HTTP hooks send the resource change context over HTTP using a POST request with the event context as the payload.
The event context is encoded in the POST body as application/json. See the Integration Overview for a list of the context properties.
The context will include the payload secret you defined when you created the hook. You should validate this to ensure the request is authorized.
You should only use https to transport the hook. The hook request context includes potentially sensitive information about your cloud and should be safeguarded.