How-to Articles

Receiving Webhooks from GitHub with Convoy

3 min read September 28, 2022

Written by

Daniel Oluojomu
Daniel Oluojomu

Backend Engineer

Share

The release of Convoy v0.6 adds support for receiving webhooks from known providers such as Github, Twitter, and Shopify.

In this article, you will learn how to receive webhook events from Github with this feature. It is pretty much the same on the Convoy’s side for the other sources, except for a few intricacies such as the CRC check twitter requires, Convoy takes care of that for you as well. Now, let’s get to it.

Creating your incoming project

To follow through with this article, you’ll need to be signed in to your Convoy dashboard.

Convoy Dashboard

Next, create an incoming project from your dashboard:

Create an incoming project

Be sure to copy your Project API Key and keep it safe, you will need it to access the API. Your project API key looks like this:

Project API key

Create an Application & Endpoint

A Convoy application represents a user's application trying to receive webhooks and an endpoint represents a target URL to receive events.

Next, create an application for the project. You can do this via API with the following commands:

Sample Application Payload
{
	"name": "Github-app",
	"support_email": "[email protected]",
	"slack_webhook_url": "<your-slack-webhook-url>"
}
terminal
$ curl \
    --request POST \
    --data @app.json \
	-H "Authorization: BEARER <your-project-api-key>" \
    -H "Content-Type: application/json" \
    http://dashboard.getconvoy.io/api/v1/applications

The cURL request returns a similar response to this:

terminal
{
	"status": true,
	"message": "App created successfully",
	"data": {
		"uid": "sample-app-id-ed39-486f-878b-dcfd2b4ba854",
		"group_id": "convoy-test-0d34-4410-90a2-f14108730156",
		"name": "github-app",
		"support_email": "[email protected]",
		"created_at": "2022-09-19T08:41:22.005Z",
		"updated_at": "2022-09-19T08:41:22.005Z"
	}
}

The application ID is stored under the uid key. Store the value of the application ID as we’ll use it when creating an endpoint.

Now that we have the application all set up, let’s create an endpoint:

Sample Endpoint Payload
{
	"url": "<your-endpoint-url>",
	"http_timeout": "10s",
	"description": "my-github-endpoint"
}
terminal
$ curl \
    --request POST \
    --data @endpoint.json \
	-H "Authorization: BEARER <your-project-api-key>" \
    -H "Content-Type: application/json" \
    http://dashboard.getconvoy.io/api/v1/{appID}/endpoints

The cURL request above returns a response similar to this:

terminal
{
	"status": true,
	"message": "App endpoint created successfully",
	"data": {
		"uid": "event-sample-id-88dc-4a79-88e7-1f5c5475e152",
		"target_url": "http://localhost2",
		"description": "my-github-endpoint",
		"secret": "VRUeX0j_iLavhXqkv4x9abrza",
		"http_timeout": "100s",
		"rate_limit": 5000,
		"rate_limit_duration": "1m0s",
		"created_at": "2022-09-19T08:53:02.824Z",
		"updated_at": "2022-09-19T08:53:02.824Z"
	}
}

Alternatively, on the UI, immediately after creating the group, a create application page will come right up, fill in the application data as well as the endpoint data below as well.

Create an application

Create a source

Next, we are to create a source, select the Ingestion HTTP source type, and afterward select Github as the Ingester HTTP type and set a secret to communicate with your GitHub webhook source. You can find more documentation on sources here.

Create a source

As with creating a Project, this can also be done via API:

Sample Payload
{
  "name": "github-source",
  "type": "http",
	"provider": "github",
	"verifier": {
	  "hmac": {
			"secret": "<your-github-secret>"
		}
	}
}
terminal
$ curl \
    --request POST \
    --data @source.json \
	-H "Authorization: BEARER <your-project-api-key>" \
    -H "Content-Type: application/json" \
    http://dashboard.getconvoy.io/api/v1/sources

Create Subscription

Next, we have to create a subscription. Subscriptions are a many-to-many relationship between sources/apps endpoints. You can find more documentation on subscriptions here.

On the UI, just select the source, app, and endpoint you previously created.

Create a subscription.png

Likewise, you can create a subscription via the API:

Sample Subscription Payload
{
	"name": "github-sub",
	"type": "http",
	"app_id": "<your-app-id>",
	"source_id": "<your-source-id>",
	"endpoint_id": "<your-endpoint-id>"
}
terminal
$ curl \
    --request POST \
    --data @subscription.json \
	-H "Authorization: <your-project-api-key>" \
    -H "Content-Type: application/json" \
    http://dashboard.getconvoy.io/api/v1/subscriptions

We’re all set up now, the UI should look like this now:

Project dashboard

Head over to the sources tab listed on the left sidebar. The GitHub source we just created should be visible; the URL is the URL you’re to give to GitHub. When GitHub fires events to this URL, Convoy will fetch your source config, the event validated, and finally sent to all your subscribed endpoints.

Project sources

To test our setup, let’s configure GitHub to send us webhooks each time we do the following on a repository:

  • Push a commit
  • Open a pull request

You’ll need to create a new repository, you can follow the instructions here. You’ll also need to have a GitHub personal access token. On the token creation page, make sure the following scopes are selected:

Create a GitHub PAT

Follow the instructions here to create a GitHub personal access token.

With this token we can subscribe to our source URL to receive events from GitHub by running the following command:

terminal
$ curl \
  -X POST \
  -H "Accept: application/vnd.github+json" \
  -H "Authorization: Bearer <YOUR-PERSONAL-ACCESS-TOKEN>" \
  https://api.github.com/repos/{OWNER}/{REPO}/hooks \
  -d '{"name":"web","active":true,"events":["push","pull_request"],"config":{"url":"<your-convoy-github-source-url>","secret":"<your-source-secret>","content_type":"json","insecure_ssl":"0"}}'

{OWNER} - your GitHub username
{REPO} - the name of the repository

This can be found in the GitHub Repository Webhooks REST API. As seen in the above command we’re subscribing to the push and pull_request events in the repository.

Now from your local repository, push a commit, and GitHub will push two events to convoy:

  • The first describes your webhook subscription

Webhook description

  • The second is the actual webhook for the commit you pushed to the repository.

Webhook event

Conclusion

Convoy 0.6 provides the ability to receive webhooks from various providers and fans out to your applications. In this article, you learned how to receive webhook events from GitHub through a step-by-step guide from creating a project to subscribing to the event source, GitHub.

Convoy provides you with reliability and replayability out-of-the-box. If this sounds suitable for your architecture, try it out and give us feedback on our slack community!

Getting started with Convoy?

Want to add webhooks to your API in minutes? Sign up to get started.

Sign up

Related Posts

What I’ve learned from talking to users as a Technical Founder

April 23, 2025

It’s widely accepted that the two most important things a startup needs to get right are building a great product and talking to users. As a technical founder, building has always come naturally to me. Talking to users? Not so much. In this post, i’ll share some of the misconceptions I had about talking to users—and the surprising benefits I’ve discovered from doing it consistently.

Subomi Oluwalana
Subomi Oluwalana

Co-Founder & CEO

Transactional Outbox: How to reliably generate webhook events

April 17, 2025

In the world of distributed systems, ensuring reliable event delivery is crucial, especially when dealing with webhooks. The transactional outbox pattern has emerged as a robust solution to this challenge. In this post, we'll explore how to implement this pattern to guarantee reliable webhook delivery, even in the face of system failures.

Subomi Oluwalana
Subomi Oluwalana

Co-Founder & CEO