How to remove a webhook subscription with app's consumer key and secret only

hengfeng · 2018-05-22T07:04:55.252Z

Hello,

I get a question about how to remove a subscription from a webhook without user’s token and secret?

For example, a user connects to our application and we get its user token and secret. Then, we use the user’s token and secret and app’s consumer key & secret for creating a subscription from the webhook. What if the user revokes the token and secret later on? How are we able to remove this user’s subscription from our webhook with only our application’s consumer key and secret?

Cheers
Hengfeng

happycamper · 2018-05-23T21:37:29.091Z

Thanks @hengfeng If a user revokes their user permission for your application, the subscription for Account Activity API should be automatically removed and a revoke event will be sent via webhook.

hengfeng · 2018-05-23T23:35:57.325Z

Thanks @happycamper for answering my question. I have tested it and this is true that when a user revokes the permission from app, the subscription for AAAPI will be removed automatically.

However, for example, the token is expired due to some unknown reason and a user hasn’t revoke its permission from application. Is it possible to remove this user subscription only with application-only authentication?

The reason why I am asking this is because the number of webhook subscription is important and we don’t want to waste it. If the token is expired (or invalid) and the user doesn’t renew it on our application, its webhook subscription will still be in our application. We cannot remove it from our webhook actively.

Cheers
Hengfeng