Postback & Tracking Link Configurations For Affiliate Marketing Platforms

A comprehensive cheat sheet detailing exact parameter mappings and postback URL formats for setting up tracking links and conversion postbacks across multiple affiliate networks and tracking platforms like Everflow, HasOffers, Cake, Impact, and more.

Overview

What this guide covers: This comprehensive resource provides exact parameter mappings, macro syntax, and postback URL formats for configuring tracking links and conversion postbacks across 20+ affiliate marketing platforms including Everflow, Impact, CAKE, TUNE, Affise, Awin, CJ Affiliate, and more.

Who this is for: Performance marketers, affiliate managers, network operators, and technical integration teams who need to set up accurate conversion tracking between platforms. Whether you're migrating from one network to another, setting up cross-platform tracking, or troubleshooting macro mismatches, this guide provides the technical specifications you need.

How to use this guide: Use the interactive Platform Selector below to quickly find the platform you're working with, then use the Macro Translator to convert parameters between different platform syntaxes, and finally generate complete URL templates with the Template Generator. Each platform entry includes character limits, authentication requirements, and common gotchas.

📅 Updated: Jan 15, 2026

🔌 Platforms: 20

View all ▼

Everflow

Impact

CAKE

TUNE/HasOffers

Affise

Awin

ShareASale

CJ Affiliate

Rakuten

Partnerize

ClickBank

Taboola Realize

Outbrain

Voluum

AppsFlyer

Adjust

Branch

Singular

Meta CAPI

Google Ads

TikTok Events API

Konnektive

🔌 Platform Configuration Finder

Search for your platform to view macro syntax, postback formats, and critical integration warnings

Showing 20 platforms

Everflow

Current

Affiliate Network / Tracking Platform {macro}

Uses lowercase curly brace macros like {transaction_id}, {affiliate_id}, {sub1}-{sub5}.

⚠️ NID (Network ID) and transaction_id are required for all postbacks. Auto-disables after 25 consecutive failures.

Impact

Current

Affiliate Network {PascalCase}

Uses PascalCase macros: {ActionId}, {MediaPartnerId}, {CampaignId}. Case-sensitive!

⚠️ Requires HTTP Basic Auth for postbacks. Only 3 SubIDs max ({SubId1}-{SubId3}). HTTPS required.

CAKE

Current

Affiliate Network #token#

Hash-delimited tokens: #reqid#, #affiliateid#, #s2#-#s5#. Request ID is alphanumeric up to 25 chars.

⚠️ s1 is RESERVED for SubAffiliate tracking (50-char limit). Use s2-s5 for click IDs (100-char each).

TUNE / HasOffers

Current

Affiliate Network {macro}

Uses {transaction_id} (10-30 char alphanumeric starting with 101/102/103), {aff_sub}-{aff_sub5}.

⚠️ CRITICAL: Must pass FULL transaction_id. Truncation causes "Invalid Trans. ID" error. 500-char limit per aff_sub.

Affise

Current

Affiliate Network {macro}

Outbound (tracking URLs): {clickid} • Inbound (postbacks): {sub1}-{sub8}

⚠️ NO {clickid} for affiliate postbacks! You must use {sub1}-{sub8} to pass click IDs in postback URLs. This is the #1 integration error.

Awin

Active

Affiliate Network (ShareASale successor) !!!macro!!!

Triple-exclamation macros: !!!clickRef!!!, !!!affiliateId!!!, !!!commission!!!. Supports clickRef1-6.

⚠️ MasterTag required on every page for ITP compliance. S2S tracking now mandatory. ShareASale migrated here Oct 2025.

ShareASale

Closed

Legacy Network (Closed Oct 2025) !!macro!!

Platform closed October 6, 2025. All accounts migrated to Awin. Legacy macros: !!afftrack!!, !!transID!!.

⚠️ PLATFORM CLOSED. Use Awin for all new integrations. Existing links auto-redirect to Awin.

CJ Affiliate

Current

Affiliate Network CJEVENT

Uses CJEVENT parameter (auto-appended to landing URLs). SubID via sid parameter. Requires OAuth2 API token.

⚠️ CJEVENT is auto-appended to landing page URLs. Pass sid in tracking links to receive it back in postbacks.

Rakuten Advertising

Current

Affiliate Network u1

Primary SubID parameter is u1. Tracking link: click.linksynergy.com/fs-bin/click?id=...

⚠️ Events API available via Developer Portal (beta). Contact Rakuten for postback configuration access.

Partnerize

Current

Affiliate Network clickref

Primary parameter: clickref (case-sensitive). S2S URL format: prf.hn/conversion/tracking_mode:api/...

⚠️ The clickref parameter is case-sensitive and must match exactly in postback URLs.

ClickBank

Current

Affiliate Network / Marketplace INS v8.0

Uses Instant Notification Service (INS) v8.0. Encrypted JSON via CBC-AES-256. Parameters: clickId, affSub1-5.

⚠️ INS sends encrypted JSON payloads. Transaction types: SALE, BILL (rebill), RFND, CGBK, CANCEL-REBILL.

Taboola

Current

Native Advertising (Realize) click-id

S2S postback to trc.taboola.com. Click ID is ~120 chars, case-sensitive. Dashboard rebranded to "Realize".

⚠️ Use click-id (HYPHEN) not click_id (underscore). Event names are case-sensitive. Success = HTTP 204.

Outbrain

Current

Native Advertising ob_click_id

Click ID parameter: ob_click_id or {{ob_click_id}}. S2S endpoint: tr.outbrain.com/unifiedPixel

⚠️ Event names are case-sensitive. Include orderValue and currency for revenue tracking.

Voluum / ZeroPark

Current

Ad Tracker / Traffic Source {clickid}

24+ char alphanumeric click IDs. Macros: {clickid}, {externalid}, {var1}-{var10}.

⚠️ When both cid and c present, cid takes priority. Blank spaces break URLs.

AppsFlyer

Current

Mobile Measurement Partner $$click() / $$sdk()

Installs: $$click(clickid) • Events: $$sdk(mapped-iae), $$sdk(event), $$sdk(revenue)

⚠️ Direct Integration is NOT real-time (daily sync). Use postbacks for real-time. Agency accounts need app owner authorization.

Adjust

Current

Mobile Measurement Partner {placeholder}

Uses curly brace placeholders: {idfa}, {gps_adid}, {adid}, {click_id}, {revenue_usd}

⚠️ Event callbacks require event token suffix: event_callback_TOKEN=.... 70+ pre-configured traffic source templates.

Branch

Current

Mobile Measurement Partner / Deep Linking ${(macro)!}

Freemarker syntax: ${(last_attributed_touch_data.~click_id)!}, ${(user_data.aaid)!}

⚠️ Uses Freemarker template syntax with ! for null-safe access. Configure postbacks in Branch Dashboard → Data Feeds.

Konnektive

Current

E-commerce CRM [token]

Square bracket tokens: [orderId], [orderTotal], [c1]-[c5]. Token names are case-sensitive.

⚠️ Import Click MUST be called BEFORE Import Order. Reversed sequence loses tracking data. Test card: 0000000000000000.

Meta Conversions API

Current

Server-Side Tracking fbc / fbp

Endpoint: graph.facebook.com/v18.0/{pixel_id}/events. Pass fbc and fbp cookies in plain text.

⚠️ Do NOT hash fbc/fbp values - pass in plain text. Use matching event_id for browser+server deduplication (48hr window).

Google Ads Offline Conversions

Current

Offline Conversion Import gclid

Store gclid at form submission. GBRAID (iOS app) and WBRAID (iOS web) for App Tracking Transparency compliance.

⚠️ GCLID is case-sensitive, 90-day validity. Date format: yyyy-mm-dd HH:mm:ss+|-HH:mm. Cannot combine GCLID with GBRAID/WBRAID.

TikTok Events API

Current

Server-Side Tracking ttclid / _ttp

Endpoint: business-api.tiktok.com/open_api/v1.3/pixel/track/. ttclid auto-appended since April 2024.

⚠️ ttclid validity: 7-30 days. Browser ID cookie: _ttp. Use matching event_id for Pixel+API deduplication.

🔍

No platforms found

Try a different search term or category

Macro Translation Tool

Convert tracking parameters between different platform syntax formats

🔄 Macro Translation Tool

Compare parameter syntax between platforms to avoid "macro mismatch" errors when migrating or integrating

⟷

📝 Syntax Format Quick Reference

{macro} Everflow, TUNE, Affise

{PascalCase} Impact

#token# CAKE

!!!macro!!! Awin

[token] Konnektive

$$click() AppsFlyer

click-id Taboola (hyphen!)

ob_click_id Outbrain

URL Template Generator

Generate complete postback and tracking URL templates for any platform combination

🔧 URL Template Generator

Generate accurate postback URLs and tracking links with correct macro syntax and platform-specific warnings

Select Platform

Use Case

What are you building?

📥

Partner Postback

Receive from partners

📤

Advertiser Postback

Send to advertisers

🔗

Tracking Link

Give to partners

Partner Postback URL

Required

Optional

Comments

Best Practices & Common Pitfalls

Testing & Validation

Always test with real clicks: Send test conversions through your complete tracking flow before going live. Many integration issues only appear with actual traffic.
Verify macro replacement: Check that dynamic macros (like {clickid} or #s1#) are being replaced with actual values, not passed as literal strings.
Monitor character limits: Pay special attention to platforms with strict character limits (CAKE s1=50 chars, Affise sub1-sub8=255 chars). Truncated values cause tracking breaks.
Test both success and failure cases: Verify how your postback handles declined transactions, chargebacks, and refunds.

Common Integration Errors

Macro mismatch: Using Everflow syntax (#s1#) in an Impact postback ({click_id}). This is the #1 cause of tracking failures.
URL encoding issues: Forgetting to URL-encode special characters in postback URLs. Always encode ampersands (&), equals (=), and spaces.
HTTPS vs HTTP: Some platforms require HTTPS endpoints. Using HTTP when HTTPS is required causes silent failures.
Missing required parameters: Each platform has required vs optional parameters. Check documentation for minimum required fields.
Incorrect event names: Using custom event names that don't match platform expectations (e.g., "purchase" vs "conversion" vs "sale").

Platform-Specific Gotchas

Affise directionality: Remember {clickid} is for OUTBOUND tracking URLs, while {sub1}-{sub8} are for INBOUND postbacks. Mixing these causes tracking failures.
CAKE SubID limits: s1 maxes at 50 characters (not 100 like s2-s5). Plan your data structure accordingly.
ShareASale sunset: ShareASale closed October 2025. Migrate to Awin for continued service.
Taboola rebranding: Taboola Backstage is now Taboola Realize. Update documentation but old macros still work during transition.
AppsFlyer attribution windows: Default is 7 days for clicks, 1 day for impressions. Coordinate with your attribution model.

Security & Privacy

Use HTTPS everywhere: Never send conversion data over unencrypted HTTP connections.
Implement IP whitelisting: Restrict postback endpoints to only accept requests from verified platform IP addresses.
Validate postback authenticity: Use security tokens or hash verification to prevent fraud.
PII handling: Avoid passing personally identifiable information (email, phone, full name) in postback URLs unless required and encrypted.
GDPR compliance: Ensure tracking parameters comply with privacy regulations in your operating regions.

Did This Help You Today?

Yes

Next in This Series

Lorem Ipsum Dolor Sit

Overview

Macro Translation Tool

URL Template Generator

Best Practices & Common Pitfalls

Testing & Validation

Common Integration Errors

Platform-Specific Gotchas

Security & Privacy

Looking for extra support?