hello! I have a question regarding webhook configuration in pactflow. What is Authentication field for? As I understand, if I specify

Authorization

header with proper token it should be enough... with Authentication setup with my creds I get 404 when I test my webhook. without it I get 401 Could you please help me understand this? NOTE: token is fine, webhook works via curl

A 404 suggests you are authenticating ok, but the resource you're trying to reach is not found

once I left Authentication values blank and left only github token in headers it started to work. But now at my company I am told I cannot store token in pactflow. They say I should use github app..

Hmm my only suggestion would be to build an app outside of Pactflow that can proxy webhook executions from Pactflow to then communicate to your secure targets

yeah....this is the way I am thinking of...I thought maybe there is something more simple))) because it looks like contract testing is turning out to be more complicated than the service creation :)))

We do have longer term plans to create a first class SCM/Github integration, but that is unlikely to happen in the timeframes you’ll want it

got it:) thank you!

What’s the reason behind not being able to store the token in PactFlow? Actually, I realised I assumed github but that was probably anohter conversation. What is the target here?

I guess they don't want to store a github token in pactflow due to security reasons.

OK, so github have pretty good tokens - you can make them fine grained so that they only work for a given repo, with a given set of perms (e.g. triggering a build, updating statuses). But understandable, if that’s the case we can’t do much about that for you sorry!

thank you Matt...will be thinking on this more)