sure to follow us on , or for the latest updates for the , or join the discussion on . Twitter , GitHub RSS Svix webhook service our community Slack Also published here

How to Send Webhooks From Your Message Queue With Svix Bridge: A Beginner's Guide

How to Write Great Webhook Docs

Read My Stories

Too Long; Didn't Read

Make resilience your competitive advantage

How to Use the Svix Play API for Automated Webhook Testing

About Author

Comments

TOPICS

THIS ARTICLE WAS FEATURED IN

Related Stories

Untitled Story

Build a Guestbook App Using Next.js ISR Feature and Webhooks

100 Days of AI Day 1: From Newsletter to Podcast, Leveraging AI for Audio Transformation

10 Threats to an Open API Ecosystem

10 Indications That You Should Invest in Automation Via APIs

10 Best Practices for Securing Your API

Build a Guestbook App Using Next.js ISR Feature and Webhooks

100 Days of AI Day 1: From Newsletter to Podcast, Leveraging AI for Audio Transformation

10 Threats to an Open API Ecosystem

10 Indications That You Should Invest in Automation Via APIs

10 Best Practices for Securing Your API

Light-Mode

Classic

Newspaper

Dark-Mode

Neon Noir

Minty

HN StartUps