Incoming Webhooks
WorkflowGen features an incoming webhook application that allows users to interact with WorkflowGen from external sources by exchanging JSON payloads using HTTP POST requests. The application supports multiple types of operations:
Create a new request
Cancel a request
Complete an action
Cancel an action
Assign an action
Cancel an action assignment
Update a request dataset
Create a favorite
Update a favorite
Delete a favorite
Add a comment
Remove a comment
Cancel a request's actions by name
The maximum query content length for incoming webhooks can be set by configuring the maxAllowedContentLength property in the WorkflowGen web.config file. The following example shows how to configure this property as 1Â MB (note that the value should always be specified in bytes, so the value in the example is 1,024,000 bytes). The default value is 30,000,000Â bytes.
<system.webServer><security><requestFiltering><requestLimits maxAllowedContentLength="1024000" /></requestFiltering></security></system.webServer>
You must set the local or remote folder paths where files used by FILE type parameters are located. In the Webhooks section on the Integration tab in the Administration Module Configuration Panel, enter the folder names separated by commas in the Input file allowed folders (comma separated values) field.
Alternately, you can add the folder names separated by commas to the HooksInputFileAllowedFolders parameter in the WorkflowGen web.config file.
Note: When using file uploads, you don't need to include the original file folder.
You can configure allowed HTTP URLs for input files using the Input file allowed HTTP URLs setting in the Webhooks section on the Control Panel Integration tab.
To prevent file uploads using HTTP and/or HTTPS URLs, leave the field empty. To allow certain URLs only, enter comma-separated values according to the table below:
Value | Description |
Empty | No HTTP or HTTPS URLs allowed |
| All HTTP and HTTPS URLs allowed |
| HTTPS URLs only |
| HTTP URLs only |
| HTTP from a specific domain only |
| HTTP from a specific folder only |
| All files and folders whose names start with
|
| Specific file only |
In the Webhooks section on the Integration tab in the Administration Module Configuration Panel, enter the maximum input file size in kilobytes in the Maximum input file size (kB) field.
Alternately, you can set the maximum input file content size in kilobytes as the value of the HooksMaxInputFileSize parameter in the WorkflowGen web.config file.
When working with FILE type parameters content encoded in base64, you must enter the maximum input file content size in kilobytes in the Maximum input file content size (kB) field in the Webhooks section on the Integration tab in the Administration Module Configuration Panel.
Alternately, you can set the maximum input file content size in kilobytes as the value of the HooksMaxInputFileContentSize parameter in the WorkflowGen web.config file.
Note: FILE type data content is only recommended for small files under 1 MB.
WorkflowGen is installed with the following default webhooks settings (located under iisnode in \wfgen\hooks\web.config):
nodeProcessCountPerApplication="1"maxConcurrentRequestsPerProcess="1024"
With these settings, only one node.exe instance will handle HTTP requests. This should be sufficient in most cases, but you can optimize performance if needed by adjusting these values based on the number of potential concurrent requests.
To create a new incoming webhook application in your WorkflowGen application, click the Add Application button on the Applications page. Then, choose Incoming webhook from the Application type drop-down list, enter the Name and Description, and click Save.
The Applications page will now display your incoming webhook application information, including the application URL. This is the URL you should use to send WorkflowGen incoming webhooks. The last component of this URL corresponds to a token that WorkflowGen will use to identify your incoming webhooks.
You should fill in the Impersonate username textbox with the WorkflowGen username you use to perform your desired operations. Be aware that your impersonated user must have your asked-operation-required rights to complete the action; if not, you will receive a security error on your response payload. As well, if the impersonate username is not set, the workflow engine service default identity will be used (as defined in the Security section on the Integration tab in the Configuration Panel).
Important notes
The generated URL and its associated token must remain private and not exposed to end-users in client-side (in JavaScript, for example). You should treat the token with the same level of security as you would a password.
If the token used in the incoming webhook URL is missing or invalid, a 404 status code will be returned. If the associated user is invalid, archived, or inactive, a 403 status code will be returned. In both cases, the response will contain a descriptive error message.
The incoming webhook application receives your HTTP POST request payload formatted as a JSON object.
Using the URL provided, you can post HTTP requests from external applications (e.g. Postman) to WorkflowGen in order to execute the available operations in your WorkflowGen application. For operations that require you to provide an object ID, the object ID value can be retrieved by using the GraphQL API. In most cases, object numbers can be used instead of IDs in operation payloads.
In case of an error, you will get a response payload providing error details such as:
{"error": "Advantys.Workflow.ServiceFacade: CreateRequest error: A process ID or name is required"}
The requests should respect the structure shown in this example, where operation refers to the name of the operation to execute, and args contains the input node that groups all of the request parameters to perform the operation.
To create a new request, the processName parameter is required. The processVersion parameter is optional and is used to find the correct process you want to use to create your request.
curl -u yourusername -X POST -H "Content-Type: application/json" -d '{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1}}}' http://localhost/wfgen/hooks/yourtoken
The response payload will be structured as follows:
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzI4","number": 10,"onBehalfOf": null,"onBehalfOfUserName": null}
clientMutationId: This parameter will be null if the request creator did not define it in the request payloadrequestId: The newly created request IDnumber: The newly created request numberonBehalfOf: This parameter contains the delegator ID; however, if the request was not created in delegation mode, its value will be nullonBehalfOfUserName: This parameter contains the delegator username; however, if the request was not created in delegation mode, its value will be null.
Some operations (such as CancelAction and UpdateRequestDataset) require users to have system access to perform the operations. This can be configured in the System operations allowed users field under Security on the Integration tab in the Configuration Panel.
{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1}}}
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzI4","number": 1728,"onBehalfOf": null,"onBehalfOfUserName": null}
A parameter's array can be included in the createRequest operation payload. Be aware that a data with the same name and data type must previously exist in the process for each parameter in the array to store the parameter's value. The following example shows how to send parameters corresponding to the four supported data types (TEXT, NUMERIC, DATETIME, and FILE).
{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1,"parameters": [{"name": "TEXT","textValue": "My text parameter"},{"name": "NUMERIC","numericValue": 5},{"name": "DATE","dateTimeValue": "2017-02-23T20:46:00Z"},{"name": "FILE","fileValue": {"name": "TestFile.txt","contentType": "text/plain","size": 616,"url": "file:///c:/TestFile.txt","updatedAt": "2017-02-21T15:06:38Z"}}]}}}
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzY1","number": 1765,"onBehalfOf": null,"onBehalfOfUserName": null}
You can cancel a request by using the request number or the request ID.
{"operation": "cancelRequest","args": {"input": {"number": 1728}}}
{"operation": "cancelRequest","args": {"input": {"id": "UmVxdWVzdDoxNzI4"}}}
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzI4","number": 1728,"onBehalfOf": null,"onBehalfOfUserName": null}
To complete an action, provide the request number and the action number, or the action ID.
{"operation": "completeAction","args": {"input": {"requestNumber": 1765,"number": 1,"parameters": [{"name": "NEW_PARAMETER","textValue": "My parameter"}]}}}
{"operation": "completeAction","args": {"input": {"id": "QWN0aW9uOjE3NTktLS0x"}}}
{"clientMutationId": null,"actionId": "QWN0aW9uOjE3NTktLS0x","number": 1,"requestNumber": 1759,"onBehalfOf": null,"onBehalfOfUserName": null}
To complete an action, a parameter array can be included in the request payload arguments.
{"operation": "completeAction","args": {"input": {"requestNumber": 1765,"number": 1,"parameters": [{"name": "NEW_PARAMETER","direction": "IN","type": "TEXT","textValue": "My parameter"}]}}}
{"clientMutationId": null,"actionId": "QWN0aW9uOjE3NjUtLS0x","number": 1,"requestNumber": 1765,"onBehalfOf": null,"onBehalfOfUserName": null}
To cancel an action, provide the request number and the action number, or the action ID.
{"operation": "cancelAction","args": {"input": {"requestNumber": 1759,"number": 2}}}
{"operation": "cancelAction","args": {"input": {"id": "QWN0aW9uOjEwMDAtLS0x"}}}
{"clientMutationId": null,"actionId": "QWN0aW9uOjE3NTktLS0y","number": 2,"requestNumber": 1759,"onBehalfOf": null,"onBehalfOfUserName": null}
To assign an action, provide the request number and the action number, or the action ID; you must also provide the assigneeUserName or the assigneeId.
{"operation": "assignAction","args": {"input": {"requestNumber": 1751,"number": 2,"assigneeUserName": "johnsmith"}}}
{"operation": "assignAction","args": {"input": {"id": "QWN0aW9uOjEwMDAtLS0x","assigneeId": "QXNzaWduZWU6MQ=="}}}
{"clientMutationId": null,"actionId": "QWN0aW9uOjE3NTEtLS0y","number": 2,"requestNumber": 1751,"onBehalfOf": null,"onBehalfOfUserName": null}
To cancel an action assignment, you should provide the request number and the action number, or the action ID.
{"operation": "cancelActionAssignment","args": {"input": {"requestNumber": 1751,"number": 2}}}
{"operation": "cancelActionAssignment","args": {"input": {"id": "QWN0aW9uOjEwMDAtLS0x"}}}
A request dataset context can be updated by adding a parameter array. In this case a request number or a request ID should be provided.
{"operation": "updateRequestDataset","args": {"input": {"number": 1750,"parameters": [{"name": "NEW_PARAMETER","textValue": "My parameter"}]}}}
{"operation": "updateRequestDataset","args": {"input": {"id": "UmVxdWVzdDoxMDAw","parameters": [{"name": "NEW_PARAMETER","textValue": "My parameter"}]}}}
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzIx","parameters": [{"name": "NEW_PARAMETER","textValue": "My parameter"}]}
For more information on FILE parameter manipulations when sent within incoming webhook payloads, see the File upload section.
The incoming webhook application lets users add processes and views to their favorites lists using the process or view IDs.
{"operation": "createFavorite","args": {"input": {"itemId": "UHJvY2VzczoxMTA="}}}
The above code will create a favorite using the process or view description, but adding a custom description is also possible, as shown in the following example:
{"operation": "createFavorite","args": {"input": {"itemId": "UHJvY2VzczoxMTA=","description": "My custom description"}}}
{"clientMutationId": null,"favorite": {"id": "RmF2b3JpdGU6MjA=","ownerId": "VXNlcjox","description": "My custom description","type": "PROCESS","itemId": "UHJvY2VzczoxMTA=","onBehalfOf": null}}
The incoming webhook application lets users update an existing favorite process or view by using its favorite ID.
{"operation": "updateFavorite","args": {"input": {"id": "UHJvY2VzczoxMTA=","description": "Updated description"}}}
{"clientMutationId": null,"favorite": {"id": "RmF2b3JpdGU6MTQ=","ownerId": "VXNlcjox","description": "Updated description","type": "PROCESS","itemId": "UHJvY2VzczoxMTA=","onBehalfOf": null}}
The incoming webhook application lets users delete an existing favorite process or view from their favorites list by using its favorites ID.
{"operation": "deleteFavorite","args": {"input": {"id": "RmF2b3JpdGU6MTQ="}}}
{"clientMutationId": null}
The incoming webhook application lets users add comments to requests.
{"operation": "addComment","args": {"input": {"subjectId": "UmVxdWVzdDo0MzY1","message": "This is my comment"}}}
{"clientMutationId": null,"comment": {"id": "Q29tbWVudDo0MzY1LS0tMg==","message": "This is my comment","postedAt": "2017-06-02T17:14:45.025Z","authorId": "VXNlcjox","subjectId": "UmVxdWVzdDo0MzY1","onBehalfOf": null}}
The incoming webhook application lets users remove comments from requests.
{"operation": "removeComment","args": {"input": {"id": "Q29tbWVudDo0MzY1LS0tMg=="}}}
{"clientMutationId": null}
All of the actions with the same name in a request can be cancelled at the same time by using their name in this operation payload.
{"operation": "cancelRequestActionsByName","args": {"input": {"requestNumber": 4399,"activityName": "Initiates"}}}
{"clientMutationId": null,"actionIds": ["QWN0aW9uOjQzOTktLS0x","QWN0aW9uOjQzOTktLS0y","QWN0aW9uOjQzOTktLS0z"],"onBehalfOf": null,"onBehalfOfUserName": null}
As of WorkflowGen version 7.12.0, file data can be downloaded using a blob URL that is returned in the process, request or action datasets, respectively.
{requests{items{dataset{items{fileValue{namedescriptionblobUrl}}}}}}
{"data": {"requests": {"items": [{"dataset": {"items": ["fileValue": {"name": "test.txt","description": "test.txt","blobUrl": "http://localhost/wfgen/graphql/workflow/data/files/V29ya2Zsb3dEYXRhRmlsZToxNzEtLS0x"}]}}]}}
As of version 7.2.0, the incoming webhook application supports the fileValue.updatedAt, fileValue.content, and fileValue.url fields when sending FILE parameters (as shown in the previous example).
The fileValue.updatedAt field should use the ISO 8601 date format.
The fileValue.content field should contain the file content encoded in base64. In this case, the fileValue.url field is not required. You must set the maximum input file content size (see the Configuration section above for instructions on how to set these).
...{"name": "FILE","fileValue": {"name": "test.txt","contentType": "plain/text","size": 76,"updatedAt": "2017-03-15T15:02:00Z","content": "TG9yZW0gaXBzdW0gZG9sb3Igc2l0IGFtZXQsIGNvbnNlY3RldHVyIGFkaXBpc2NpbmcgZWxpdC4="}}...
The fileValue.url field contains the file URL. When working with FILE parameters, you must set the input file allowed folders and the maximum input file size (see the Configuration section above for instructions on how to set these).
You can also prevent file uploads using HTTP and/or HTTPS URLs setting the Input file allowed HTTP URLs in the Webhooks section on the Integration tab in the Administration Module Configuration Panel (see Input file allowed HTTP URLs in the WorkflowGen Administration Guide).
The following path patterns are supported:
Local file should use the File URI scheme:
...{"name": "FILE","fileValue": {"name": "test.txt","description": "test.txt","contentType": "plain/text","url": "file:///c:/temp/test.txt","size": 4714,"updatedAt": "2017-03-15T15:02:00Z"}}...
Public file URL:
...{"name": "FILE","fileValue": {"name": "update.zip","description": "update.zip","contentType": "application/zip","url": "http://download.workflowgen.com/product/latest/update.zip","size": 4120858,"updatedAt": "2017-03-15T15:02:00Z"}}...
File URL:
...{"name": "FILE","fileValue": {"name": "test.txt","description": "test.txt","contentType": "plain/text","url": "http://localhost:8081/test.txt","size": 4714,"updatedAt": "2017-03-15T15:02:00Z"}}...
As of WorkflowGen version 7.14.0, incoming webhooks support multipart file uploads for the following mutations:
createRequestcompleteActioncompleteFormActionupdateRequestDataset
curl -XPOST http://localhost/wfgen/hooks/TOKENXXXXXXXXXXXXX-H 'content-type:multipart/form-data'-F "payload={\"operation\": \"createRequest\", \"args\": { \"input\": {\"processName\": \"SIMPLE_REQUEST\", \"processVersion\": 1, \"parameters\": [ { \"name\": \"FILE1\", \"fileValue\": {\"uploadMap\":\"1\" }}] } } }"-F "1=@C:\test1.txt"
The content type should be
multipart/form-data.The
payloadfield is required and contains the operation and its arguments.input.parameters[X].fileValueshould contain anuploadMapwhose value is the(\"fileValue\": {\"uploadMap\":\"1\" })key of the file to be uploaded.The key should be an alphanumeric string that matches the file key (
"1"in the above example).For each
uploadMapdeclared, a file with the same key must be attached.
Each file to be uploaded should contain the alphanumeric key and the file path (
"1=@C:\test1.txt").Each attached file must match an
uploadMap.The files should follow the
payloadpart.
curl -XPOST http://localhost/wfgen/hooks/TOKENXXXXXXXXXXXXX \-H 'content-type:multipart/form-data' \-F "payload={\"operation\": \"createRequest\", \"args\": { \"input\": {\"processName\": \"SIMPLE_REQUEST\", \"processVersion\": 1, \"parameters\": [ { \"name\": \"FILE1\", \"fileValue\": {\"uploadMap\":\"1\" }}, { \"name\": \"FILE2\", \"fileValue\": {\"uploadMap\":\"2\" }}] } } }" \-F "1=@C:\test1.txt" \-F "2=@C:\test2.txt"
The maximum number of uploads in the same request is 30.
The maximum file upload size is set in the
HooksMaxInputFileSizeconfiguration parameter.
Note: The multipart/form-data content type is only advised for HTTP requests with file uploads. If the fileValue.name, fileValue.description, fileValue.contentType, and fileValue.size properties are not defined, they will be set from the uploaded file information; otherwise, they will take the values defined the payload.
Some of these operations can be done in delegation mode, by adding the onBehalfOfUserName (delegator username) or the onBehalfOf (delegator ID) arguments to the request JSON payload, such as in the following example:
{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1,"onBehalfOfUserName": "wfgen_admin"}}}
{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1,"onBehalfOf": "VXNlcjox"}}}
In this case, the response payload will also contain the onBehalfOf and onBehalfOfUserName arguments.
{"clientMutationId": null,"requestId": "UmVxdWVzdDoxNzI5","number": 1729,"onBehalfOf": "VXNlcjox","onBehalfOfUserName": "wfgen_admin"}
In the case of CancelActionAssignment and UpdateRequestDataset operations, the delegation mode is not supported.
The clientMutationId is an optional argument that can be used by the requester to identify the execution of an operation. Its value is defined in the input payload (e.g. a UUID). If defined, the same value is returned by the operation.
{"operation": "createRequest","args": {"input": {"processName": "2_LEVELS_APPROVAL","processVersion": 1,"clientMutationId": "e9468d12-ca3e-4164-ba6c-2bb0843117d0"}}}
{"clientMutationId": "e9468d12-ca3e-4164-ba6c-2bb0843117d0","requestId": "UmVxdWVzdDoxNzY4","number": 1768,"onBehalfOf": null,"onBehalfOfUserName": null}
For file type data parameters, the URL must start with file://, and the path has to be available to the WorkflowGen server.
The value of the nodeProcessCountPerApplication setting is set to 0 by default for the best performance in Node.js applications. This creates one node process based on the number of virtual processors that are configured. You can change this value at any time to a custom number of node processes; for example, nodeProcessCountPerApplication=2 will create two node processes independently of the number of virtual processors.
For more information, see https://docs.microsoft.com/en-us/azure/app-service/app-service-web-nodejs-best-practices-and-troubleshoot-guide#nodeprocesscountperapplication.
