> ## Documentation Index
> Fetch the complete documentation index at: https://docs.toku.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Create Webhook Endpoint

> Creates a webhook endpoint and returns its signing secret.



## OpenAPI

````yaml POST /createWebhookEndpoint
openapi: 3.0.0
info:
  title: Toku API
  version: 1.0.0
  description: >-
    The Toku API lets you programmatically manage token grants, wallets,
    employees, payroll, and invoices. Build custom integrations and automate
    your token compensation workflows.
servers:
  - url: https://app.toku.com/api/tokuApi/v1
    description: Production
security:
  - bearerAuth: []
tags:
  - name: Grants
    description: Create, list, terminate, and revert token grants
  - name: Wallets
    description: Manage recipient wallets, verification, and distributions
  - name: Employees
    description: Manage user roles within your organization
  - name: Tokens & Networks
    description: Configure token types and blockchain networks for your organization
  - name: Invoices
    description: Submit and settle invoice payments
  - name: Organization
    description: Configure organization settings
  - name: Distributions
    description: >-
      Approve vestings, add tax details, update FMV, finalize, submit
      settlements, and track status
  - name: Custody
    description: >-
      Connect custody providers (Fireblocks, Anchorage, Safe), manage custody
      wallets, and allocate to grants
  - name: Authentication
    description: Partner API token management
  - name: Payroll
    description: Payroll run creation, management, and state transitions
  - name: EOR
    description: Employer of Record employee onboarding and management
  - name: Payslips
    description: Payslip generation, upload, and retrieval
  - name: Webhooks
    description: Webhook endpoint management and event delivery
  - name: Stablecoin Funding
    description: Token payroll creation and stablecoin settlement
paths:
  /createWebhookEndpoint:
    post:
      tags:
        - Webhooks
      summary: Create webhook endpoint
      description: Creates a webhook endpoint and returns its signing secret.
      operationId: createWebhookEndpoint
      parameters:
        - name: x-role-type
          in: header
          required: true
          description: >-
            Role context for the request. Use CLIENT_ORG_ADMIN for most
            integrations.
          example: CLIENT_ORG_ADMIN
          schema:
            type: string
            enum:
              - CLIENT_ORG_ADMIN
              - PAYROLL_ADMIN
              - FINANCE_ADMIN
              - TOKU_ADMIN
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/CreateWebhookEndpointInput'
      responses:
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/CreateWebhookEndpointResponse'
        '401':
          $ref: '#/components/responses/Unauthorized'
        '403':
          $ref: '#/components/responses/Forbidden'
        '429':
          $ref: '#/components/responses/RateLimited'
        '500':
          $ref: '#/components/responses/InternalError'
      security:
        - bearerAuth: []
components:
  schemas:
    CreateWebhookEndpointInput:
      type: object
      required:
        - url
        - events
      properties:
        url:
          type: string
          format: uri
          description: Destination webhook URL
        events:
          type: array
          items:
            $ref: '#/components/schemas/WebhookEventType'
          description: Subscribed webhook events
    CreateWebhookEndpointResponse:
      type: object
      required:
        - endpoint
      properties:
        endpoint:
          type: object
          properties:
            id:
              type: string
              format: uuid
              description: Webhook endpoint identifier
            url:
              type: string
              description: Webhook target URL
            events:
              type: array
              items:
                $ref: '#/components/schemas/WebhookEventType'
              description: Subscribed webhook events
            isActive:
              type: boolean
              description: Whether the endpoint is active
            createdAt:
              type: string
              format: date-time
              description: Endpoint creation timestamp
            signingSecret:
              type: string
              description: Signing secret returned only at creation time
              nullable: true
    WebhookEventType:
      type: string
      description: Webhook event type emitted by the partner-facing API.
      enum:
        - grant.created
        - grant.terminated
        - grant.termination_reverted
        - distribution.schedule_approved
        - distribution.settlement_completed
        - employee.onboarded
        - employee.offboarded
        - payroll_run.created
        - payroll_run.approved
        - payroll_run.completed
        - payslip.generated
        - payment.initiated
        - payment.completed
        - contractor.invoice_submitted
        - time_off.requested
        - time_off.status_changed
    ErrorResponse:
      type: object
      required:
        - error
      properties:
        error:
          type: string
          description: Short error message
        details:
          type: string
          description: Additional debugging information
  responses:
    Unauthorized:
      description: Authentication failed — token missing, invalid, or expired
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/ErrorResponse'
    Forbidden:
      description: Caller does not have the required role
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/ErrorResponse'
    RateLimited:
      description: Rate limit exceeded (100 req/min per IP)
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/ErrorResponse'
    InternalError:
      description: Internal server error
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/ErrorResponse'
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer
      description: Personal API token. Create via createUserApiToken endpoint.

````