1

We want to build a custom connector inside Power Apps which integrate with external API. and for this integration we will use the Oauth2.0. Now the external API provides these details for the Authentication:-

Token name - ********************

Grant Type - Authorization Code (With PKCE)

Callback Url - https://first.localhost:9000/auth

Auth Url - https://auth.********.net/oauth2/authorize

Access Token Url - https://auth.********.net/oauth2/token

Client Id - *****

Code Challenge Method - SHA-256

so is this info enough/sufficient to configure the custom connector's OAuth2.0, as on the custom connector we will be asked to provide these info:-

enter image description here

so what is the missing info in the external API that we need to get and ask the vendor about them?

Thanks

EDIT now i checked with external API vendor, and they showed me how they authenticate using Postman, where seems there are 2 steps:-

  1. They provide the clientID, clientSecret, AuthorizationURL & AccessTokenURL

  2. After that they get an access token >> and they submit it as an header to the Request, as follow:-

enter image description here

so is this type of OAuth 2.0 supported by custom connectors?

Improve this question
2
  • 1
    Does your external API use implicit grant or client credentials grant flow to provide authorisation tokens? Commented Mar 3, 2022 at 15:28
  • @CallumCrowley client credentials as we need to enter a username/password later on Commented Mar 3, 2022 at 20:06

2 Answers 2

Reset to default
1
+200

Implicit Grant and Client Credentials Grant flows cannot be used to authenticate Custom Connectors.

"Note that only Authorization Code Grant flows and On-Behalf-Of flows support refresh tokens (see this link for more information). Implicit Grants and Client Credentials Grants do not suport refresh tokens, so may not be used to authenticate Custom Connectors."

Verifying OAUTH configuration for Custom Connectors

This is why you need to provide a client secret for example.

Improve this answer
10
  • 1
    I would check with your API provider, as to whether they are using Implicit Grant or Client Credential Grant flows for their API. If so, it isn't possible to use the API to authenticate with custom connectors. Commented Mar 14, 2022 at 10:51
  • 1
    Yes, it appears they are using Client Credential Grant flow. More information: auth0.com/docs/get-started/… Commented Mar 14, 2022 at 11:01
  • 1
    As already stated above, APIs that use a Client Credential Flow cannot be authenticated in custom connectors Commented Mar 14, 2022 at 12:22
  • 1
    Yes, you could use multiple HTTP calls in Power Automate to utilise the API Commented Mar 14, 2022 at 12:32
  • 1
    I'm not aware of any but sure Google will have some help. Commented Mar 14, 2022 at 12:53
1

I asked the same questions months ago, and i found that the article of Wael Kdouh is very useful and detailed.

You will find all the required details you need in order to build your custom connector properly.

Cordially.

Improve this answer
4
  • Thanks for the reply, I already read the article,, but my question is about the missing info from our external API? not sure if it contains all the necessary info or not? for example inside our external API there is not any info about ClientSecret,, so can we replace it with any other info we have? Commented Mar 3, 2022 at 12:12
  • Okay, you need to share with us your API documentation, i mean all the fields you have on your API Structure Commented Mar 3, 2022 at 13:19
  • i already shared them in my question Commented Mar 3, 2022 at 15:07
  • can you please check my edit to the original question? Commented Mar 14, 2022 at 10:48

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.