integration-service

latest

false

Getting started
- Introduction
- Connectors
- Connections
- Triggers
Notifications
- About notifications
- Exploring notifications
- Managing notifications
Licensing
- Overview
- Monitoring API usage
- Frequently asked questions
Troubleshooting
- Connections
- Triggers
- Auto-enabling personal workspaces
Connector Builder
- About Connector Builder
- Building your first connector
- Building your connector from an API definition
- Configuring the authentication
- Using variables in Connector Builder
- Activity designer
- Creating a trigger
- Publishing your connector
  - Quality guidelines for custom connectors
  - Publishing
Act! 365
- About the Act! 365 connector
- Act! 365 authentication
- Act! 365 events
ActiveCampaign
- About the ActiveCampaign connector
- Active Campaign authentication
- ActiveCampaign events
Active Directory - Preview
- About the Active Directory connector
- Active Directory authentication
Adobe Acrobat Sign
- About the Adobe Acrobat Sign connector
- Adobe Acrobat Sign authentication
Adobe PDF Services
- About the Adobe PDF Services connector
- Adobe PDF Services authentication
Amazon Bedrock
- About the Amazon Bedrock connector
- Amazon Bedrock authentication
Amazon Connect
- About the Amazon Connect connector
- Amazon Connect authentication
Amazon Polly
- About the Amazon Polly connector
- Amazon Polly authentication
Amazon SES
- About the Amazon SES connector
- Amazon SES authentication
Amazon Transcribe
- About the Amazon Transcribe connector
- Amazon Transcribe authentication
Amazon Web Services
- About the Amazon Web Services connector
- Amazon Web Services authentication
Anthropic Claude
- About the Anthropic Claude connector
- Anthropic Claude authentication
Asana
- About the Asana connector
- Asana authentication
- Asana events
AWeber
- About the AWeber connector
- AWeber authentication
Azure AI Document Intelligence
- About the Azure AI Document Intelligence connector
- Azure AI Document Intelligence authentication
Azure Maps
- About the Azure Maps connector
- Azure Maps authentication
BambooHR
- About the BambooHR connector
- BambooHR authentication
- BambooHR events
Box
- About the Box connector
- Box authentication
- Box events
Brevo
- About the Brevo connector
- Brevo authentication
- Brevo events
Calendly
- About the Calendly connector
- Calendly authentication
Campaign Monitor
- About the Campaign Monitor connector
- Campaign Monitor authentication
Cisco Webex Teams
- About the Cisco Webex Teams connector
- Cisco Webex Teams authentication
Citrix Hypervisor
- About the Citrix Hypervisor connector
- Citrix Hypervisor authentication
Citrix ShareFile
- About the Citrix ShareFile connector
- Citrix ShareFile authentication
Clearbit
- About the Clearbit connector
- Clearbit authentication
Confluence Cloud
- About the Confluence Cloud connector
- Confluence Cloud authentication
- Confluence Cloud events
Constant Contact
- About the Constant Contact connector
- Constant Contact authentication
- Constant Contact events
Coupa
- About the Coupa connector
- Coupa authentication
- Coupa events
Customer.io
- About the Customer.io connector
- Customer.io authentication
Datadog
- About the Datadog connector
- Datadog authentication
- Datadog events
Deputy
- About the Deputy connector
- Deputy authentication
- Deputy events
Discord
- About the Discord connector
- Discord authentication
DocuSign
- About the DocuSign connector
- DocuSign authentication
- DocuSign events
- DocuSign basic concepts
Drip
- About the Drip connector
- Drip authentication
Dropbox
- About the Dropbox connector
- Dropbox authentication
- Dropbox events
Dropbox Business
- About the Dropbox Business connector
- Dropbox Business authentication
- Dropbox Business events
Egnyte
- About the Egnyte connector
- Egnyte authentication
- Egnyte events
Eventbrite
- About the Eventbrite connector
- Eventbrite authentication
Exchangerates
- About the Exchangerates connector
- Exchangerates authentication
Exchange Server - Preview
- About the Exchange Server connector
- Exchange Server authentication
Expensify
- About the Expensify connector
- Expensify authentication
- Expensify events
Facebook
- About the Facebook connector
- Facebook authentication
Freshbooks
- About the Freshbooks connector
- Freshbooks authentication
- Freshbooks events
Freshdesk
- About the Freshdesk connector
- Freshdesk authentication
- Freshdesk events
Freshsales
- About the Freshsales connector
- Freshsales authentication
- Freshsales events
Freshservice
- About the Freshservice connector
- Freshservice authentication
- Freshservice events
GetResponse
- About the GetResponse connector
- GetResponse authentication
GitHub
- About the GitHub connector
- GitHub authentication
- GitHub events
Gmail
- About the Gmail connector
- Gmail authentication
- Gmail events
Google Cloud Platform
- About the Google Cloud Platform connector
- Google Cloud Platform authentication
Google Docs
- About the Google Docs connector
- Google Docs authentication
- Google Docs events
Google Drive
- About the Google Drive connector
- Google Drive authentication
- Google Drive events
Google Maps
- About the Google Maps connector
- Google Maps authentication
Google Sheets
- About the Google Sheets connector
- Google Sheets authentication
- Google Sheets events
Google Speech-to-Text
- About the Google Speech-to-Text connector
- Google Speech-to-Text authentication
Google Text-to-Speech
- About the Google Text-to-Speech connector
- Google Text-to-Speech authentication
Google Tasks - Preview
- About the Google Tasks connector
- Google Tasks authentication
- Google Tasks events
Google Vertex
- About the Google Vertex connector
- Google Vertex authentication
Google Vision - Preview
- About the Google Vision connector
- Google Vision authentication
Google Workspace
- About the Google Workspace connector
- Google Workspace authentication
GoToWebinar
- About the GoToWebinar connector
- GoToWebinar authentication
Greenhouse
- About the Greenhouse connector
- Greenhouse authentication
- Greenhouse events
Hootsuite
- About the Hootsuite connector
- Hootsuite authentication
HTTP Webhook - Preview
- About the HTTP Webhook connector
- Using the Webhook connector
- Monitoring
Hubspot CRM
- About the Hubspot CRM connector
- HubSpot CRM authentication
- HubSpot CRM events
HubSpot Marketing
- About the HubSpot Marketing connector
- HubSpot Marketing authentication
- HubSpot Marketing events
HyperV - Preview
- About the HyperV connector
- HyperV authentication
Icertis - Preview
- About the Icertis connector
- Icertis authentication
iContact
- About the iContact connector
- iContact authentication
- iContact events
Insightly CRM
- About the Insightly CRM connector
- Insightly CRM authentication
- Insightly CRM events
Intercom
- About the Intercom connector
- Intercom authentication
Jina.ai
- About the Jina.ai connector
- Jina.ai authentication
Jira
- About the Jira connector
- Jira authentication
- Jira events
Keap
- About the Keap connector
- Keap authentication
- Keap events
Klaviyo
- About the Klaviyo connector
- Klaviyo authentication
- Klaviyo events
LinkedIn
- About the LinkedIn connector
- LinkedIn authentication
Mail - Preview
- About the Mail connector
- Mail authentication
Mailchimp
- About the Mailchimp connector
- Mailchimp authentication
- Mailchimp events
Mailgun
- About the Mailgun connector
- Mailgun authentication
Mailjet
- About the Mailjet connector
- Mailjet authentication
- Mailjet events
MailerLite
- About the MailerLite connector
- MailerLite authentication
Marketo
- About the Marketo connector
- Marketo authentication
- Marketo events
Microsoft 365
- About the Microsoft 365 connector
- Microsoft 365 authentication
Microsoft Azure
- About the Microsoft Azure connector
- Microsoft Azure authentication
Microsoft Azure Active Directory
- About the Microsoft Azure Active Directory connector
- Microsoft Azure Active Directory authentication
Microsoft Azure OpenAI
- About the Microsoft Azure OpenAI connector
- Microsoft Azure OpenAI authentication
Microsoft Dynamics 365 CRM
- About the Microsoft Dynamics 365 CRM connector
- Microsoft Dynamics 365 CRM authentication
- Microsoft Dynamics 365 CRM events
Microsoft OneDrive & Sharepoint
- About the Microsoft OneDrive & SharePoint connector
- Microsoft OneDrive & SharePoint authentication
- Microsoft OneDrive & SharePoint events
Microsoft Outlook 365
- About the Microsoft Outlook 365 connector
- Microsoft Outlook 365 authentication
- Microsoft Outlook 365 events
Microsoft Sentiment
- About the Microsoft Sentiment connector
- Microsoft Sentiment authentication
Microsoft Teams
- About the Microsoft Teams connector
- Microsoft Teams authentication
- Microsoft Teams events
Microsoft Translator
- About the Microsoft Translator connector
- Microsoft Translator authentication
Microsoft Vision
- About the Microsoft Vision connector
- Microsoft Vision authentication
Miro
- About the Miro connector
- Miro authentication
NetIQ eDirectory
- About the NetIQ eDirectory connector
- NetIQ eDirectory authentication
Okta
- About the Okta connector
- Okta authentication
OpenAI
- About the OpenAI connector
- OpenAI authentication
Oracle Eloqua
- About the Oracle Eloqua connector
- Oracle Eloqua authentication
- Oracle Eloqua events
Oracle NetSuite
- About the Oracle NetSuite connector
- Oracle Netsuite authentication
- Oracle Netsuite events
PagerDuty
- About the PagerDuty connector
- PagerDuty authentication
- PagerDuty events
PayPal
- About the PayPal connector
- PayPal authentication
- PayPal events
PDFMonkey
- About the PDFMonkey connector
- PDFMonkey authentication
- PDFMonkey events
Pinecone
- About the Pinecone connector
- Pinecone authentication
Pipedrive
- About the Pipedrive connector
- Pipedrive authentication
- Pipedrive events
QuickBooksOnline
- About the QuickBooksOnline connector
- QuickBooksOnline authentication
- QuickBooksOnline events
Quip
- About the Quip connector
- Quip authentication
Salesforce
- About the Salesforce connector
- Salesforce authentication
- Salesforce events
Salesforce Marketing Cloud
- About the Salesforce Marketing Cloud connector
- Salesforce Marketing Cloud authentication
SAP BAPI
- About the SAP BAPI connector
- SAP BAPI authentication
SAP Cloud for Customer
- About the SAP Cloud for Customer Connector
- SAP Cloud for Customer Authentication
- SAP Cloud for Customer events
SAP Concur
- About the SAP Concur Connector
- SAP Concur authentication
- SAP Concur events
SAP OData - Preview
- About the SAP OData connector
- SAP OData authentication
SendGrid
- About the SendGrid connector
- SendGrid authentication
ServiceNow
- About the ServiceNow connector
- ServiceNow authentication
- ServiceNow events
Shopify
- About the Shopify connector
- Shopify authentication
- Shopify events
Slack
- About the connector for Slack
- Authentication for Slack
- Slack events
SmartRecruiters
- About the SmartRecruiters connector
- SmartRecruiters authentication
- SmartRecruiters events
Smartsheet
- About the Smartsheet connector
- Smartsheet authentication
- Smartsheet events
Snowflake
- About the Snowflake connector
- Snowflake authentication
- Snowflake events
Stripe
- About the Stripe connector
- Stripe authentication
Sugar Enterprise
- About the Sugar Enterprise connector
- Sugar Enterprise authentication
- Sugar Enterprise events
Sugar Professional
- About the Sugar Professional connector
- Sugar Professional authentication
- Sugar Professional events
Sugar Sell
- About the Sugar Sell connector
- Sugar Sell authentication
- Sugar Sell events
Sugar Serve
- About the Sugar Serve connector
- Sugar Serve authentication
- Sugar Serve events
System Center - Preview
- About the System Center connector
- System Center authentication
TangoCard
- About the TangoCard connector
- TangoCard authentication
- TangoCard events
Todoist
- About the Todoist connector
- Todoist authentication
- Todoist events
Trello
- About the Trello connector
- Trello authentication
Twilio
- About the Twilio connector
- Twilio authentication
- Twilio events
UiPath GenAI Activities
- About the UiPath GenAI Activities connector
X (formerly Twitter)
- About the X connector
- X authentication
Xero
- About the Xero connector
- Xero authentication
- Xero events
watsonx.ai
- About the watsonx.ai connector
- watsonx.aiauthentication
WhatsApp Business
- About the WhatsApp Business connector
- WhatsApp Business authentication
WooCommerce
- About the WooCommerce connector
- WooCommerce authentication
- WooCommerce events
Workable
- About the Workable connector
- Workable authentication
- Workable events
Workday
- About the Workday connector
- Workday authentication
  - Prerequisites for creating a connection to Workday
- Workday events
Workday REST
- About the Workday REST connector
- Workday REST authentication
- Workday REST events
VMware ESXi vSphere
- About the VMWare ESXi vSphere connector
- VMware ESXi vSphere authentication
YouTube
- About the YouTube connector
- YouTube authentication
Zendesk
- About the Zendesk connector
- Zendesk authentication
- Zendesk events
Zoho Campaigns
- About the Zoho Campaigns connector
- Zoho Campaigns authentication
Zoho Desk
- About the Zoho Desk connector
- Zoho Desk authentication
- Zoho Desk events
Zoho Mail
- About the Zoho Mail connector
- Zoho Mail authentication
- Zoho Mail events
Zoom
- About the Zoom connector
- Zoom authentication
- Zoom events
ZoomInfo
- About the ZoomInfo connector
- ZoomInfo authentication

Integration Service User Guide

DELIVERY:

Automation Cloud Automation Cloud Public Sector Automation Suite

Last updated Dec 10, 2024

Icertis authentication

This connector supports two authentication types:

OAuth 2.0 Authorization code (default)
API key

OAuth 2.0 Authorization code

OAuth 2.0 Authorization code is the default authentication type for the Icertis connector. It is based on setting up an OAuth 2.0 application in Microsoft Azure.

Prerequisites

To use OAuth 2.0 Authorization code authentication, you need:

A valid license or subscription for the Icertis Contract Intelligence (ICI) Platform.
A valid license or subscription for Microsoft Azure.

Authorization flow

The OAuth 2.0 Authorization code authentication method uses the following authorization flow:

The client application requests a JWT access token for the ICI API from the Azure authorization server.
The Azure token issuance endpoint validates the credentials and issues the JWT access token for the ICI API.
Over HTTPS, the client application uses the returned JWT access token to add the JWT string with a Bearer designation in the Authorization header of the request to the ICI API.
ICI’s token validation handler validates the access token with the Azure authorization server.
If the token validation is successful, ICI sets up the user context based on a particular claim type value mapped against a user in the ICI repository and returns the desired resource accordingly. This user can be a service or an application user.

The authorization flow between the ICI API and Azure

Configuring an application in Microsoft Azure

Take the following steps to configure an ICI application in Azure.

Login to the Microsoft Azure portal at https://portal.azure.com/. From the home page, select App registrations.
In the App registrations page, select New registration.
In the Register an application window, provide the following details for the new app:
1. Name: ICM API, for example.
2. Supported account types: select Accounts in this organizational directory only (Single tenant).
3. Provide the following Web Redirect URI: https://cloud.uipath.com/provisioning_/callback
4. Select Register. The new application is now available in the App registration – Owned applications tab.
Select your app from the App registrations page. The Manage section includes tabs such as Authentication, Certificates & secrets, API permissions etc. You can further configure the application using these sections.
In the Authentication tab, you can add a new redirect URI or edit the existing one. Under Implicit grant, select Access tokens. This enables the implicit grant flow and selects the token type you want to be issued by the authorization token.
Next, under Certificates & secrets, select New client secret. In the new window, add the client secret Description (for example: "ICM API secret which will be used for Access Tokens") and select the expiry date (for example, one year). Select Add to create the new secret.
Copy the client secret. Do not share this secret publicly and store it a secure location. You will not be able to retrieve it again later.
Under Expose an API, select the Set button next to Application ID URI. A form is displayed, with a default value already generated. Click Save to save it. The Application ID URI uses the following format: api://{Client ID}.
Your Azure application is now set up with default scopes and grant types. If you want to add custom scopes, under Expose an API, select Add a scope. Configure the new scope, then select Add scope.

Send the application details to Icertis

Once you create your application, contact your Icertis admin and provide them with the following details for both your development and production environments:

Required app details	Details	Comments
Application (client) ID	Dev: [Customer to provide] Production: [Customer to provide]	Application ID for the app created for accessing the ICI APIs
Directory (tenant) ID	Dev: [Customer to provide] Production: [Customer to provide]	Tenant ID for the app created for accessing the ICI APIs
Object ID	Dev: [Customer to provide] Production: [Customer to provide]	Object ID for the app created for accessing the ICI APIs
OpenID Connect metadata document	Dev: [Customer to provide] Production: [Customer to provide]	Metadata document URL for the app created for accessing the ICI APIs

ICI configuration

In the ICI Platform, you need a minimum configuration setup to get started.

Add or update the following keys in the tenant.json file of the ICI application with the help of your Icertis developer team:

Key	Value	JSON value
`Core.API.OAuth.STSDiscoveryEndpoint`	`https://login.microsoftonline.com/{Directory (tenant) ID}/v2.0/.well-known/openid-configuration`	`{ "Id": "1033c3c0-6bf2-4a93-b813-c3ba42a199b3", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": "https://login.microsoftonline.com/{Directory (tenant) ID}/v2.0/.well-known/openid-configuration", "Description": "STS Discovery Endpoint URL", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.STSDiscoveryEndpoint" }`{ "Id": "1033c3c0-6bf2-4a93-b813-c3ba42a199b3", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": "https://login.microsoftonline.com/{Directory (tenant) ID}/v2.0/.well-known/openid-configuration", "Description": "STS Discovery Endpoint URL", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.STSDiscoveryEndpoint" }
`Core.API.OAuth.ValidAudiences`	`api://{Client ID}`	`{ "Id": "94c37b1b-2fb1-4f4e-a3de-6796279031e6", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": " api://{Client ID}", "Description": "Comma separated list of valid audiences", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ValidAudiences" }`{ "Id": "94c37b1b-2fb1-4f4e-a3de-6796279031e6", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": " api://{Client ID}", "Description": "Comma separated list of valid audiences", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ValidAudiences" }
`Core.API.OAuth.ValidIssuer`	`https://sts.windows.net/{Directory (tenant) ID}/`	`{ "Id": "d469b34c-f89f-42bb-934a-7ee4ef298130", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": "https://sts.windows.net/{Directory (tenant) ID}/", "Description": "OAuth Token issuer", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ValidIssuer" }`{ "Id": "d469b34c-f89f-42bb-934a-7ee4ef298130", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089", "Value": "https://sts.windows.net/{Directory (tenant) ID}/", "Description": "OAuth Token issuer", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ValidIssuer" }
`Core.API.OAuth.ExternalUpnClaimUri`	`http://schemas.microsoft.com/identity/claims/objectidentifier`	`{ "Id": "1e783a54-b564-4748-a088-c04e8e05ab46", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089”, "Value":"http://schemas.microsoft.com/identity/claims/objectidentifier", "Description": "URL of the Claim to be used to uniquely identify user in ICI", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ExternalUpnClaimUri" }`{ "Id": "1e783a54-b564-4748-a088-c04e8e05ab46", "IsEncrypted": false, "OverrideType": "Overridable", "ValueType": "System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089”, "Value":"http://schemas.microsoft.com/identity/claims/objectidentifier", "Description": "URL of the Claim to be used to uniquely identify user in ICI", "DefaultValue": null, "IsReadOnly": false, "ErrorMessageDescription": null, "Name": "Core.API.OAuth.ExternalUpnClaimUri" }

Where:

Core.API.OAuth.STSDiscoveryEndpoint is the OpenID Connect metadata document value found in App registration > Overview > Endpoints.
Core.API.OAuth.ValidAudiences is the Application ID URI found in App registration > Overview.
Core.API.OAuth.ValidIssuer is the standard claim value obtained from the combination of the iss URL and the directory (tenant) ID. The iss URL is https://sts.windows.net and the directory (tenant) ID is available in App registration > Overview.
Core.API.OAuth.ExternalUpnClaimUri is the standard claim URL. ICI uses the oid claim type with the following URL: http://schemas.microsoft.com/identity/claims/objectidentifier.

Once the setup is ready at ICI level, you can test the ICI API with the access token received from Azure. Note that ICI authorizes only those access tokens of users who are provisioned in ICI.

API key

The API key authentication method uses an ICMAuthToken to create a connection. Use this authentication method to quickly validate that the APIs are hosted correctly.

The ICMAuthToken is generated against a logged-in Icertis Contract Intelligence (ICI) Platform user. Note that you can explicitly set up a token expiry date for a user.

As an ICI user, retrieve the API key by navigating to the following URL: https://{{customerinstance}}.icertis.com/userinformation/GetUserApiToken.
Use your browser's developer tools to inspect the page and retrieve the UserApiToken.

Retrieving the auth token from an instance URL

Add the Icertis connection

Select Integration Service from Automation Cloud^TM.
From the Connectors list, select Icertis. You can also use the search bar to narrow down the connector.
Select the Connect to Icertis button. You can choose between two authentication types: OAuth 2.0 Authorization code or API key.
Enter the required credentials for your preferred authentication:
1. OAuth 2.0 Authorization code (default): Client ID, Client Secret, Tenant ID, Scope.
2. API key: API key.
Select Connect.

On this page

OAuth 2.0 Authorization code
Prerequisites
Authorization flow
Configuring an application in Microsoft Azure
Send the application details to Icertis
ICI configuration
API key
Add the Icertis connection

Was this page helpful?

PREVIOUSAbout the Icertis connector

NEXTAbout the iContact connector

Support and Services

Get The Help You Need

UiPath Academy

Learning RPA - Automation Courses

UiPath Forum

UiPath Community Forum

Trust and Security

Cookies Policy