Skip to main content
POST
/
v1
/
exceptions
/
callbacks
/
credentials
Mint a callback credential
curl --request POST \
  --url https://matcher.sandbox.lerian.net/v1/exceptions/callbacks/credentials \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "externalSystem": "<string>"
}
'
{
  "createdAt": "<string>",
  "credentialId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "token": "<string>",
  "externalSystem": "<string>",
  "webhookUrlHint": "<string>"
}

Authorizations

Authorization
string
header
required

Bearer token authentication (format: "Bearer {token}")

Body

application/json
externalSystem
string

Optional operator-legible label for the external system this credential authenticates (e.g. "stripe", "billing-gw")

Maximum string length: 128
Example:

"stripe"

Response

Created

createdAt
string
required

Mint time (RFC 3339, UTC)

credentialId
string<uuid>
required

Surrogate id of the minted credential

token
string
required

Raw bearer token, surfaced exactly once; configure it as the X-Callback-Token header value in the external system. Only its SHA-256 hash is stored server-side.

externalSystem
string

Operator-legible external-system label, echoed for confirmation

webhookUrlHint
string

Informational inbound-callback URL shape to configure in the external system. The {exceptionId} placeholder is filled per callback.