I'm trying to include GDPR mandatory webhooks to my app (using nodejs and koa router). i exposed the 3 needed routes for the webhooks and when i test them in postman, i get:
Solved! Go to the solution
If I understand correctly, you are mocking this webhook to test your application if it works correctly or not. right?
So this Forbidden part is on your application side, you need to figure out what's causing it.
Maybe its because some of the headers you included. Nothing mentioned related to headers in docs. Everything you need is in payload. So give it a shot without headers.