Mint a callback credential
Mints an opaque bearer token bound to the caller’s tenant for authenticating inbound external-system exception callbacks, and returns the raw token ONCE. Only the token’s SHA-256 hash is stored server-side.
Authorizations
Bearer token authentication (format: "Bearer {token}")
Body
Optional operator-legible label for the external system this credential authenticates (e.g. "stripe", "billing-gw")
128"stripe"
Response
Created
Mint time (RFC 3339, UTC)
Surrogate id of the minted credential
Raw bearer token, surfaced exactly once; configure it as the X-Callback-Token header value in the external system. Only its SHA-256 hash is stored server-side.
Operator-legible external-system label, echoed for confirmation
Informational inbound-callback URL shape to configure in the external system. The {exceptionId} placeholder is filled per callback.

