api.hero.badge

api.hero.title_part1
api.hero.title_part2

api.hero.subtitle

api.hero.get_access api.hero.technical_support

api.quickstart.title

api.quickstart.step1_title

api.quickstart.step1_desc

api.quickstart.step2_title

api.quickstart.step2_desc

api.quickstart.step3_title

api.quickstart.step3_desc

api.auth_example.label

# api.auth_example.login_comment
curl -X POST https://live.veribenim.com/api/auth/console \
  -H "Content-Type: application/json" \
  -d '{"email":"siz@domain.com","password":"****"}'

# api.auth_example.response
{
  "token": "1|abc123...",
  "user": { "id": 1, "name": "Ad Soyad" }
}

# api.auth_example.next_requests
curl https://live.veribenim.com/api/environments \
  -H "Authorization: Bearer 1|abc123..."

api.endpoints_ref.title

api.endpoints_ref.base_url_note https://live.veribenim.com

POST/api/impressions/{token}api.endpoints.log_page_view api.endpoints_ref.public

POST/api/consents/{token}/logapi.endpoints.log_consent_decision api.endpoints_ref.public

GET/api/preferences/{token}api.endpoints.read_preferences api.endpoints_ref.public

POST/api/preferences/{token}api.endpoints.update_preferences api.endpoints_ref.public

POST/api/dsar/{token}api.endpoints.create_dsar_request api.endpoints_ref.public

GET/api/environmentsapi.endpoints.list_all_sites api.endpoints_ref.auth

GET/api/cookies/{token}/analyticsapi.endpoints.analytics_report api.endpoints_ref.auth

GET/api/cookies/{token}/compliance-scoreapi.endpoints.compliance_score api.endpoints_ref.auth

GET/api/cookies/{token}/ropa-exportapi.endpoints.ropa_export api.endpoints_ref.auth

POST/api/cookies/{token}/generate-bundleapi.endpoints.create_publish_bundle api.endpoints_ref.auth

GET/api/cookies/{token}/dsarapi.endpoints.list_dsar_requests api.endpoints_ref.auth

GET/api/cookies/{token}/breachesapi.endpoints.list_breaches api.endpoints_ref.auth

GET/POST/api/cookies/{token}/webhooksapi.endpoints.webhook_management api.endpoints_ref.auth

api.webhook.title

api.webhook.signature_note X-Veribenim-Signature

api.webhook.supported_events

consent.accept_all

api.webhook.event_accept_all

consent.reject_all

api.webhook.event_reject_all

consent.save_preferences

api.webhook.event_save_pref

dsar.created

api.webhook.event_dsar_created

dsar.resolved

api.webhook.event_dsar_resolved

breach.created

api.webhook.event_breach_created

breach.reported

api.webhook.event_breach_reported

api.webhook.payload_example

{
  "event": "consent.accept_all",
  "environment": "abc123...",
  "timestamp": "2026-03-28T10:00:00Z",
  "data": {
    "session_id": "uuid-here",
    "ip_masked": "192.168.***.*",
    "categories": {
      "analytics": true,
      "marketing": true,
      "functional": true
    }
  }
}

api.webhook.signature_verification

const crypto = require('crypto');

function verifySignature(rawBody, secret, signature) {
  const expected = 'sha256=' +
    crypto.createHmac('sha256', secret)
          .update(rawBody)
          .digest('hex');
  return crypto.timingSafeEqual(
    Buffer.from(expected),
    Buffer.from(signature)
  );
}

app.post('/webhook', express.raw({type: 'application/json'}), (req, res) => {
  const sig = req.headers['x-veribenim-signature'];
  if (!verifySignature(req.body, process.env.VBN_SECRET, sig)) {
    return res.status(401).send('Unauthorized');
  }
  const { event, data } = JSON.parse(req.body);
  // İşle
  res.sendStatus(200);
});

api.features.stateless_auth_title

api.features.stateless_auth_desc

api.features.json_response_title

api.features.json_response_desc

api.features.cors_title

api.features.cors_desc

api.hero.title_part1 api.hero.title_part2