--- title: "Webhooks & External Integrations" description: "Address webhook trigger failures, delivery errors due to IP restrictions, auto-disabled webhooks, and custom AEM integrations." url: "https://www.contentstack.com/docs/headless-cms/webhooks-external-integrations" product: "Contentstack" doc_type: "guide" audience: - developers - admins version: "current" last_updated: "2026-05-11" --- # Webhooks & External Integrations ## 1\. Entry Publish Failed - Webhook Not Triggered as a Result A common misconception is that webhooks fail to trigger during the publishing process. However, if the publishing event itself is blocked, often due to validation errors in referenced entries, the webhook event never occurs and therefore cannot fire. This should be framed as a publishing failure rather than a webhook malfunction. **Root cause** The primary cause is that the Entry Publish Failed. Specifically: * **Incomplete Referenced Entries**: Referenced entries with missing mandatory fields or validation errors block the parent entry from publishing. * **Event Suppression**: Because webhooks trigger only when an event (like a successful publish) actually occurs, a blocked publish means the trigger event never happens. **Resolution** * **Identify Publishing Blockers**: Check the publishing logs to confirm if the entry failed due to validation errors in referenced content. * **Fix Mandatory Fields**: Navigate to the referenced entries and ensure all mandatory fields are correctly populated. * **Expand Referenced Entries**: Verify all levels of nested references to ensure no sub-entry is blocking the chain. * **Retry Publishing**: Once references are corrected, re-attempt to publish the parent entry. The webhook fires successfully once the publishing event is officially recorded in the system. * * * ## 2\. Webhook Delivery Fails Due to IP Whitelisting or Network Restrictions Webhook endpoints do not receive requests after an event is triggered. **Root cause** Firewall, IP allowlists, or network restrictions block incoming requests from Contentstack webhook IP addresses. **Resolution** * Allowlist the official Contentstack webhook IP addresses. Refer to the documentation. * Verify firewall and security group rules. Ensure inbound HTTPS (port 443) traffic from Contentstack IP ranges is permitted. * **Confirm endpoint response behavior:** Ensure the webhook endpoint returns a 2xx HTTP status code for successful requests. * Review server logs: * Check application/server logs for rejected or blocked IP addresses. * Look for 403, 401, or connection timeout entries. Trigger a test webhook event. **Confirm:** * The endpoint receives the request. * The endpoint returns a 2xx response. * No IP-based rejection appears in server logs. * The webhook remains in an active state in the CMS. * * * ## 3\. Webhooks Disabled Automatically Due to Endpoint Failures Webhooks are automatically disabled after repeated failures (e.g., multiple non-2xx responses). Failures include timeouts, 5xx responses, and unreachable endpoints. **Root cause** Circuit breaker behavior disables unhealthy webhooks to protect the platform. **Resolution** * Manually re-enable the webhook. * Configure email notifications for future alerts. The webhook remains active after recovery. * * * ## 4\. Excessive Webhook Traffic Causes 429 Errors Webhook executions fail with **HTTP 429** responses when Contentstack attempts to deliver events to the configured endpoint. **Root cause** In this case, the 429 is returned by the customer’s receiving system, not by Contentstack. This typically happens when the receiving endpoint enforces its own rate limits, retry loops cause traffic spikes, or multiple webhooks fire simultaneously (bulk publish, branch merge, etc.). **Resolution** * Review webhook execution logs. * Check receiving system rate limits. * Implement: * Idempotency handling * Queue-based processing * Throttling on the receiving system * Avoid webhook recursion or retry storms. Confirm if: * Webhook delivery logs show successful (2xx) responses. * No further 429 responses from receiving endpoint. * No excessive retry attempts. * * * ## 5\. Webhook Authentication Configuration Confusion Uncertainty around whether to use Basic Auth or OAuth for webhook authentication. **Root cause** Multiple authentication options can cause configuration confusion. **Resolution** * Select the appropriate authentication method. * Disable Basic Auth if it is not required. Webhook authentication works as configured. * * * ## 6\. Integrating Contentstack with Adobe Experience Manager Integrating Contentstack with Adobe Experience Manager (AEM) in the CMS may require a custom approach when an out-of-the-box connector is missing. This prevents the use of a native public connector for migration or integration. **Root cause** A dedicated out-of-the-box AEM connector is not available on the public site. **Resolution** 1. Refer to the official AEM-to-Contentstack migration PDF for guidance. 2. Utilize custom scripts and APIs to implement a migration or integration approach. After reviewing the migration PDF and scripts, attempt to configure the custom integration. If the integration successfully connects the platforms, the custom approach is functional.