Setting up authentication
We offer multiple authentication methods ranging from basic auth to Oauth2. Although often used in the same sentence, authentication and authorization are not the same. Authorization happens after your identity has been authenticated (confirmed to be who you are) by an app. Thus, you are authorized to get access to data, files and the like.
In the side-menu of the app, click on ConnectorAuth to get to the authentication screen. Next click on the Add button in the upper left corner. Now you should see the below screen:
Select the Connector or Helper you want want to set auth up for - then:
- 1.Enter a Name that describes the Connector or Helper as well as the environment e.g. DEV, Production or the like.
- 2.Only enter an API Endpoint if the integration requires a subdomain or if you want to send request e.g. against an older version of the API. You can place the full URL of endpoints later in the FlowBuilder and don't have to do it here.
- 3.In the Auth Type drop down, depending on whether we offer one or both authentication methods, you will only see those auth types that we offer. For e.g. the Rest helper we offer both, but most likely you will need basic_auth
Let's suppose you select Slack. Enter the name and select oauth2 and then hit confirm:
Now you will be redirected to the Slack authentication screen that you may know from other apps. Review the content and click allow:
To setup basic auth for the REST Helper or CSV Helper, enter a name, select basic_auth and enter the full API token in the Auth token field.
If the token require a "Bearer " or "Basic " prefix enter it in full like this:
The auth details field is usually not needed. Should your authentication require user:password base64 encoded, please combine the user:password as described, base64 encode it someone on your Computer / Mac and then enter the base64 encoded string with the prefix like this:
Once all is entered, click Confirm and start using the Authentication in all of your automation flows. It is visible only on the Connector or Helper you set it up for.
For connectors, basic auth is setup in the same way as for helpers, but we do the base64 encoding for you and safe you some work.
E.g. for Zendesk, which requires a subdomain, Enter the full domain including subdomain and trailing slash like:
Next enter the user-email associated to the Zendesk account in Auth Details.
Then enter your API-token non base64 encoded as it is. Locoia does the base64 encoding for you in the background.
Finally, hit confirm and start using the authentication in your flows in the FlowBuilder. It is visible only on the Connector or Helper you set it up for.
You can use authentication with a private SSH key together with a sFTP connection via the FTP Helper. When setting up a new Connector Auth for the FTP Helper, you simply have to change the Auth Type to private_ssh_key:
Changing the Auth Type for the FTP Helper
You then have to enter your username and upload the private key file.
Should an API, e.g. the Dropbox API has
api.dropbox.comfor regular API-calls and
content.dropbox.comfor all file-related API calls, have two endpoints, please create two Connector Auths, one for each endpoint. This allows you to have individual Base-Domains per each endpoint.
Locoia stores authentication details, such as API keys, passwords or refresh tokens, for its users in order to connect to the respective systems on their behalf once users build flows and use those authentications.
First, authentication details are encrypted on the application level before they are stored in our database. Secondly, our database and all its content is additionally encrypted.
No authentication details can be extracted in any way, other than using them as part of a request to the respective systems they are intended for as per Locoia's users.
This means no one, besides the system receiving the request, can see your credentials such as API key or passwords.