Credentials
Use the Credentials page of the Campaign Manager to create and manage credentials for webhook authentication.
If your webhook requires authentication, you can create credentials and reference them in your webhook configuration. This allows you to securely authenticate requests made to your webhook endpoints. You can also restrict access to credentials.
When creating credentials, you can choose between different types of authentication methods.
Creating credentials
To create a credential:
- On the leftmost menu, click Account > Credentials.
- Click Create Credential.
- Choose the authentication method you want to use:
- Basic HTTP authentication: For authentication that follows the basic HTTP authentication scheme defined in RFC 7617.
- Custom HTTP authentication: For custom authentication schemes, for example, Bearer.
- Enter the required information for the chosen authentication method:
- Basic HTTP authentication: Enter a name for the credential, and the username and password for authentication.
- Custom HTTP authentication: Enter a name for the credential, and one or more key-value pairs representing the authentication headers.
note
The Name field is only used to identify the credential in the Campaign Manager. It is not included in the HTTP request.
- Click Create Credential.
Now, when you create or edit a webhook, you can select the credential you created.
Listing credentials
To list your credentials, on the leftmost menu, click Account > Credentials.
The page that opens displays the available credentials. It contains the following, as well as other information about credentials:
| Column | Description |
|---|---|
| Name | Unique name identifying the credential. |
| Auth method | Authentication method of the credential. |
| References | Number of times the credential is referenced in webhooks. |
- To edit a credential, click its name.
- To see which webhooks use a credential, hover over the number in the References column. Then, click the name of a webhook to open it.
- To find a specific credential, use the search bar above the table.
Restricting access to credentials
You can use credentials to restrict access to the authentication details of your webhooks.
This means that users who manage webhooks can use the credentials, but they cannot see the authentication details. This is useful for sensitive information that should not be exposed to all users, such as usernames and passwords.
To restrict access to credentials:
- Log in as an admin.
- Create the desired credentials.
- Assign the Application admin role to users who manage webhooks.
Now, the Application admins can assign credentials to webhooks, but they cannot view or edit the details of the credentials. Only the name of the credential is shown in the webhook configuration.
Users that have not been assigned the admin or Application admin role can never access the credentials.