Authentication methods and REST connectors
Overview
There are two types of connectors (Easy REST and Custom) as described at Creating connectors.
Note that the preferred choice when creating connectors is Easy REST, and therefore it is important that you consider the authentication methods supported by this type of connectors.
Supported authentication methods
Easy REST connectors use predefined authentication standards for the login of your connector in the external system you want to connect with.
Methods from these standards can be selected when creating the connector from the Connector Editor.
On the other hand, for Custom connectors, the authentication mechanism needs to be coded by the author creating that connector (and can use any type of authentication beyond those supported by the Easy REST one).
The authentication methods supported by Easy REST Connectors are:
- Basic
The typical HTTP basic authentication using a username and password. - Digest
Similar to basic authentication but adds encryption features for the password. - OAuth 2.0
A protocol oriented to cloud services, which considers authorization aspects. Bizagi Easy REST connectors support these grant types:- Client credentials grant.
- Resource owner password.
Additional grant types need to be approached via a Custom connector.
Note:
Regardless of the authentication method, Bizagi connectors support responses from external systems in a JSON format (XML-based responses are not supported).
When to create a Custom connector?
Refer to the following table to help you plan if you need to create an Easy REST connector or if some of your requirements already demand a Custom connector.
| Question | Easy REST | Custom |
|---|---|---|
| Will my connector consume services other than those based on a RESTful architecture? | ✖ | ✔ |
| Will my connector use OAuth 2.0 with other sub-types than 'Client Credentials Grant' or 'Resource Owner Password'? | ✖ | ✔ |
| Will my connector require the use of external libraries? | ✖ | ✔ |
| Will my connector require different actions than POST/GET/PUT/DELETE? | ✖ | ✔ |
| Do I need to execute logic operations within the connector? | ✖ | ✔ |
Authentication methods configuration
Within your Easy REST connector, each action can be configured with a different authentication method. To do these configurations, consider the following:
- When you create a new action in your connector, go to the Authorization tab and select any of the available authentication methods.
Every time that you create a new action, you can select the authentication method that suits the action.
Note:
You may select any authentication method for each action (or none at all). If you download a connector from the Connector Xchange, the actions will not have an authentication method configured. Hence, you will need to configure each action's authentication method before using the connector.
- When installing and configuring your connector in Bizagi Studio, make sure you select from the dropdown list the corresponding authentication method.
Note:
When using more than one authentication method within your actions, you will need to create a new configuration instance for that connector per each authentication method you want to use.
- Finally, provide the values for the parameters that are prompted for that given type of authentication. The exact parameters will depend on each authentication method.
Refer to the following images to view the common parameters used by each authentication method:
Basic Authentication
Basic authentication typically uses a username and password:
Digest Authentication
Digest authentication typically uses a username and password:
OAuth2 Authentication
OAuth2 authentication uses different parameters according to its sub-type of authentication:
-
Client credentials grant:
-
Resource owner credentials grant:
Multi-environment credentials
Note that you may provide different values for authentication parameters in each of the different environments (development, test, and production) by switching between tabs.
It is not necessary to input details for test and production environments right away because you can edit or fill out blanks at any moment (if you do not have the intention to deploy your process at this point).
