Credential Requests

The following endpoints allow you to manage credential requests for connections and keys. You can create requests, list them, view details, and manage individual credentials within requests.

List Credential Requests

get

/credential-requests/requests

Retrieves a list of Credential Requests.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Query parameters

teamIdintegerRequired

Team ID to filter credential requests.

userIdnumberOptional

User ID to filter credential requests.

makeProviderIdnumberOptional

Make Provider ID to filter credential requests.

statusstring · enumOptional

Status to filter credential requests.

Possible values:

namestring · max: 255Optional

Name to filter credential requests.

Responses

200

List of Credential Requests.

application/json

get

/credential-requests/requests

GET /api/v2/credential-requests/requests?teamId=1 HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

List of Credential Requests.

{
  "requests": [
    {
      "id": "550e8400-e29b-41d4-a716-446655440000",
      "organizationId": 1,
      "teamId": 123,
      "name": "Google Workspace Access",
      "description": "Request access to Google Workspace APIs",
      "externalProviderId": null,
      "createdAt": "2025-12-12T10:00:00Z",
      "updatedAt": "2025-12-12T10:00:00Z",
      "expiresAt": "2026-01-12T10:00:00Z",
      "status": "pending",
      "shouldSendEmail": true,
      "emailSentAt": null,
      "appNames": [
        "google"
      ],
      "makeProvider": {
        "id": 456,
        "email": "[email protected]",
        "name": "John Doe"
      }
    }
  ]
}

Deprecated

Create new Credential Request - deprecated

post

/credential-requests/requests

Creates a new request for Credentials. Supports two flows: 1) Flow for new Make users, 2) Flow for existing Make users.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Body

Request body for creating a new Credential Request. Supports two provider flows - inviting a new user or referencing an existing Make user.

namestring · max: 255Required

Name of the Request which will be displayed to the End Users who open it.

teamIdnumberRequired

ID of the Team the Credential Request should be bound to.

descriptionstring · max: 512Optional

Description of the Request which will be displayed to the End Users who open it.

providerone ofRequired

Provider information. Either an existing Make user ID or a new user to invite (name & email).

Responses

200

Credential Request has been created successfully.

application/json

publicUristring · uriRequired

Public URI where the provider can access the credential request.

post

/credential-requests/requests

POST /api/v2/credential-requests/requests HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Content-Type: application/json
Accept: */*
Content-Length: 724

{
  "teamId": 123,
  "keys": [
    {
      "type": "apikeyauth",
      "appModules": [
        "MakeRequest:authenticationType:apiKey"
      ],
      "appName": "http",
      "appVersion": "4",
      "description": "My custom note"
    },
    {
      "type": "basicauth",
      "appModules": [
        "MakeRequest:authenticationType:basicAuth"
      ],
      "appName": "http",
      "appVersion": "4",
      "description": "My custom note"
    }
  ],
  "connections": [
    {
      "type": "google",
      "appModules": [
        "addRow",
        "deleteRow"
      ],
      "scope": [
        "https://www.googleapis.com/auth/drive",
        "https://www.googleapis.com/auth/spreadsheets"
      ],
      "appName": "google-sheets",
      "appVersion": "2",
      "description": "My custom note"
    }
  ],
  "name": "HTTP API Key and Basic Auth credentials",
  "description": "The request will ask for http auth keys and a Google Sheets connection",
  "provider": {
    "providerMakeUserId": 123
  }
}

200

Credential Request has been created successfully.

{
  "request": {
    "id": "5964de38-0c19-4e65-afbf-d7182c9c5bb0",
    "organizationId": 789,
    "teamId": 123,
    "userId": 456,
    "name": "HTTP API Key and Basic Auth credentials",
    "description": "The request will ask for http auth keys and a Google Sheets connection",
    "externalProviderId": null,
    "makeProviderId": 123,
    "createdAt": "2026-02-24T10:00:00Z",
    "updatedAt": "2026-02-24T10:00:00Z",
    "expiresAt": "2026-03-24T10:00:00Z",
    "status": "pending",
    "shouldSendEmail": true,
    "emailSentAt": null
  },
  "publicUri": "https://eu1.make.com/credence/123/5964de38-0c19-4e65-afbf-d7182c9c5bb0"
}

Create new Credential Request (V2)

post

/credential-requests/requests/v2

Creates a new request for Credentials using app and module selections. Credentials (connections/keys) are automatically derived from the selected modules using the modules-with-credentials API.

Supports two provider flows:

Existing Make user - Reference an existing Make user by their ID. The user will be added to the team if not already a member.
New user invitation - Invite a new user by providing their name and email.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Body

V2 Request body for creating a Credential Request. Credentials are derived from app and module selections.

namestring · max: 255Required

Name of the Request which will be displayed to the End Users who open it.

teamIdinteger · min: 1Required

ID of the Team the Credential Request should be bound to.

descriptionstring · max: 512Optional

Description of the Request which will be displayed to the End Users who open it.

providerone ofRequired

Provider information. Either an existing Make user ID or a new user to invite (name & email).

Responses

200

Credential Request has been created successfully.

application/json

Response for V2 Credential Request creation.

publicUristring · uriRequired

Public URI for accessing the credential request.

post

/credential-requests/requests/v2

POST /api/v2/credential-requests/requests/v2 HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Content-Type: application/json
Accept: */*
Content-Length: 304

{
  "teamId": 123,
  "name": "Slack and Google Sheets Integration",
  "description": "Please authorize Slack and Google Sheets access",
  "credentials": [
    {
      "appName": "slack",
      "appModules": [
        "SendMessage",
        "WatchMessages"
      ],
      "appVersion": 2
    },
    {
      "appName": "google-sheets",
      "appModules": [
        "*"
      ]
    }
  ],
  "provider": {
    "providerMakeUserId": 456
  }
}

200

Credential Request has been created successfully.

{
  "request": {
    "id": "7a9b8c6d-5e4f-3a2b-1c0d-9e8f7a6b5c4d",
    "organizationId": 789,
    "teamId": 123,
    "userId": 456,
    "name": "HTTP API Key and Basic Auth credentials",
    "description": "The request will ask for http auth keys and a Google Sheets connection",
    "externalProviderId": null,
    "makeProviderId": 123,
    "createdAt": "2026-02-24T10:00:00Z",
    "updatedAt": "2026-02-24T10:00:00Z",
    "expiresAt": "2026-03-24T10:00:00Z",
    "status": "pending",
    "shouldSendEmail": true,
    "emailSentAt": null
  },
  "publicUri": "https://eu1.make.com/credence/123/7a9b8c6d-5e4f-3a2b-1c0d-9e8f7a6b5c4d"
}

Get Credential Request

get

/credential-requests/requests/{requestId}

Retrieves a single Credential Request.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

requestIdstring · uuidRequired

ID of the Credential Request.

Query parameters

Responses

200

Credential Request.

application/json

get

/credential-requests/requests/{requestId}

GET /api/v2/credential-requests/requests/{requestId} HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

Credential Request.

{
  "request": {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "organizationId": 1,
    "teamId": 123,
    "userId": 789,
    "name": "Google Workspace Access",
    "description": "Request access to Google Workspace APIs for automation",
    "externalProviderId": null,
    "makeProviderId": "456",
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T10:00:00Z",
    "expiresAt": "2026-01-12T10:00:00Z",
    "status": "pending",
    "shouldSendEmail": true,
    "emailSentAt": null,
    "makeProvider": {
      "id": 456,
      "email": "[email protected]",
      "name": "John Doe"
    }
  }
}

Delete Credential Request

delete

/credential-requests/requests/{requestId}

Deletes the given Credential Request.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

requestIdstring · uuidRequired

ID of the Credential Request.

Query parameters

confirmedbooleanOptional

When true, also deletes credentials (connections and keys) associated with the credential request. When false or omitted the API will return an error if there are any associated credentials, preventing accidental deletion of credentials.

Responses

200

Credential Request has been deleted successfully.

application/json

deletedbooleanOptional

Indicates if the request was deleted.

delete

/credential-requests/requests/{requestId}

DELETE /api/v2/credential-requests/requests/{requestId} HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

Credential Request has been deleted successfully.

{
  "deleted": true
}

Get Credential Request Detail

get

/credential-requests/requests/{requestId}/detail

Retrieves detail of a single Credential Request with associated credentials. This endpoint has been enhanced to include all credentials associated with the request in a single response, eliminating the need for additional API calls.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

requestIdstring · uuidRequired

ID of the Credential Request.

Responses

200

Detail of the Credential Request with associated credentials.

application/json

get

/credential-requests/requests/{requestId}/detail

GET /api/v2/credential-requests/requests/{requestId}/detail HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

Detail of the Credential Request with associated credentials.

{
  "requestDetail": {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "organizationId": 1,
    "teamId": 123,
    "name": "Google Workspace Access",
    "description": "Request access to Google Workspace APIs for automation",
    "externalProviderId": null,
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T10:00:00Z",
    "expiresAt": "2026-01-12T10:00:00Z",
    "status": "partially_authorized",
    "shouldSendEmail": true,
    "emailSentAt": "2025-12-12T10:05:00Z",
    "makeProvider": {
      "id": 456,
      "email": "[email protected]",
      "name": "John Doe"
    },
    "user": {
      "id": 789,
      "email": "[email protected]",
      "name": "Jane Smith"
    },
    "credentials": [
      {
        "id": "660e8400-e29b-41d4-a716-446655440001",
        "requestId": "550e8400-e29b-41d4-a716-446655440000",
        "component": "account",
        "type": "oauth",
        "name": "google",
        "label": "Google Drive Connection",
        "description": "Access to Google Drive for file automation",
        "scope": [
          "drive.readonly",
          "drive.file"
        ],
        "remoteId": "12345",
        "remoteScope": [
          "drive.readonly",
          "drive.file"
        ],
        "tokenId": "770e8400-e29b-41d4-a716-446655440002",
        "createdAt": "2025-12-12T10:00:00Z",
        "updatedAt": "2025-12-12T10:30:00Z",
        "state": "authorized",
        "declineReason": null,
        "appName": "google",
        "appModules": [
          "Google Drive"
        ],
        "appVersion": "1.0.0"
      },
      {
        "id": "660e8400-e29b-41d4-a716-446655440002",
        "requestId": "550e8400-e29b-41d4-a716-446655440000",
        "component": "account",
        "type": "oauth",
        "name": "google-calendar",
        "label": "Google Calendar Connection",
        "description": "Access to Google Calendar for scheduling",
        "scope": [
          "calendar.readonly"
        ],
        "remoteId": null,
        "remoteScope": [],
        "tokenId": null,
        "createdAt": "2025-12-12T10:00:00Z",
        "updatedAt": "2025-12-12T10:15:00Z",
        "state": "pending",
        "declineReason": null,
        "appName": "google-calendar",
        "appModules": [
          "Google Calendar"
        ],
        "appVersion": "1.0.0"
      }
    ]
  }
}

Decline Credential

post

/credential-requests/credentials/{credentialId}/decline

Declines a credential by setting its state to declined and recording the reason. This endpoint is idempotent and can be used to update the decline reason of an already declined credential.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

credentialIdstring · uuidRequired

ID of the Credential.

Query parameters

Body

reasonstring · min: 1 · max: 2048Optional

The reason why the credential was declined. This will be visible to support teams and helps with troubleshooting.

Responses

200

Credential has been declined successfully.

application/json

post

/credential-requests/credentials/{credentialId}/decline

POST /api/v2/credential-requests/credentials/{credentialId}/decline HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Content-Type: application/json
Accept: */*
Content-Length: 77

{
  "reason": "Unable to authorize - account does not have required permissions"
}

200

Credential has been declined successfully.

{
  "credential": {
    "id": "660e8400-e29b-41d4-a716-446655440001",
    "requestId": "550e8400-e29b-41d4-a716-446655440000",
    "component": "account",
    "type": "oauth",
    "name": "google",
    "label": "Google Drive Connection",
    "description": "Access to Google Drive for file automation",
    "scope": [
      "drive.readonly",
      "drive.file"
    ],
    "remoteId": null,
    "remoteScope": [],
    "tokenId": null,
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T11:00:00Z",
    "state": "declined",
    "declineReason": "Unable to authorize - account does not have required permissions",
    "appName": "google",
    "appModules": [],
    "appVersion": "1.0.0"
  }
}

Delete Remote Credential

post

/credential-requests/credentials/{credentialId}/delete-remote

Deletes a credential from the remote platform (Make Web API) and resets its state to pending. The credential can then be re-created through the normal creation flow.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

credentialIdstring · uuidRequired

ID of the Credential.

Query parameters

Responses

200

Credential has been deleted from remote and reset to pending.

application/json

post

/credential-requests/credentials/{credentialId}/delete-remote

POST /api/v2/credential-requests/credentials/{credentialId}/delete-remote HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

Credential has been deleted from remote and reset to pending.

{
  "credential": {
    "id": "660e8400-e29b-41d4-a716-446655440001",
    "requestId": "550e8400-e29b-41d4-a716-446655440000",
    "component": "account",
    "type": "oauth",
    "name": "google",
    "label": "Google Drive Connection",
    "description": "Access to Google Drive for file automation",
    "scope": [
      "drive.readonly",
      "drive.file"
    ],
    "remoteId": null,
    "remoteScope": [],
    "tokenId": null,
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T12:00:00Z",
    "state": "pending",
    "declineReason": null,
    "appName": "google",
    "appModules": [],
    "appVersion": "1.0.0"
  }
}

Request Credential Reauthorization

post

/credential-requests/credentials/{credentialId}/request-reauthorize

Tests the OAuth connection and transitions to reauthorizing state if invalid. Returns an error if the connection is still valid.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

credentialIdstring · uuidRequired

ID of the Credential.

Query parameters

Responses

200

Credential transitioned to reauthorizing state.

application/json

post

/credential-requests/credentials/{credentialId}/request-reauthorize

POST /api/v2/credential-requests/credentials/{credentialId}/request-reauthorize HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

200

Credential transitioned to reauthorizing state.

{
  "credential": {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "requestId": "660e8400-e29b-41d4-a716-446655440001",
    "component": "account",
    "type": "oauth",
    "name": "google-oauth",
    "label": "Google OAuth",
    "description": "OAuth connection for Google services",
    "scope": [
      "https://www.googleapis.com/auth/spreadsheets"
    ],
    "remoteId": "12345",
    "remoteScope": [
      "https://www.googleapis.com/auth/spreadsheets"
    ],
    "tokenId": "f9e8d7c6-b5a4-3210-fedc-ba9876543210",
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T12:00:00Z",
    "state": "reauthorizing",
    "declineReason": null,
    "appName": "google-sheets",
    "appModules": [
      "addRow",
      "deleteRow"
    ],
    "appVersion": "2"
  }
}

Create Action

post

/credential-requests/actions/create

Creates a new Action for a Credential Creation. Either 'connection' or 'key' must be provided in the request body, but not both.

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Body

Request body for creating a new action for credential creation.

namestring · max: 255Optional

Name of the Request which will be displayed to the End Users who open it.

descriptionstring · max: 512Optional

Description of the Request which will be displayed to the End Users who open it.

Responses

200

Credential Request to be used for completing the Action.

application/json

publicUristring · uriRequired

Public URI for completing the action.

post

/credential-requests/actions/create

POST /api/v2/credential-requests/actions/create HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Content-Type: application/json
Accept: */*
Content-Length: 286

{
  "name": "Google Drive Access",
  "description": "Action to create Google Drive connection",
  "connection": {
    "teamId": 123,
    "accountName": "google",
    "name": "My Google Drive",
    "scopes": [
      "drive.readonly",
      "drive.file",
      "apps.read"
    ],
    "appName": "google",
    "appModules": [
      "Google Drive"
    ],
    "appVersion": "1.0.0"
  }
}

200

Credential Request to be used for completing the Action.

{
  "request": {
    "id": "550e8400-e29b-41d4-a716-446655440000",
    "organizationId": 1,
    "teamId": 123,
    "userId": 789,
    "name": "Google Drive Access",
    "description": "Action to create Google Drive connection",
    "externalProviderId": null,
    "makeProviderId": null,
    "createdAt": "2025-12-12T10:00:00Z",
    "updatedAt": "2025-12-12T10:00:00Z",
    "expiresAt": "2026-01-12T10:00:00Z",
    "status": "pending",
    "shouldSendEmail": false,
    "emailSentAt": null
  },
  "publicUri": "https://www.make.com/credential-requests/action/550e8400-e29b-41d4-a716-446655440000"
}

List App Modules with Credentials

get

/credential-requests/apps/{name}/{version}/modules-with-credentials

Retrieves all modules with credential requirements for a specific app and version.

For each module, this endpoint returns:

Module identification (id, name, label)
Required credential type (e.g., account:slack2)
OAuth scopes required by the module
Whether the module is a hook-based trigger

Custom/SDK Apps: To query custom (SDK) apps, prefix the app name with app# (URL-encoded as app%23). For example: /credential-requests/apps/app%23my-custom-app/1/modules-with-credentials

Required scopes

This endpoint requires the following scopes:

Authorizations

AuthorizationstringRequired

Authorize the API call with your API token in the Authorization header with the value: Token your-api-token.

If you don't have an API token yet, please refer to the "Authentication" section to learn how to create one.

Path parameters

namestring · min: 3 · max: 135Required

The name of the app. Must start with a lowercase letter, contain only lowercase letters, numbers, and hyphens, and end with a letter or number. Minimum 3 characters (e.g., a-b, abc).

For SDK/custom apps, use the app# prefix (URL-encoded as app%23).

Example: slackPattern: ^(app#)?[a-z][0-9a-z-]+[0-9a-z]$

versionone ofRequired

The major version of the app. Use a specific version number (e.g., 1, 2, 4) or latest to get the most recent version.

Example: 4

integer · min: 1Optional

string · enumOptionalPossible values:

Responses

200

Successful response with list of app modules and their credential requirements.

application/json

404

App or package not found.

application/json

get

/credential-requests/apps/{name}/{version}/modules-with-credentials

GET /api/v2/credential-requests/apps/{name}/{version}/modules-with-credentials HTTP/1.1
Host: eu1.make.com
Authorization: Token your-api-token
Accept: */*

{
  "appModules": [
    {
      "id": "CreateMessage",
      "name": "CreateMessage",
      "label": "Send a Message",
      "type": "account:slack2,slack3",
      "scope": [
        "chat:write",
        "chat:write.public",
        "chat:write.customize",
        "channels:read",
        "groups:read",
        "im:read",
        "mpim:read",
        "users:read"
      ],
      "hook": false
    },
    {
      "id": "WatchMessages",
      "name": "WatchMessages",
      "label": "Watch Public Channel Messages",
      "type": "account:slack2",
      "scope": [
        "channels:history",
        "channels:read"
      ],
      "hook": false
    },
    {
      "id": "watchInteractivityEvents",
      "name": "watchInteractivityEvents",
      "label": "Watch Interactive Events",
      "type": "account:slack2,slack3",
      "scope": [],
      "hook": true
    }
  ]
}

PreviousConnections NextCustom properties

Last updated 6 days ago