Knot uses webhooks to send updates about your user’s logins. For example, Knot will send a webhook when a user is authenticated, when a user needs multifactor authentication, and if there is an error with any merchant.

To receive Knot webhooks, first, set up a dedicated endpoint on your server as a webhook listener that can receive POST requests. Next, please provide this endpoint URL to Knot as described in the next section.

Configuring webhooks

Knot uses webhooks to send programmatic updates about your user’s authentication attempts. To configure the webhooks you need to communicate the URLs with Knot. The URL must be in the standard format of http(s)://(www.) and, if https, must have a valid SSL certificate.

Knot sends POST payloads with raw JSON to your webhook URL from one of the following IP addresses:


Note that these IP addresses are subject to change.

You can optionally verify webhooks to ensure they are from Knot. For more information, see webhook verification.

Webhook retries

If there is a non-200 response or no response within 10 seconds from the webhook endpoint, Knot will retry sending
the webhook up to two times with a few minutes in between each webhook.