Ramp

Signature Verification

Property	Value
Algorithm	HMAC-SHA256 (hex-encoded, with Base64 fallback)
Header	`X-Ramp-Webhook-Signature`

Signing formula:

hex(HMAC-SHA256(raw_payload, secret))

Transyt first attempts hex-encoded verification. If that fails, it falls back to Base64-encoded comparison for compatibility.

Verification Challenge

Ramp sends a verification challenge when you first register a webhook endpoint. Transyt automatically handles this by detecting webhooks.verification events and responding with the challenge string.

Setup

In the Ramp Developer Dashboard, configure your webhook endpoint:
```
https://ingest.transyt.com/ramp/{your-account-slug}
```
Ramp will send a verification challenge, which Transyt handles automatically
Copy the webhook signing secret from Ramp

Account Configuration

curl -X POST https://ingest.transyt.com/admin/accounts \
  -H "X-Admin-Token: YOUR_ADMIN_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "provider": "ramp",
    "account_slug": "main",
    "app_key": "my-app",
    "signing_secret_current": "your-ramp-webhook-secret"
  }'

Event Type Mappings

Ramp has 40+ event types. Here are the most common:

Transaction Events

Ramp Event	Transyt Event
`transactions.authorized`	`transaction.authorized`
`transactions.cleared`	`transaction.cleared`

Card Events

Ramp Event	Transyt Event
`cards.created`	`card.created`
`cards.suspended`	`card.suspended`

User Events

Ramp Event	Transyt Event
`USER_CREATED`	`user.created`

System Events

Ramp Event	Transyt Event
`webhooks.verification`	`verification`

External ID

Transyt looks for id, event_id, or webhook_id fields in the payload. For verification challenge events, the external ID is challenge_{challenge_string}.