Secure your webhooks with OAuth 2.0
You can now use Open Authorization 2.0 to authenticate Standard webhooks, giving your platform a stronger and more secure way to receive events from Adyen.
September 2025
Enhanced security for Standard webhooks
OAuth 2.0 provides a stronger alternative to basic authentication. Using it helps protect your server credentials and reduces the risk of unauthorized access when receiving webhook events.
How OAuth 2.0 works
Adyen requests an access token from your OAuth 2.0 identity provider before sending webhook events. The token is included in each webhook request header, allowing your server to verify the request and secure your integration.
How to enable OAuth 2.0
Set up OAuth 2.0 in the Customer Area by providing your client ID, client secret, and the URL of your authorization server. Tokens must have a minimum TTL of one hour, and scopes should follow the principle of least privilege. Remember to rotate credentials regularly for maximum security.
Latest updates
Adyen for PlatformsProtectImprove fraud detection accuracy with updated Score signals
We’ve updated Score account linking and fraud ring detection to reduce false positives and make investigations easier for your risk teams. The new setup gives you clearer visibility into which entities triggered specific risk signals.
Introducing Adyen Agentic
An open infrastructure layer connecting your platform to the emerging AI ecosystem.