Currently, webhook approval notification for self service action does not include the x-port-signature and x-port-timestamp headers.

Adding these to the webhook requests can allow another layer of security for the requests, and allows you to implement logic in your backend that is protected via the validation.