Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.risingwave.com/llms.txt

Use this file to discover all available pages before exploring further.

HubSpot is a CRM platform that provides various marketing, sales, and customer service features. It allows you to leverage webhooks through its workflow automation features. With these webhooks, you can receive real-time HTTP POST requests whenever specific events occur—such as a contact filling out a form or a deal reaching a certain stage—and forward that data to other systems. For example, you can automatically post a contact’s information to another CRM once they complete a form submission, or send deal details to an external shipment-handling system to initiate a purchase order. By integrating these HubSpot webhooks with RisingWave, you gain the ability to ingest and process this event data within your database, enabling real-time analytics and deeper insights into user behavior and engagement. HubSpot webhooks are not available on all HubSpot plans. You must have the appropriate subscription level (e.g., certain Operations Hub Enterprise plans) to access HubSpot Webhook functionality. Check your HubSpot plan details before proceeding. This guide will walk through the steps to set up RisingWave as a destination for HubSpot webhooks.
New to RisingWave webhooks? Before configuring HubSpot, it’s recommended to run a quick local smoke test to confirm your RisingWave webhook listener is reachable and your table is ingesting events. See Webhook endpoint and Quick local smoke test.

1. Create a table in RisingWave

Next, create a table configured to accept webhook data from HubSpot. 
-- Optional (recommended): store the shared secret as a RisingWave secret.
-- If you don't have access to secrets, skip this and use the raw-string example below.
CREATE SECRET test_secret WITH (backend = 'meta') AS 'TEST_WEBHOOK';

CREATE TABLE wbhtable (
  data JSONB
) WITH (
  connector = 'webhook',
  [ is_batched = true ]
) VALIDATE SECRET test_secret AS secure_compare(
  headers->>'x-hubspot-signature',
  encode(
    sha256(
      convert_to(
        (test_secret || 'POST' || 'https://<HOST>/webhook/<database>/<schema_name>/<table_name>' || convert_from(data, 'utf8'))
      , 'UTF8'
      )
    ) 
  , 'hex'
  )
);
Parameter or clauseDescription
data JSONBDefines the name of column to store the JSON payload from the webhook. Currently, only JSONB type is supported for webhook tables.
is_batchedOptional, set to true to enable batch ingestion of multiple JSON lines in a single request.
SECRET <secret>Use an existing secret to verify incoming webhook requests. This is optional. You can also use a raw string to verify.
headers->>'...'Extracts the signature provided by HubSpot in the x-hubspot-signature HTTP header.

In secure_compare() function, the whole HTTP header is interpreted as a JSONB object, and you can access the header value using the ->> operator, but only the lower-case header names in the ->> operator, otherwise the verification will fail.
encode(...)Computes the expected signature by concatenating the secret, HTTP method (POST), RisingWave webhook URL, and the request body converted from UTF-8 data. It then takes a SHA-256 hash of this string and encodes it in hex.
secure_compare(...)Validates requests by matching the header signature against the computed signature, ensuring only authenticated requests are processed. The secure_compare() function compares two strings in a fixed amount of time, regardless of whether they are equal or not, ensuring that the comparison is secure and resistant to timing attacks.
In HubSpot Webhook, several request validation methods are available, including v1, v2, v3, and API Key–based authentication. Each version employs a different approach to generating and verifying signatures, and may store the signature in a distinct header field. The SQL example above illustrates how to validate a signature generated using the v2 method.
For HubSpot signature validation (v2/v3), the URL string used in the secure_compare(...) expression must match the exact webhook URL HubSpot calls (scheme/host/path, and whether there is a trailing slash). If they differ, validation will fail.
If you prefer to use an API key, you can simply include a key-value pair in the HTTP headers and validate against that value instead. For comprehensive details on all supported validation methods, refer to HubSpot’s official documentation. Or you can also use raw string for verification without secret: 
CREATE TABLE wbhtable (
  data JSONB
) WITH (
  connector = 'webhook'
) VALIDATE AS secure_compare(
  headers->>'x-hubspot-signature',
  encode(
    sha256(
      convert_to(
        ('TEST_WEBHOOK' || 'POST' || 'https://<HOST>/webhook/<database>/<schema_name>/<table_name>' || convert_from(data, 'utf8'))
      , 'UTF8'
      )
    ) 
  , 'hex'
  )
);

2. Set up webhook in HubSpot

After configuring RisingWave to accept webhook data, set up HubSpot to send events to your RisingWave instance.

RisingWave webhook URL

The webhook URL should follow this format: 
https://<HOST>/webhook/<database>/<schema_name>/<table_name>
ParameterDescription
HOSTThe hostname or IP address where your RisingWave instance is accessible. This could be a domain name or an IP address.
databaseThe name of the RisingWave database where your table resides.
schema_nameThe schema name of your table, typically public unless specified otherwise.
table_nameThe name of the table you created to receive webhook data, e.g., wbhtable.

Configure webhook in HubSpot

While the official HubSpot webhook documentation provides comprehensive guidance, here are a few points to keep in mind:
  • HTTP Method: Always use the POST method when configuring your webhook to send data to RisingWave.
  • Signature Validation: Ensure that your chosen validation method (v1, v2, v3, or API key) aligns with the header key and secure_compare expression defined in RisingWave. Different methods generate signatures in distinct ways, so you may need to adjust your validation logic accordingly.
  • Testing Your Configuration: Use the test actions feature in HubSpot to verify that your webhook and RisingWave setup work as intended. This helps confirm that the configuration is correct before putting it into production.

3. Push data from HubSpot via webhook

With the webhook configured, HubSpot will automatically send HTTP POST requests to your RisingWave webhook URL whenever the specified condition is satisfied. RisingWave will receive these requests, validate the signatures, and insert the payload data into the target table.

4. Further event processing

The data in the table is already ready for further processing. You can access the fields using data->'field_name' in SQL queries. You can create a materialized view to extract specific fields from the JSON payload. 
CREATE MATERIALIZED VIEW hubspot_events AS
SELECT
  data->>'vid' AS id,
  data->'properties'->>'lastname' AS last_name,
  data->'properties'->>'hs_object_id' AS hs_object_id
FROM wbhtable;
You can now query hubspot_events like a regular table to perform analytics, generate reports, or trigger further processing.