ayodvr / laravel-webhook-manager
A reusable package for Laravel that allows developers to receive, process, and manage incoming webhooks reliably.
Maintainers
Package info
github.com/ayodvr/laravel-webhook-manager
Language:Blade
pkg:composer/ayodvr/laravel-webhook-manager
Requires
- php: ^8.2
- laravel/framework: ^10.0 || ^11.0 || ^12.0
- laravel/tinker: ^2.10.1
Requires (Dev)
- fakerphp/faker: ^1.23
- laravel/pail: ^1.2.2
- laravel/pint: ^1.24
- laravel/sail: ^1.41
- mockery/mockery: ^1.6
- nunomaduro/collision: ^8.6
- phpunit/phpunit: ^11.5.3
README
A reusable Laravel package for receiving, processing, and managing incoming webhooks reliably. It handles webhooks from multiple providers, prevents duplicates, and ensures high reliability for critical backend systems.
Features
- Signature Verification: Ensures incoming requests are authentic using HMAC-SHA256.
- Automatic Duplicate Prevention: Uses unique provider IDs (Stripe ID, GitHub Delivery ID, etc.) or signatures to prevent duplicate processing.
- Reliable Processing: Queue-based asynchronous processing with automatic status tracking and retries.
- Event Dispatching: Fires Laravel events (
WebhookReceived) for easy integration. - Configurable: Customizable route prefix, retry intervals, queue names, and signature secrets.
- Multiple Providers: Built-in support for Paystack, Stripe, PayPal, GitHub, and more.
- Interactive Demo: Includes a built-in dashboard to simulate and monitor webhooks.
Installation
Requirements
- PHP: ^8.2
- Laravel: ^10.0 || ^11.0 || ^12.0
Via Composer
composer require ayodvr/laravel-webhook-manager
Publish Configuration
Publish the configuration file:
php artisan vendor:publish --tag=webhook-config
Publish Migration
Run the migration to create the webhook events table:
php artisan migrate
Set your webhook signature secret in your .env file:
WEBHOOK_SIGNATURE_SECRET=your-secret-key-here
Interactive Demo
The package comes with a built-in demo dashboard to help you test and visualize the webhook flow.
- Start the server:
php artisan serve
- Access the dashboard:
Navigate to
http://127.0.0.1:8000/demoin your browser. - Simulate Webhooks: Click the "Simulate Paystack Payment" button to trigger a mock signed webhook and watch it process in real-time.
Usage
Receiving Webhooks
Webhooks are automatically handled at the /webhooks/{provider} route (configurable via route_prefix). For example:
- Paystack:
POST /webhooks/paystack - Stripe:
POST /webhooks/stripe - PayPal:
POST /webhooks/paypal
Listening to Webhooks
Listen to the WebhookReceived event in your EventServiceProvider or using a Listener:
<?php namespace App\Listeners; use Cybrox\WebhookManager\Events\WebhookReceived; class ProcessWebhook { public function handle(WebhookReceived $event): void { $webhookEvent = $event->webhookEvent; // Process based on provider if ($webhookEvent->provider === 'paystack') { $payload = json_decode($webhookEvent->payload, true); // Your logic here... } } }
Configuration Options
Edit config/webhook-manager.php to customize behavior:
return [ 'route_prefix' => env('WEBHOOK_ROUTE_PREFIX', 'webhooks'), 'signature_secret' => env('WEBHOOK_SIGNATURE_SECRET'), 'max_attempts' => env('WEBHOOK_MAX_ATTEMPTS', 3), 'queue' => env('WEBHOOK_QUEUE', 'webhooks'), 'providers' => ['stripe', 'paypal', 'github', 'paystack'], ];
Testing
Run the test suite:
php artisan test
Contributing
Contributions are welcome! Please see the contributing guide for more details.
License
This package is open-sourced software licensed under the MIT license.