Review hidden restored or deleted by a safariat admin
Emitted when a Safariat admin moderates a traveler review that originated from a booking the calling partner created via SafarAPI. The bank should invalidate its cached review display for that adventure / agency.
action is one of:
HIDDEN— review is no longer publicly visible (hidden by moderation).RESTORED— a previously hidden review is visible again.DELETED— review has been permanently removed.
The event is only delivered if the underlying review is tied to a booking owned by the calling partner. Reviews originating from B2C bookings never trigger this webhook.
Authorizations
API key authentication. Issued by the Safariat admin or via the partner portal. The secret is shown only once at generation.
Production sk_live_* keys must additionally sign every write request
(POST/PUT/DELETE) with the X-Timestamp and X-Signature headers.
Sandbox sk_test_* keys are exempt from request signing: X-Signature and
X-Timestamp are not required for writes in the sandbox (so the developer-portal
"Try it" playground works end to end). The Idempotency-Key header remains
required on writes in both environments.
Body
Idempotent event ID (to deduplicate on the bank side).
booking.confirmed, booking.cancelled, booking.completed, settlement.issued, adventure.unavailable, review.moderated true if the event originates from an sk_test_* key or from
POST /webhooks/{id}/test. The bank must ignore / label these events.
Payload specific to the event type. Stable schema in v1 but may gain new fields (never removed).
Response
Acknowledgment of receipt.