Webhook Actions · by Flow Systems · v1.15.0

Very Powerful WordPress webhook plugin.

Async queue. Exponential retries. A delivery log you can grep. Nine tabs, one plugin, zero "fire-and-forget" surprises.

Install Free Plugin →
Version
1.15.0
Requires WP
6.0+
Requires PHP
8.0+
License
GPLv2
Rating
★★★★★ · 2 reviews
Inside the plugin

Nine tabs. Every operation you'll ever do.

Click a tab to see the corresponding admin panel. This is the same UI you'll get in wp-admin after install.

Anatomy of a delivery

Every event has a paper trail.

One row in the log expands to show the full lifecycle: payload, signature, every attempt, the response body. This is what your on-call engineer sees when they get paged.

// log entry 156 — woocommerce_order_status_completed
"event_uuid": "37116b42-7a4c-4c6d-8aa7-ea4bc3c13e4d",
"trigger_name": "woocommerce_order_status_completed",
"request_url": "https://n8n.flowsystems.pl/webhook/126cc22b…",
"status": "success",
"http_code": 200,
"duration_ms": 223,
"attempt_history": [
  { "attempt": 0, "http_code": 200, "duration_ms": 223 }
],
"next_attempt_at": null
Identity
Every event gets a stable X-Webhook-Id — your receiver can dedupe on it. No double-delivery.
Provenance
The triggering hook is recorded with the payload. Filter the log by hook = 'wpcf7_mail_sent'.
Recovery
Failed at attempt 1, recovered at attempt 2. The log shows both — and gives you a ↩ replay button anyway.
Idempotency
Every event carries a stable X-Event-Id (per-event UUID) and X-Webhook-Id (per-config UUID) — receivers deduplicate across retries without inspecting the payload.
Compatible with

Any action. Any plugin. Any custom hook.

WooCommerce
order_status_completed · new_order · refunded · 30+
Gravity Forms
gform_after_submission · gform_pre_submission
Contact Form 7
wpcf7_mail_sent · wpcf7_before_send_mail (built-in)
IvyForms
ivyforms/form/after_submission (built-in)
Easy Digital Downloads
edd_complete_purchase · edd_refund_order
ACF
acf/save_post · acf/update_value
WordPress Core
user_register · post_updated · comment_post · 200+
Custom hooks
any do_action() — including your own
REST API
GET · POST · PUT · PATCH · DELETE /fswa/v1/*
Webhook Chains
upstream 2xx → trigger downstream webhooks
Sync execution
inline delivery · auto queue fallback on failure
AI agents / CI
scoped tokens · read · operational · full · agent
Spec sheet

Concrete numbers, not feature dots.

What you actually get out of the box, versus what unlocks if you upgrade.

CapabilityFreePro / Agency
Async queueWP-Cron / Action Scheduler (auto)Same + External Cron (Pro)
Retry attempts5 (fixed)Configurable per webhook
Backoff schedule1m → 2m → 4m → 8m · max 1hConfigurable per webhook
Conditions1 condition · AND matchUnlimited · AND/OR groups
Dynamic URLfswa_webhook_url filter (PHP){{ field.path }} templates
Code GluePHP snippets per webhook (Pro)
Webhook ChainsYesYes
SitesUnlimited (GPLv2)Starter 1 · Business 10 · Agency 75
ReplayOne-click (incl. skipped)One-click + bulk
HTTP methodsGET · POST · PUT · PATCH · DELETESame
SupportCommunity / GitHubPriority email

Pricing for Pro and Agency tiers on the pricing page →

Install

Pick your install path.

⊟ wp-admin
Plugins → Add New
Search "Webhook Actions"
Install → Activate

Standard install. Auto-updates via wp.org.

⌬ Upload .zip
Plugins → Add New
Upload Plugin → choose
webhook-actions.zip → Activate

For pre-release builds and Pro distribution.

⌬ WP-CLI
$ wp plugin install \
  flowsystems-webhook-actions \
  --activate

For scripted installs, CI/CD pipelines, and server provisioning.

Changelog

Last three releases.

1.15.0 2026-06-07 NewCredentials Vault — store reusable authentication secrets (Bearer token, Basic auth, API key, custom header) once, encrypted at rest with AES-256-GCM, and reference them from webhooks via a saved credential instead of pasting a raw Authorization header. Secrets are write-only over the REST API — never returned to any caller, only a masked hint (e.g. Bearer ****1234) — and are decrypted only at dispatch time to build the outgoing header+6 more
1.14.1 2026-06-05 Fixed"Get Pro" links updated to /pricing/ page+2 more
1.14.0 2026-06-03 NewActivity History — persistent audit log of every admin and API-token action across webhooks, tokens, settings, logs, queue, schemas, chains, and cron. Each entry records the actor (session user or API token with a name hint), the action type, a structured context diff (old → new values for updates), and a timestamp. Designed to trace automated and AI-assisted changes end-to-end+8 more
Full changelog →
In the wild

Featured in a WordPress plugin roundup.

Webhook Actions by Flow Systems.

Search "Webhook Actions" on wp.org, or paste the install command.

Install Plugin → View on GitHub