I was looking forward to use the fyers webhook feature but i am concerned about the security of my internal api so i saw a column in the app creation with the name "Webhook Secret", is this a secret key that is passed in the headers when fyers sends some payload ?
I am asking this because i need something through which i can safeguard my api from any attacks. If not webhook secret is there anything in the post request that fyers sends through which i can verify it is the broker only?