Webhook authentication types
This topic describes the types of authentication available for webhooks.
To include authentication when sending a webhook request, create an authorization item and assign it to the webhook.
Sitecore supports the following authentication types:
Type of authentication |
Required fields |
---|---|
Basic |
Username Password |
Digest |
Username Password |
API key |
Key Value Add to |
OAuth2.0 Client Credentials Grant |
Authority URL Client ID Client Secret Scope Header Prefix. The default value is Additional endpoint base addresses |
OAuth2.0 Password Credentials Grant |
Authority URL Client ID Client Secret Scope Header Prefix. The default value is Username Password Additional endpoint base addresses |
You can pass optional fields to use the OAuth2.0 client credentials grant and OAuth2.0 password credentials grant authentication types.
Some identity providers require specifying an address in the Additional Endpoint Base Addresses
field. For Microsoft Azure and Azure B2C providers, set this value to https://login.microsoftonline.com/<tenant id>;https://graph.microsoft.com/oidc/userinfo
.