InvoanceInvoance
Log inStart free
Developers
Search docs…⌘K
Getting started
OverviewConceptsAuthenticationCreate an API key
API reference
EndpointsErrors
Audit Logs
Quick startIntegrationsEvent schemaExporting eventsSDK reference
AI Attestations
Quick startAttestation schemaVerification & proofSDK reference
Events
OverviewSDK reference
Documents
OverviewSDK reference
Traces
OverviewSDK reference
SDKs
PythonNode.jsGoJavaRubyRust.NETPHPcURL
Verification
How it works
Support
API FAQ
Developers·Audit Logs·Integrations·Clerk

Clerk

Point Clerk's webhooks at Invoance and every organization in your app starts accumulating signed, independently verifiable audit events (sign-ins, membership changes, role updates) before your team writes a line of instrumentation. Every delivery is verified against its Svix signature before anything is trusted.

Set up

  1. Create the integration in Dashboard → Audit Logs → Integrations (provider: Clerk) and copy the webhook URL. It is shown once and stored hashed.
  2. In the Clerk Dashboard, open Configure → Webhooks → Add endpoint and paste the URL.
  3. Subscribe to the events you want from the table below; start with the core set.
  4. Copy the endpoint's signing secret (whsec_…) into the integration. If you ever rotate it in Clerk, use Roll secret on the source; the URL stays the same and nothing else changes.

Event map

Verified events are translated into a clean audit vocabulary, Ed25519-signed, and sealed into each organization's gap-free sequence, identical to events sent via the API. Provider events carry the end-customer organization; unknown orgs are auto-created (up to your plan's limit) with their real names.

Clerk eventBecomesOrganizationTier
organizationMembership.createdmember.addedembedded organization (auto-creates it, with name)core
organizationMembership.deletedmember.removedembedded organizationcore
organizationMembership.updatedrole.changed (role kept in metadata)embedded organizationcore
organization.createdorganization.createdthe organization itselfcore
user.createduser.creatednone → org-less policycore
user.deleteduser.deletednone → org-less policycore
session.revokedsession.revokedsession's active organization (nullable)core
session.createduser.signed_insession's active organization (nullable)high-volume
session.removeduser.signed_outsession's active organization (nullable)high-volume
user.updateduser.updatednone → org-less policyhigh-volume

High-volume tier: session.created fires on every sign-in, session.removed on sign-outs and session expiry, and user.updated on any User-object change including backend metadata writes. They count against your monthly signed-event allotment, so subscribe deliberately. session.ended is intentionally not mapped: a single sign-out fires both it and session.removed, which would double-count.

Response codes, retry behavior, quota rules, and org routing are shared by every provider and documented under delivery semantics on the Integrations overview. Once events are flowing, the quick start shows how to instrument your product's own actions with one call each.

Invoance

Neutral digital proof infrastructure for business. Tamper-evident, independently verifiable records.

Subscribe to our newsletter

Products
Platform
How It Works
Developers
Verify
Resources
Help & Legal
Products
  • Event Ledger
  • Document Anchoring
  • AI Attestation
  • Audit Logs
Platform
  • Why Invoance
  • For Compliance Teams
  • For Finance Teams
  • Pricing
How It Works
  • Overview
  • Event Ledger
  • Document Anchoring
  • AI Attestation
Developers
  • Overview
  • Endpoints
  • Authentication
  • Concepts
Verify
  • Verify Document
  • Verify AI Attestation
  • Verify Event
  • Verify Trace
Resources
  • All Resources
  • SOC 2 Guide
  • HIPAA Guide
  • ISO 27001 Guide
Help & Legal
  • Support
  • Status
  • Verification Help
  • FAQ

Invoance provides technical verification and proof infrastructure for digital records. Invoance does not issue legal, financial, or regulatory advice.

Records anchored through Invoance are cryptographically signed and tamper-evident by design. Invoance does not verify the accuracy, legality, or authenticity of document contents, only that a record existed in a specific form at a specific time. Verification links are publicly resolvable and do not require authentication. Invoance does not act as a custodian of funds, a legal authority, or a regulated financial entity. Use of Invoance does not constitute legal compliance. Consult qualified counsel for your specific obligations.

© 2025 – 2026 Invoance, Inc. All rights reserved.••