OAuth2.0
webservice
authentication
Studio_Creatio
8.0
OAuth2.0 token from external IdP using client_credentials grant_type
Silvia
17:48 May 09, 2025

While configuring OAuth authentication to call external web services, I cannot find a way to set grant_type=client_credentials. Is there a way to make configuration use client_credentials instead of authorization_code grant_type?

I also tried to configure a web service to directly call the IdP access token endpoint passing the grant_type I need, but I was not able to find a way to send the body content-type in application/x-www-form-urlencoded format.

Do you have any suggestions to get the OAuth token using client_credentials?

Like 1

Like

0 comments
Show all comments
authentication
sql
Studio_Creatio
8.0
Change Server Authentication to Windows Authentication Mode
Ahmad Bagus Ariyanto
06:00 Feb 26, 2024

I changed the SQL Server Authentication settings to Windows Authentication Mode. But when I login to Creatio I get a Login Failed error.

What do I need to set in the Connection String?

 

Like 0

Like

1 comments
Kyrylo Atamanenko
14:07 Feb 26, 2024

Hello!

 

You can find more information about it here:

 

https://academy.creatio.com/docs/8.x/setup-and-administration/on-site-d…

 

https://academy.creatio.com/docs/8.x/setup-and-administration/on-site-d…

Show all comments
API
authentication
webservice
Sales_Creatio_enterprise_edition
8.0
Authentication without cookie
Robert Pordes
19:17 Jul 07, 2023

Hi community!

 

I have to integrate with a third-party tool that cannot send a request to the auth service and handle the cookies correctly.

 

Is there another method similar to webhooks using an API key in the URL or in the data itself?

 

Thanks in advance,

Robert

Like 1

Like

1 comments
Orkhan
21:22 Jul 10, 2023

Greetings, 

 

Possibly only through Oauth. 



Link to documentation: https://academy.creatio.com/docs/user/on_site_deployment/deployment_add…;



Best regards, 

Okrhan

Show all comments
authentication
Sales_Creatio_commerce_edition
7.18
Token-based authentication
Olga Anistratenko
12:12 Mar 15, 2023

Hello

Does anyone have any successful experience with authenticating to an external web service that only uses Token-based authentication?

I found a similar post, how the solution was proposed to be passed in the heder of the Authorization request: 

Authorization: Bearer .

Unfortunately, this method did not work. Please help me solve the problem

Like 0

Like

4 comments
Kalymbet Anastasia
19:41 Mar 15, 2023

Hello Olga,

 

Could you please clarify this question?

What difficulties arise?

Olga Anistratenko
14:23 Mar 16, 2023

Hello, Anastasia.

Now in the CRM - system only two methods of authentication are available - the basic and Auth 2.0, when setting up a web - service 

Only Token - based authentication is available for the web-service that we are trying to integrate with.

How can I configure Token - based authentication?

 

Olga Anistratenko
12:02 Mar 17, 2023

Hi,

I will try to describe the problem in more detail

In the documentation of the web service, in addition to Token-based authentication, there is a description of the authentication method based on OAuth 1.0a

Here is a successful request to Postman

 

When I tried to send the same request from Creatio (I copied the parameters from Postman), I get an error

 



 

Kalymbet Anastasia
18:19 Mar 17, 2023

Hello Olga,

 

Please review this video material, as it may assist you in implementing your task:

https://www.youtube.com/live/mHaGY1DxETw?feature=share&t=292

https://www.youtube.com/live/ehjfcBxpLsQ?feature=share&t=247

Show all comments
authentication
Settings
Service_Creatio_customer_center_edition
7.15
Error while loading content
Linar Aminev
13:53 Oct 17, 2022

Good day.

After authorization I get 401 error with loading https://[url]/0/conf/content/_FileContentBootstraps.js

There is file in the same folder _FileContentDescriptors.js which is loading also with problem.

Do you have any ideas what problem it is?

File attachments
Screenshot_1_2.png
Like 0

Like

2 comments
Ryan Farley
19:29 Oct 17, 2022

Just a guess, maybe the AppPool identity user does not have permissions for the folder?

Ryan

Cherednichenko Nikita
23:22 Oct 18, 2022

Hello,



Try to remove the static content and generate it again.



To do this, delete the \Terrasoft.WebApp\conf\content folder and start compilation.

Show all comments
Discussion
authentication
MFA for Creatio
Igor Sánchez Mata
13:17 Aug 03, 2022

Hi,

 

Nowadays that security is so important for all companies, it would be ideal to have a two-factor authentication system in Creatio.

It would be a great feature that many users would use.

1 comments
Bogdan
15:38 Aug 03, 2022

Hello Igor,

 

Thank you so much for your idea. We've registered it in our R&D team backlog for consideration and implementation in the future application releases

 

The currently supported authentication methods are listed in the Authentication Academy article. 



Best regards,

Bogdan

Show all comments
OAuth
OAuth2.0
web service
authentication
Studio_Creatio_enterprise_edition
7.18
Auth Code request URL is mandatory to set up OAuth 2.0 Authentication in web service
Pratik Sanghani
10:06 May 04, 2022

Hi Community,

 

I want to make use of and set up OAuth 2.0 Authentication in web service authentication. For that I found below the academy article :

 

https://academy.creatio.com/docs/user/no_code_customization/web_service…

 

While setting up as per the article, there is one required field in the OAuth Setting fields which is "Auth code request URL".

 

But the API endpoints for which, I have to make use of Web Service OAuth Authentication, is not having settings for Auth code request URL required parameter.

 

 

Please guide and help me on this point that how I can set up OAuth Authentication in web service without Auth code request URL.

Like 0

Like

1 comments
Bogdan
20:16 May 04, 2022

Hello Pratic,



Unfortunately, the is no way to set up OAuth Authentication in web service without Auth code request URL.



This parameter is necessary to identify users.



Best regards,

Bogdan



 

Show all comments
SSO
authentication
basicauthentication
Sales_Creatio
7.17
Authorization API send more than one Set-Cookie header
Anusha
22:41 Sep 11, 2021

From the /ServiceModel/AuthService.svc/Login authorization API respond with 4 Set-Cookie headers in the response. But according to the spec [https://datatracker.ietf.org/doc/html/rfc6265#section-4.1] , "Servers SHOULD NOT include more than one Set-Cookie header field in the same response with the same cookie-name."  From the client application, it can't get the all 4 header values, only first one retrievable. Could you please give a fix or suitable workaround for this.

Like 0

Like

2 comments
Best reply
Bogdan Lesyk
11:35 Sep 13, 2021

Hi Anusha, 

 

it's now allowed in HTTP/2 (https://datatracker.ietf.org/doc/html/rfc7540#section-8.1.2.5), which specifies: 

 

8.1.2.5.  Compressing the Cookie Header Field
 
   The Cookie header field [COOKIE] uses a semi-colon (";") to delimit
   cookie-pairs (or "crumbs").  This header field doesn't follow the
   list construction rules in HTTP (see [RFC7230], Section 3.2.2), which
   prevents cookie-pairs from being separated into different name-value
   pairs.  This can significantly reduce compression efficiency as
   individual cookie-pairs are updated.
 
   To allow for better compression efficiency, the Cookie header field
   MAY be split into separate header fields, each with one or more
   cookie-pairs.  If there are multiple Cookie header fields after
   decompression, these MUST be concatenated into a single octet string
   using the two-octet delimiter of 0x3B, 0x20 (the ASCII string "; ")
   before being passed into a non-HTTP/2 context, such as an HTTP/1.1
   connection, or a generic HTTP server application.
 
   Therefore, the following two lists of Cookie header fields are
   semantically equivalent.
 
     cookie: a=b; c=d; e=f
 
     cookie: a=b
     cookie: c=d
     cookie: e=f

Please also check out this article:

 

https://datatracker.ietf.org/doc/html/rfc6265#page-7

 

Best Regards, 

 

Bogdan L.

 

Bogdan Lesyk
11:35 Sep 13, 2021

Hi Anusha, 

 

it's now allowed in HTTP/2 (https://datatracker.ietf.org/doc/html/rfc7540#section-8.1.2.5), which specifies: 

 

8.1.2.5.  Compressing the Cookie Header Field
 
   The Cookie header field [COOKIE] uses a semi-colon (";") to delimit
   cookie-pairs (or "crumbs").  This header field doesn't follow the
   list construction rules in HTTP (see [RFC7230], Section 3.2.2), which
   prevents cookie-pairs from being separated into different name-value
   pairs.  This can significantly reduce compression efficiency as
   individual cookie-pairs are updated.
 
   To allow for better compression efficiency, the Cookie header field
   MAY be split into separate header fields, each with one or more
   cookie-pairs.  If there are multiple Cookie header fields after
   decompression, these MUST be concatenated into a single octet string
   using the two-octet delimiter of 0x3B, 0x20 (the ASCII string "; ")
   before being passed into a non-HTTP/2 context, such as an HTTP/1.1
   connection, or a generic HTTP server application.
 
   Therefore, the following two lists of Cookie header fields are
   semantically equivalent.
 
     cookie: a=b; c=d; e=f
 
     cookie: a=b
     cookie: c=d
     cookie: e=f

Please also check out this article:

 

https://datatracker.ietf.org/doc/html/rfc6265#page-7

 

Best Regards, 

 

Bogdan L.

 

Anusha
15:11 Sep 13, 2021

Bogdan Lesyk,

Thanks Bogdan. It was really helpfull, will check alternative way to process from the client API side.

Show all comments
webservice
authentication
http request
http
Studio_Creatio
7.17
Adding http header to web service call
Robert Pordes
16:03 Jun 14, 2021

Hi community!

 

I'm trying to set up a call to a web service (the built-in no-code approach), which uses a custom HTTP header for authentication called 'X-API-KEY'.

 

I haven't found a way to add a header to the web service via the UI. Is there some way to achieve this?

 

Thanks,

Robert

Like 0

Like

3 comments
Bogdan Lesyk
15:03 Jun 15, 2021

Hi Robert, 

 

Usually such operations is performed by using OData: 

 

https://academy.creatio.com/docs/developer/integrations_and_api/data_se…



https://documenter.getpostman.com/view/10204500/SztHX5Qb?version=latest

 

Please also check out this articles to find some useful tips: 

 

[Call web service] process element -

 

https://academy.creatio.com/docs/user/bpm_tools/process_elements_refere…

 

API Keys - 

 

https://swagger.io/docs/specification/authentication/api-keys/

 

 

Regards, 

 

Bogdan L.

 

 

 

Robert Pordes
16:02 Jun 23, 2021

Hi Bogdan,

thanks for the answer!

However, that's not quite what I was looking for ;)

 

I know of OData and how to use it. Unfortunately, the 3rd party service doesn't support it.

What I'm looking for is actually a way to add custom headers to HTTP requests when calling external web services via business processes.

 

I know I could use a script task and program it myself, but I was wondering if it also worked when using the standard web service integration.

 

Thanks,

Robert

Bogdan Lesyk
16:20 Jun 23, 2021

Robert Pordes,

 

Actually we don't have practical examples of such implementation. 

 

So in this case as you said you may use a script task to achieve required result. 

 

Probably the link of how to Run business process via web-service will be also useful for you:

 

https://academy.creatio.com/docs/developer/front-end_development/creati…

 

Thank you! 

 

Regards, 

 

Bogdan L.

Show all comments
OAuth
web service
authentication
7.17
Enable OAuth 2.0 authorization for custom configuration web services
M Shrikanth
17:16 May 20, 2021

Hello all,

 

I am trying to enable OAuth 2.0 authorization for configuration web services on a on-premises Creatio v7.17/MS SQL instance. I followed this article and got stuck at Point #3 (Creating default resource). Has anyone been able to enable OAuth 2.0 successfully?? Pls find below some details reg my use case - 

 

On trying to add a default resource from the Creatio GUI, we get an error. Ref "Error.png". There is no mention of having to change/fix 'IdentityServerClientId' and 'IdentityServerClientSecret' system settings in the Academy article. The article only mentions OAuth2.0 settings. I went ahead and set the same ClientId & ClientSecret in the above two system settings also. The same error continues.

 

I have attached a few files for your reference - 

  1. 'Error' log file.
  2. 'OAuth20' log file (It says [BadRequest] invalid_scope)
  3. appsettings.json file used to setup IdentityService.
  4. There is a console error which says Ext.JSON.decode is unable to decode the JSON string. However gives no info reg which JSON string it is speaking about. Ref "ConsoleError.png"
  5. Pls find below value of all relevant system settings - 
    1. OAuth20IdentityServerUrl & IdentityServerUrl - "http://localhost:90" (This is where IdentityService is hosted)
    2. OAuth20IdentityServerClientId & IdentityServerClientId - "bpmonline-designer"
    3. IdentityServerClientSecret & OAuth20IdentityServerClientSecret - "665b6f638c2da3ecc5d3a1868eb9352f6e01ee4a"
  6. Few other data points - 
    1. Creatio installation website is still on HTTP and not on HTTPS. 
    2. Identity service website supports both HTTP & HTTPS. But setting the HTTPS url as the Server URL errors out.
File attachments
ConsoleError.png
Error.png
Error.log_.txt.txt
OAuth20.log_.txt.txt
appsettings.json_.txt.txt
Like 0

Like

8 comments
Anastasiia Zhuravel
22:50 May 20, 2021

Hello, 

 

There are a few possible root causes of the issue and it's hard to tell the exact one only with the information provided and with no access to the instance. 

Please contact our support team via an email: support@creatio.com and submit the support request so we could check all the needed details. 



Thank you in advance!

Best regards, 

Anastasiia

M Shrikanth
09:48 May 21, 2021

Anastasiia Zhuravel,

Thanks Anastasiia. I have already done that

Mohamed Ouederni
15:16 May 31, 2021

M Shrikanth,

 

I have the same issue. Did you find any solution?

 

Thanks

Mohamed

M Shrikanth
15:21 May 31, 2021

Mohamed Ouederni,

No yet Mohammed. I have written to Creatio support and the issue is yet to be resolved. 

Robert Pordes
17:31 May 03, 2022

Hello,

I'm having the same issue, too...did you or creatio support find something out?

 

Thanks,

Robert

Jelenko Mršić
09:12 Aug 31, 2022

Hello together,

I have successfully configured OAuth 2.0 authorization on my localhost. I had the same error as you, to check ClientId and ClientSecret. After checking with Creatio support, the problem was in appsettings.json with Clients part of configuration. I have copied Client block of code from Step 10 of this article into appsettings.json (\"AllowedScopes\": part was missing) and after that successfully Generated default resource. Please try that and let us know if it worked. Thanks.

Bala Koteswarareddy
10:58 May 28, 2024

Getting the below error ,could you please help on this.

Bala Koteswarareddy
14:02 May 28, 2024

We are able to integrate.Just need a small change need to give  Authorization server Url for OAuth 2.0 integrations http://localhost:5000/
need to go to root dirctory of identityService and run dotnet IdentityService.dll in cmd or terminal

Show all comments
Subscribe to authentication