Filters
Filters decide whether an event routed through a connection should continue to destination delivery.
Use filters when one source receives many webhook event types but only some of those events should reach a specific destination. A filtered-out event is not delivered to that destination. It is recorded as an ignored event for that connection, so operators can tell the event was intentionally skipped instead of failed.
Filters are configured inside a connection's rules array.
{
"type": "filter",
"headers": {
"x-github-event": "push"
}
}Dashboard Editor
In the dashboard, open a connection and turn on the Filter rule in the connection rules panel. The filter editor has four tabs:
- Headers
- Body
- Query
- Path
Each tab is a JSON editor. You do not need to fill every tab. Add JSON only to the parts of the request you want to match, then save the connection.
For example, the Headers tab can match a provider header:
{
"x-source": "shopify"
}The Body tab can match fields from the JSON payload:
{
"type": "order.failed"
}The Query tab can match parsed query parameters:
{
"shop": {
"contains": "demo"
}
}The Path tab also expects valid JSON. For a simple exact path match, enter a JSON string:
"/orders"The editor saves only tabs that contain text. Empty tabs are ignored. If all four tabs are empty, the connection cannot be saved with the filter enabled.
The editor accepts operator names with or without $. These two examples are equivalent:
{
"shop": {
"contains": "demo"
}
}{
"shop": {
"$contains": "demo"
}
}Example: Use All Four Filter Tabs
You can combine all four targets in one filter. FastHook will deliver the event only when Headers, Body, Query, and Path all match.
In the Headers tab:
{
"x-source": "shopify"
}In the Body tab:
{
"type": "order.paid",
"data": {
"total": {
"gte": 100
}
}
}In the Query tab:
{
"shop": {
"contains": "demo"
}
}In the Path tab:
"/orders"The saved connection rule is equivalent to:
{
"type": "filter",
"headers": {
"x-source": "shopify"
},
"body": {
"type": "order.paid",
"data": {
"total": {
"gte": 100
}
}
},
"query": {
"shop": {
"contains": "demo"
}
},
"path": "/orders"
}Where Filters Run
Connection rules are normalized when you create or update a connection. Filter rules are part of the connection processing stage, after the event has been accepted by the source and fanned out to the connection.
If a filter does not match:
- the destination is not called
- the event is marked ignored for that connection
- the ignored reason is
filter - delivery retry rules do not run, because there was no delivery attempt
Filter skips are intentional routing decisions. They should not be treated as failed deliveries.
Supported Targets
A filter can inspect four parts of the incoming webhook event.
| Target | What it matches |
|---|---|
headers | Inbound request headers after FastHook removes internal control headers. |
body | Parsed JSON body, or the raw body string when the payload is not JSON. |
query | Query string parsed into an object. |
path | Request path as a string, such as /stripe/webhook. |
A filter rule must include at least one of headers, body, query, or path.
{
"type": "filter",
"body": {
"type": "invoice.paid"
}
}Matching Defaults
Filters are strict by default:
- multiple targets in the same filter are combined with
AND - multiple fields inside the same object are combined with
AND - multiple filter rules on the same connection are combined with
AND - nested objects match recursively
- plain values use deep equality
This filter requires both the header and body condition to match.
{
"type": "filter",
"headers": {
"x-github-event": "push"
},
"body": {
"ref": "refs/heads/main"
}
}To express alternatives, use $or.
{
"type": "filter",
"body": {
"$or": [
{ "type": "invoice.paid" },
{ "type": "payment_intent.succeeded" }
]
}
}Headers
Header names should be written in lowercase. Runtime platforms commonly normalize incoming headers to lowercase, so this is the most reliable form.
{
"type": "filter",
"headers": {
"x-github-event": "pull_request"
}
}Match by user agent with a case-insensitive regex:
{
"type": "filter",
"headers": {
"user-agent": {
"$regex": "github-hookshot",
"$options": "i"
}
}
}Body
For JSON payloads, body filters can match nested fields.
{
"type": "filter",
"body": {
"data": {
"object": {
"amount": {
"$gte": 1000
}
}
}
}
}For non-JSON payloads, the body is treated as a string. Use string operators such as $contains, $starts_with, $ends_with, or $regex.
{
"type": "filter",
"body": {
"$contains": "order.created"
}
}Query
Query strings are parsed into objects. A single query value becomes a string.
Request:
/webhook?mode=liveFilter:
{
"type": "filter",
"query": {
"mode": "live"
}
}Repeated query parameters become arrays.
Request:
/webhook?tag=orders&tag=priorityFilter:
{
"type": "filter",
"query": {
"tag": {
"$contains": "priority"
}
}
}Path
The path target matches the full request path string.
{
"type": "filter",
"path": {
"$starts_with": "/stripe"
}
}Exact path match:
{
"type": "filter",
"path": "/stripe/webhook"
}Operators
Operator names can be written with or without $. For clarity, use the $ form in configuration.
| Operator | Meaning |
|---|---|
$eq | Actual value equals expected value. |
$ne | Actual value does not equal expected value. |
$gt | Actual value is greater than expected value. |
$gte | Actual value is greater than or equal to expected value. |
$lt | Actual value is less than expected value. |
$lte | Actual value is less than or equal to expected value. |
$in | Actual value equals one item in the expected array. |
$nin | Actual value equals none of the items in the expected array. |
$contains | String contains substring, or array contains value. |
$not_contains | String does not contain substring, or array does not contain value. |
$exists | Field presence check. |
$regex | String matches a regular expression. |
$starts_with | String starts with expected string. |
$ends_with | String ends with expected string. |
$i_contains | Case-insensitive string contains. |
$i_starts_with | Case-insensitive string starts with. |
$i_ends_with | Case-insensitive string ends with. |
$and | All child conditions must match. |
$or | At least one child condition must match. |
$not | Child condition must not match. |
$options | Regular expression flags used with $regex. |
Equality
Plain values are treated like $eq.
{
"type": "filter",
"body": {
"type": "customer.created"
}
}The explicit form is equivalent:
{
"type": "filter",
"body": {
"type": {
"$eq": "customer.created"
}
}
}Objects are compared deeply. Object key order does not matter.
{
"type": "filter",
"body": {
"metadata": {
"$eq": {
"plan": "pro",
"region": "eu"
}
}
}
}Numeric and Date Comparisons
Comparison operators support finite numbers, numeric strings, and date strings.
Match amounts greater than 5000:
{
"type": "filter",
"body": {
"amount": {
"$gt": 5000
}
}
}Match events created after a timestamp:
{
"type": "filter",
"body": {
"created_at": {
"$gte": "2026-05-01T00:00:00.000Z"
}
}
}If either side cannot be compared as a number, date, or string, comparison returns false.
Inclusion
Use $in when a field may equal one of several exact values.
{
"type": "filter",
"body": {
"type": {
"$in": ["order.created", "order.paid", "order.refunded"]
}
}
}Use $nin to exclude a set of exact values.
{
"type": "filter",
"body": {
"environment": {
"$nin": ["test", "sandbox"]
}
}
}Contains
For strings, $contains checks for a substring.
{
"type": "filter",
"body": {
"description": {
"$contains": "urgent"
}
}
}For arrays, $contains checks whether the array contains the expected value.
{
"type": "filter",
"body": {
"tags": {
"$contains": "priority"
}
}
}Use the case-insensitive variants for string matching:
{
"type": "filter",
"body": {
"description": {
"$i_contains": "urgent"
}
}
}Exists
$exists checks whether a field is present.
{
"type": "filter",
"body": {
"customer_id": {
"$exists": true
}
}
}Require a field to be absent:
{
"type": "filter",
"body": {
"test": {
"$exists": false
}
}
}A field with value null still exists. $exists only checks whether the field is present or missing.
Regex
$regex only matches strings.
{
"type": "filter",
"headers": {
"user-agent": {
"$regex": "Stripe/.*"
}
}
}Use $options for regular expression flags.
{
"type": "filter",
"headers": {
"user-agent": {
"$regex": "stripe",
"$options": "i"
}
}
}Logical Operators
$and requires every condition to match.
{
"type": "filter",
"body": {
"$and": [
{ "livemode": true },
{ "type": { "$starts_with": "invoice." } }
]
}
}$or requires at least one condition to match.
{
"type": "filter",
"body": {
"$or": [
{ "type": "checkout.session.completed" },
{ "type": "payment_intent.succeeded" }
]
}
}$not inverts a condition.
{
"type": "filter",
"body": {
"type": {
"$not": {
"$starts_with": "customer."
}
}
}
}Common Recipes
Deliver only GitHub pushes to main
{
"type": "filter",
"headers": {
"x-github-event": "push"
},
"body": {
"ref": "refs/heads/main"
}
}Deliver only production Stripe events
{
"type": "filter",
"body": {
"livemode": true,
"type": {
"$in": ["invoice.paid", "invoice.payment_failed"]
}
}
}Ignore sandbox traffic
{
"type": "filter",
"body": {
"environment": {
"$ne": "sandbox"
}
}
}Route only requests with a query flag
{
"type": "filter",
"query": {
"deliver": "true"
}
}Match multiple paths
{
"type": "filter",
"path": {
"$regex": "^/(stripe|github)/webhook$"
}
}Require a nested customer email
{
"type": "filter",
"body": {
"data": {
"object": {
"customer_email": {
"$exists": true
}
}
}
}
}Configure Filters With The API
Create a connection with a filter rule:
curl -X POST "/v1/connections" \
-H "Authorization: Bearer fhp_YOUR_PROJECT_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"name": "github main pushes",
"source_id": "src_...",
"destination_id": "des_...",
"rules": [
{
"type": "filter",
"headers": {
"x-github-event": "push"
},
"body": {
"ref": "refs/heads/main"
}
}
]
}'Update an existing connection:
curl -X PATCH "/v1/connections/web_..." \
-H "Authorization: Bearer fhp_YOUR_PROJECT_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"rules": [
{
"type": "filter",
"body": {
"type": {
"$in": ["invoice.paid", "invoice.payment_failed"]
}
}
}
]
}'Design Tips
- Start with event type, path, or provider header filters before adding deep body conditions.
- Prefer allow-list filters such as
$inover long chains of exclusions. - Keep each destination's filter focused on what that destination actually needs.
- Use lowercase header names.
- Test with representative payloads before using a filter on production traffic.
- When a destination did not receive an event, check whether the connection event was ignored with reason
filterbefore debugging delivery failures.
Edge Cases
If a target is set to null, it is ignored during rule normalization. At least one target must remain.
If an operator object contains an unknown operator, the condition does not match.
If a field is missing and the operator is not $exists, the condition does not match.
If your payload has a field named like an operator, such as eq or in, prefer wrapping the whole object with $eq to avoid ambiguity.
{
"type": "filter",
"body": {
"payload": {
"$eq": {
"eq": "literal-value"
}
}
}
}Filters run against the original incoming event data available to the connection worker. Do not rely on a transformation rule to create fields that a filter rule then matches.