Secure your webhooks with OAuth 2.0
You can now use Open Authorization 2.0 to authenticate Standard webhooks, giving your platform a stronger and more secure way to receive events from Adyen.
September 2025
Enhanced security for Standard webhooks
OAuth 2.0 provides a stronger alternative to basic authentication. Using it helps protect your server credentials and reduces the risk of unauthorized access when receiving webhook events.
How OAuth 2.0 works
Adyen requests an access token from your OAuth 2.0 identity provider before sending webhook events. The token is included in each webhook request header, allowing your server to verify the request and secure your integration.
How to enable OAuth 2.0
Set up OAuth 2.0 in the Customer Area by providing your client ID, client secret, and the URL of your authorization server. Tokens must have a minimum TTL of one hour, and scopes should follow the principle of least privilege. Remember to rotate credentials regularly for maximum security.
Latest updates
ProtectAdyen UpliftNew Protect insights dashboards for better risk visibility
We’ve launched new Protect dashboards to help you understand risk rules and performance more clearly across your setup.
Payment methodsManage TWINT disputes directly in Adyen
TWINT dispute management is now fully integrated into Adyen. Review, defend, and track TWINT disputes through the Customer Area, Disputes API, and webhooks without manual processes or email-based workflows.