cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
cagee
Frequent Visitor

Delete webhook sends different Authorization header than Post (creating webhook)

I am building a custom connector. The security is set to API Key type, which sends a token that user gets in our application. Everything works fine but the problem is on delete webhook action a different type of API key is sent in the authorization header. 

According to documentation here: 
https://docs.microsoft.com/en-us/connectors/custom-connectors/create-webhook-trigger

"No aditional header is included for the delete webhook call. The same connection used in the connector is also used for the delete webhook call."

The Authotization header in post:
Screenshot 2021-04-12 150353.png

We expect the same type of Auth in delete too but this is what we receive:

Screenshot 2021-04-12 150513.png

 

We are supposed to receive the same authorization header as post action right? But as you can see a different key is sent. What are we doing wrong?
Here is the swagger parts for post and delete: 

 

/hook/:
    x-ms-notification-content:
      schema:
        type: object
        x-ms-dynamic-schema:
          parameters:
            schemaType: {parameter: eventPath}
          operationId: GetSchema
          value-path: schema
        x-ms-dynamic-properties:
          parameters:
            schemaType: {parameterReference: eventPath}
          operationId: GetSchema
          itemValuePath: schema
      description: Schema of the webhook payload from Assently
    post:
      responses:
        '201': {description: Created}
      summary: Case trigger event 2
      description: 'Trigger when:'
      operationId: CaseEventTrigger
      x-ms-trigger: single
      parameters:
      - {$ref: '#/parameters/eventPath_in_query'}
      - name: body
        in: body
        required: false
        schema:
          type: object
          properties:
            callbackUrl: {type: string, description: callbackUrl, x-ms-notification-url: true,
              x-ms-visibility: internal, title: ''}
          required: [callbackUrl]
  /hook/{hookId}:
    delete:
      description: Deletes a webhook
      operationId: DeleteTrigger
      parameters:
      - {name: hookId, in: path, description: ID of the Hook being deleted, required: true,
        x-ms-url-encoding: single, type: string}
      responses:
        '200': {description: Ok}
      summary: Deletes a webhook
      x-ms-visibility: internal

 

 

1 ACCEPTED SOLUTION

Accepted Solutions
cagee
Frequent Visitor

We finally found out that the problem was the delete url that we sent by Location header had been resolving by http. Fixing it to https solved the problem and we receive the expected token. Make sure your delete url is https. 

View solution in original post

6 REPLIES 6

Can you test the delete method just by creating an action to delete an existing webhook? Please make sure the location matches delete action.

 

"In order for Logic Apps or Power Automate to delete a webhook, the API must include a Location HTTP header in the 201 response at the time the webhook is created. The Location header should contain the path to the webhook that is used with the HTTP DELETE. For example, the Location included with GitHub's response follows this format: https://api.github.com/repos/ <user name>/<repo name>/hooks/<hook ID>."

 

If this reply answers your question or solves your issue, please ACCEPT AS SOLUTION ☑️. If you find this reply helpful, please consider giving it a LIKE 👍.

we are sending the location header, that's why we receive the delete request in our API that I've shared the Authorization header screenshot of it . When I test the action in Test tab of the connector, everything is fine. We receive the key of user's connection and the custom header that we have set as policy to be sent on requests. But when we delete a flow a different type of Authorization header is sent and also the custom header is missing.

cagee
Frequent Visitor

We finally found out that the problem was the delete url that we sent by Location header had been resolving by http. Fixing it to https solved the problem and we receive the expected token. Make sure your delete url is https. 

nhance
Advocate II
Advocate II

This issue is still occurring not due to scheme.

We're seeing the same `Key` authorization header in the DELETE request, but all other requests operate correctly using the authentication method defined in the connector.

 

Our security type is BASIC authentication for our connector.

 

This feels like a possible security concern, as the credentials passed to the DELETE are not for our application. 

 

@murshed @Amjed-Ayoub 

 

Seeing a 401 response for only the DELETE request:

 

[25/Apr/2022:20:22:44 +0000] "DELETE /webhooks/18 HTTP/1.0" 401 615 "-" "azure-logic-apps/1.0 (workflow d9e2faa860124504aa713d81c66b4d8d; version 08585506906287617235) microsoft-flow/1.0"

 

Here's a sample of the key we're getting:

 

Key eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6IktIZlFMRXBEelpLVTEyRFpYWmtIejYxdjRPZyJ9.eyJ0cyI6IjU4ODVm[REDACTED FOR SECURITY]TeQdcoR6vw'

Did you ever find a solution to this? I'm experiencing the same issue. The Authorization: Key ... value comes out of nowhere and incompatible with our authentication setup. When I allow anonymous to my service, it does its perfectly. But that, unfortunately, is completely unacceptable and we need the connector's API key passed to our service instead of this seemingly random token.

Helpful resources

Announcements

Community will be READ ONLY July 16th, 5p PDT -July 22nd

Dear Community Members,   We'd like to let you know of an upcoming change to the community platform: starting July 16th, the platform will transition to a READ ONLY mode until July 22nd.   During this period, members will not be able to Kudo, Comment, or Reply to any posts.   On July 22nd, please be on the lookout for a message sent to the email address registered on your community profile. This email is crucial as it will contain your unique code and link to register for the new platform encompassing all of the communities.   What to Expect in the New Community: A more unified experience where all products, including Power Apps, Power Automate, Copilot Studio, and Power Pages, will be accessible from one community.Community Blogs that you can syndicate and link to for automatic updates. We appreciate your understanding and cooperation during this transition. Stay tuned for the exciting new features and a seamless community experience ahead!

Summer of Solutions | Week 4 Results | Winners will be posted on July 24th

We are excited to announce the Summer of Solutions Challenge!    This challenge is kicking off on Monday, June 17th and will run for (4) weeks.  The challenge is open to all Power Platform (Power Apps, Power Automate, Copilot Studio & Power Pages) community members. We invite you to participate in a quest to provide solutions to as many questions as you can. Answers can be provided in all the communities.    Entry Period: This Challenge will consist of four weekly Entry Periods as follows (each an “Entry Period”)   - 12:00 a.m. PT on June 17, 2024 – 11:59 p.m. PT on June 23, 2024 - 12:00 a.m. PT on June 24, 2024 – 11:59 p.m. PT on June 30, 2024 - 12:00 a.m. PT on July 1, 2024 – 11:59 p.m. PT on July 7, 2024 - 12:00 a.m. PT on July 8, 2024 – 11:59 p.m. PT on July 14, 2024   Entries will be eligible for the Entry Period in which they are received and will not carryover to subsequent weekly entry periods.  You must enter into each weekly Entry Period separately.   How to Enter: We invite you to participate in a quest to provide "Accepted Solutions" to as many questions as you can. Answers can be provided in all the communities. Users must provide a solution which can be an “Accepted Solution” in the Forums in all of the communities and there are no limits to the number of “Accepted Solutions” that a member can provide for entries in this challenge, but each entry must be substantially unique and different.    Winner Selection and Prizes: At the end of each week, we will list the top ten (10) Community users which will consist of: 5 Community Members & 5 Super Users and they will advance to the final drawing. We will post each week in the News & Announcements the top 10 Solution providers.  At the end of the challenge, we will add all of the top 10 weekly names and enter them into a random drawing.  Then we will randomly select ten (10) winners (5 Community Members & 5 Super Users) from among all eligible entrants received across all weekly Entry Periods to receive the prize listed below. If a winner declines, we will draw again at random for the next winner.  A user will only be able to win once overall. If they are drawn multiple times, another user will be drawn at random.  Individuals will be contacted before the announcement with the opportunity to claim or deny the prize.  Once all of the winners have been notified, we will post in the News & Announcements of each community with the list of winners.   Each winner will receive one (1) Pass to the Power Platform Conference in Las Vegas, Sep. 18-20, 2024 ($1800 value). NOTE: Prize is for conference attendance only and any other costs such as airfare, lodging, transportation, and food are the sole responsibility of the winner. Tickets are not transferable to any other party or to next year’s event.   ** PLEASE SEE THE ATTACHED RULES for this CHALLENGE**   Week 1 Results: Congratulations to the Week 1 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge.   Community MembersNumber SolutionsSuper UsersNumber Solutions Deenuji 9 @NathanAlvares24  17 @Anil_g  7 @ManishSolanki  13 @eetuRobo  5 @David_MA  10 @VishnuReddy1997  5 @SpongYe  9JhonatanOB19932 (tie) @Nived_Nambiar  8 @maltie  2 (tie)   @PA-Noob  2 (tie)   @LukeMcG  2 (tie)   @tgut03  2 (tie)       Week 2 Results: Congratulations to the Week 2 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 2: Community MembersSolutionsSuper UsersSolutionsPower Automate  @Deenuji  12@ManishSolanki 19 @Anil_g  10 @NathanAlvares24  17 @VishnuReddy1997  6 @Expiscornovus  10 @Tjan  5 @Nived_Nambiar  10 @eetuRobo  3 @SudeepGhatakNZ 8     Week 3 Results: Congratulations to the Week 3 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 3:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji32ManishSolanki55VishnuReddy199724NathanAlvares2444Anil_g22SudeepGhatakNZ40eetuRobo18Nived_Nambiar28Tjan8David_MA22   Week 4 Results: Congratulations to the Week 4 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 4:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji11FLMike31Sayan11ManishSolanki16VishnuReddy199710creativeopinion14Akshansh-Sharma3SudeepGhatakNZ7claudiovc2CFernandes5 misc2Nived_Nambiar5 Usernametwice232rzaneti5 eetuRobo2   Anil_g2   SharonS2  

Check Out | 2024 Release Wave 2 Plans for Microsoft Dynamics 365 and Microsoft Power Platform

On July 16, 2024, we published the 2024 release wave 2 plans for Microsoft Dynamics 365 and Microsoft Power Platform. These plans are a compilation of the new capabilities planned to be released between October 2024 to March 2025. This release introduces a wealth of new features designed to enhance customer understanding and improve overall user experience, showcasing our dedication to driving digital transformation for our customers and partners.    The upcoming wave is centered around utilizing advanced AI and Microsoft Copilot technologies to enhance user productivity and streamline operations across diverse business applications. These enhancements include intelligent automation, AI-powered insights, and immersive user experiences that are designed to break down barriers between data, insights, and individuals. Watch a summary of the release highlights.    Discover the latest features that empower organizations to operate more efficiently and adaptively. From AI-driven sales insights and customer service enhancements to predictive analytics in supply chain management and autonomous financial processes, the new capabilities enable businesses to proactively address challenges and capitalize on opportunities.    

Updates to Transitions in the Power Platform Communities

We're embarking on a journey to enhance your experience by transitioning to a new community platform. Our team has been diligently working to create a fresh community site, leveraging the very Dynamics 365 and Power Platform tools our community advocates for.  We started this journey with transitioning Copilot Studio forums and blogs in June. The move marks the beginning of a new chapter, and we're eager for you to be a part of it. The rest of the Power Platform product sites will be moving over this summer.   Stay tuned for more updates as we get closer to the launch. We can't wait to welcome you to our new community space, designed with you in mind. Let's connect, learn, and grow together.   Here's to new beginnings and endless possibilities!   If you have any questions, observations or concerns throughout this process please go to https://aka.ms/PPCommSupport.   To stay up to date on the latest details of this migration and other important Community updates subscribe to our News and Announcements forums: Copilot Studio, Power Apps, Power Automate, Power Pages

Users online (834)