Skip to main content

Configure product integration security

Developers can manage the API credentials that they use for product integrations. The credentials are used to secure event notifications that are sent to the product’s configured endpoints. They are also used to secure incoming API requests for your product integration, for example to retrieve details of an event. They configure integration endpoints when they configure their product. See Edit integration.

Products are created using the separate credentials authorization type, which uses distinct OAuth 2.0 client keys and secrets to secure outbound distribution event notifications and inbound API requests for your product integration.

📝 Note Previously, it was possible to use shared credentials but that option is no longer available. Shared credentials use the client (consumer) key and secret to verify signed event notifications that are sent to configured endpoints, and to sign incoming API requests for product integration (for example, to retrieve details of an event). Credentials that you created with the shared credentials type continue to work. However, for enhanced security, we recommend that you migrate existing products that use shared credentials to the separate credentials type. If you do this, you cannot revert back to shared credentials after you save your changes.

See Separate credentials authorization type for more information.

Was this page helpful?