diff --git a/connector-superoffice/webhook_app.py b/connector-superoffice/webhook_app.py
index 62e4fddc..586eb567 100644
--- a/connector-superoffice/webhook_app.py
+++ b/connector-superoffice/webhook_app.py
@@ -12,7 +12,7 @@ logger = logging.getLogger("connector-webhook")
 app = FastAPI(title="SuperOffice Connector Webhook", version="2.0")
 queue = JobQueue()
 
-WEBHOOK_SECRET = os.getenv("WEBHOOK_SECRET", "changeme")
+WEBHOOK_TOKEN = os.getenv("WEBHOOK_TOKEN", "changeme")
 
 @app.post("/webhook")
 async def receive_webhook(request: Request, background_tasks: BackgroundTasks):
@@ -21,11 +21,10 @@ async def receive_webhook(request: Request, background_tasks: BackgroundTasks):
     """
     # 1. Verify Secret (Basic Security)
     # SuperOffice puts signature in headers, but for custom webhook we might just use query param or header
-    # Let's assume for now a shared secret in header 'X-SuperOffice-Signature' or similar
     # Or simply a secret in the URL: /webhook?token=...
     
     token = request.query_params.get("token")
-    if token != WEBHOOK_SECRET:
+    if token != WEBHOOK_TOKEN:
         logger.warning(f"Invalid webhook token attempt: {token}")
         raise HTTPException(403, "Invalid Token")