Webhooks
When rendering on AWS Lambda, Remotion can send webhooks to notify you when the render ends, successfully or with failures. This page describes the webhook payloads and how to set up a webhook API endpoint.
Refer to the renderMediaOnLambda() documentation to learn how to trigger a render with webhooks enabled.
Setup
You will need to set up an API endpoint with a POST request handler. Make sure that the endpoint is reachable and accepts requests from AWS.
If you run the webhook endpoint on your local machine (i.e. on localhost), you will need to set up a public reverse proxy using a tool like ngrok.
Response
Every webhook has the following headers:
json
json
You can use these headers to verify the authenticity of the request, to check the status of your rendering process and to check whether the webhook was called from production code deployed to AWS or a demo application such the tool below or your own test suite.
The request body has the following structure:
ts
ts
The fields renderId, bucketName will be returned just like they are returned by renderMediaOnLambda() itself.
If the render process times out, the reponse body will not contain any other fields.
The outputUrl, outputFile and timeToFinish keys are only returned if the render was successful. Note that a successful render process may still have non-fatal lambdaErrors:
json
json
The errors array will contain the error message and stack trace of any fatal error that occurs during the render process.
Validate Webhooks
Remotion will sign all webhook requests if you provide a webhook secret in the CLI arguments.
If you don't provide a secret, the X-Remotion-Signature will be set to NO_SECRET_PROVIDED. It is not possible to verify the authenticity and data integrity of a webhook request that is sent with a NO_SECRET_PROVIDED signature. If you want to verify incoming webhooks, you must provide a webhook secret.
Remotion uses HMAC with the SHA-512 algorithm to cryptographically sign the webhook requests it sends. This allows you to verify the authenticity and data integrity of incoming webhook requests.
In order to verify a webhook request, you will need to create a hex digest of a SHA-512 HMAC signature using your provided webhook key and the request body. If it matches the X-Remotion-Signature header, the request was indeed sent by Remotion and its request body is complete.
If it does not match, either the data integrity is compromised and the request body is incomplete or the request was not sent by Remotion.
This is how Remotion calculates the signature:
javascript
javascript
In your webhook endpoint, the payload parameter is the request body and the secret parameter is your webhook secret.
Instead of validating the signature yourself, you can use the validateWebhookSignature() function to throw an error if the signature is invalid.
Example webhook endpoint (Express)
You can use any web framework and language to set up your webhook endpoint. The following example is written in JavaScript using the Express framework.
server.jsjavascript
server.jsjavascript
Example webhook endpoint (Next.JS)
Similary, here is an example endpoint in Next.JS.
Since this endpoint is going to be executed in an AWS Lambda function on it's own, you want to import the Remotion functions from @remotion/lambda/client.
pages/api/webhook.tstsxvalidateWebhookSignature ,WebhookPayload ,} from "@remotion/lambda/client";export default async functionhandler (req :NextApiRequest ,res :NextApiResponse ) {validateWebhookSignature ({secret :process .env .WEBHOOK_SECRET as string,body :req .body ,signatureHeader :req .headers ["x-remotion-signature"] as string,});// If code reaches this path, the webhook is authentic.constpayload =JSON .parse (req .body ) asWebhookPayload ;if (payload .type === "success") {// ...} else if (payload .type === "timeout") {// ...}res .status (200).json ({success : true,});}
pages/api/webhook.tstsxvalidateWebhookSignature ,WebhookPayload ,} from "@remotion/lambda/client";export default async functionhandler (req :NextApiRequest ,res :NextApiResponse ) {validateWebhookSignature ({secret :process .env .WEBHOOK_SECRET as string,body :req .body ,signatureHeader :req .headers ["x-remotion-signature"] as string,});// If code reaches this path, the webhook is authentic.constpayload =JSON .parse (req .body ) asWebhookPayload ;if (payload .type === "success") {// ...} else if (payload .type === "timeout") {// ...}res .status (200).json ({success : true,});}
Test your webhook endpoint
You can use this tool to verify that your webhook endpoint is working properly. The tool will send an appropriate demo payload and log the response to the screen. All requests sent by this tool will have the "X-Remotion-Mode" header set to "demo".
This tool sends the demo webhook requests directly from your browser, which has the following implications:
- CORS requirements:
- Make sure your API endpoint is configured to accept requests from
remotion.devby setting"Access-Control-Allow-Origin": "true". This is necessary for this tool to work, but not for your production webhook endpoint. - You must set
"Access-Control-Allow-Headers": "X-CSRF-Token, X-Requested-With, Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, X-Api-Version, X-Remotion-Status, X-Remotion-Signature, X-Remotion-Mode" - You must set
"Access-Control-Allow-Methods": "OPTIONS,POST".
- Make sure your API endpoint is configured to accept requests from
- You can use a server listening on
localhostand don't need to use a reverse proxy.