Connect RenderDraw workflows to the systems your team already uses — CRM, ERP, project management, document storage, and communication platforms. Authenticate once per provider; every workflow shares the connection.
Provider connections are configured at the account level, not the workflow level. When you connect Salesforce, that connection becomes available to every workflow in your account — the marketing team's lead enrichment workflow, the estimating team's RFP workflow, and the operations team's order processing workflow all share the same authenticated connection.
Connections are stored encrypted in RenderDraw's secrets vault and rotated automatically where the provider supports token refresh (OAuth 2.0). API key connections support manual rotation with zero-downtime: add the new key, verify it, remove the old key.
Every API call made through a provider connection is logged in the workflow run audit trail — including the endpoint called, the response status, and the response time.
Select the provider category and click "Add Connection"
OAuth redirect or paste API key — provider-dependent
RenderDraw tests the connection and shows available resources
The connection appears in the provider dropdown for all compatible blocks
The most deeply integrated provider in RenderDraw. Supports OAuth 2.0 JWT bearer flow (recommended for production), username-password flow (dev/test), and connected app configuration.
Connect to HubSpot CRM for company, contact, deal, and ticket operations. Supports HubSpot's private app access token model for straightforward integration without the OAuth redirect flow overhead.
Integrate with Dynamics 365 Sales, Customer Service, and custom Dataverse tables. Uses OAuth 2.0 with client credentials for server-to-server authentication — no user impersonation required.
Connect to SAP S/4HANA Cloud or on-premises via SAP Business Technology Platform (BTP) connectivity service. Supports OData V2/V4 APIs for materials, pricing, purchase orders, and custom CDS views.
Connect to Oracle Fusion Cloud ERP REST APIs or Oracle EBS SOAP/REST services via an on-premises agent. Supports procurement, inventory, and order management modules.
Connect to D365 F&O OData entities for procurement, inventory, and project accounting. Distinct from D365 Sales — uses the finance and operations data model with its own entity set.
Read, write, and watch files in SharePoint document libraries and OneDrive folders. Uses Microsoft Graph API — same authentication as Teams and Outlook integration. Supports site pages, document libraries, lists, and file versioning.
Read and write files in Google Drive folders, including Google Sheets and Google Docs. Supports service account auth for unattended server-side access — no user OAuth redirect required in production.
Read, write, and watch objects in Amazon S3, Azure Blob Storage, Google Cloud Storage, and Backblaze B2. Used for CAD file ingestion, generated PDF storage, and large document archives.
Send and receive email via Exchange Online / Outlook. Supports both delegated (user inbox) and application permissions (shared mailbox / functional address). Used for email triggers and delivery notification blocks.
Send and receive email via Gmail. Supports service account domain-wide delegation for shared mailbox access without individual user OAuth consent in enterprise deployments.
Upload and manage documents, drawings, specifications, and submittals in Procore projects. Uses Procore's OAuth 2.0 app framework. Integrates with Procore's drawing log and RFI modules.
Deep integration with Procore project management — the most widely used construction management platform in the US. Connect workflows to Procore's project, RFI, submittal, drawing, and document modules.
See the Procore RFI automation workflow for AI classification, source-backed response drafting, reviewer gates, SLA tracking, and closeout audit logs.
See the Procore takeoff automation workflow for AI quantity extraction, pricing lookup, workbook generation, and estimator review gates.
Connect to Autodesk Construction Cloud (ACC) and BIM 360 for model management, issues, RFIs, and submittals. Supports ACC's unified Data Exchange platform for reading model properties and assemblies.
See the Autodesk takeoff automation workflow for AI extraction from ACC, BIM 360, Revit, DWG, IFC, PDF, and model export context.
Send messages, post to channels, and deliver interactive approval notifications (Block Kit buttons) directly in Slack. Used for human gate notifications, workflow completion alerts, and team status updates.
Post adaptive card messages to Teams channels and users. Adaptive cards support approve/reject action buttons inline — reviewers can respond to human gate notifications without leaving Teams.
Send transactional and workflow notification email via MailerSend, Mailgun, Microsoft 365 SMTP relay, or any SMTP server. Full HTML template support with workflow data injection for personalized delivery emails.
The preferred authentication method for cloud SaaS providers — Salesforce, Microsoft 365, Google Workspace, Autodesk, Procore, Slack. RenderDraw stores the refresh token encrypted in its secrets vault and handles token rotation automatically.
Supports authorization code flow (user delegates access), client credentials flow (machine-to-machine, no user), and JWT bearer flow (Salesforce-specific server-to-server).
For providers that use API key authentication — HubSpot private apps, custom REST APIs, some ERP connectors, Mailgun, MailerSend. Keys are stored encrypted and never exposed in plain text after initial entry. Supports key rotation with zero-downtime.
Per-connection access policies allow individual workflows to be restricted to specific provider connections — limiting blast radius if a workflow is misconfigured.
For inbound webhook triggers — Procore, GitHub, Shopify, and other systems that sign outbound webhooks with an HMAC-SHA256 signature. RenderDraw verifies the signature before accepting the payload as a trigger event.
Signed webhook verification prevents unauthorized trigger invocations even if the trigger endpoint URL is discovered.
Enterprise SSO and SAML. For enterprise deployments, RenderDraw supports SAML 2.0 SSO for platform user authentication via your organization's identity provider (Okta, Azure AD, Google Workspace, OneLogin). Provider connections use their own auth methods independently of platform SSO.
| Provider | Category | Trigger Support | Read | Write | Auth Method |
|---|---|---|---|---|---|
| Salesforce | CRM | ✓ | ✓ | ✓ | OAuth 2.0 JWT |
| HubSpot | CRM | ✓ | ✓ | ✓ | Private App Token |
| Dynamics 365 Sales | CRM | ✓ | ✓ | ✓ | OAuth 2.0 |
| SAP S/4HANA | ERP | ✗ | ✓ | ✓ | OAuth 2.0 / Basic |
| Oracle Fusion | ERP | ✗ | ✓ | ✓ | OAuth 2.0 |
| D365 Finance & Ops | ERP | ✗ | ✓ | ✓ | OAuth 2.0 |
| SharePoint / OneDrive | Documents | ✓ | ✓ | ✓ | OAuth 2.0 |
| Google Drive | Documents | ✓ | ✓ | ✓ | OAuth / Service Account |
| Amazon S3 | Storage | ✓ | ✓ | ✓ | Access Key + Secret |
| Azure Blob Storage | Storage | ✓ | ✓ | ✓ | Service Principal |
| Procore | Project Mgmt | ✓ | ✓ | ✓ | OAuth 2.0 |
| Autodesk ACC | Project Mgmt | ✓ | ✓ | ✓ | OAuth 2.0 |
| Slack | Communication | ✗ | ✗ | ✓ | Bot Token |
| Microsoft Teams | Communication | ✗ | ✗ | ✓ | OAuth 2.0 |
| MailerSend | ✗ | ✗ | ✓ | API Key | |
| DocuSign | E-Signature | ✓ | ✓ | ✓ | OAuth 2.0 |
| Conga CPQ | CPQ | ✗ | ✓ | ✓ | OAuth 2.0 (via SF) |
Connect your first provider — Salesforce, SAP, or SharePoint — and start building workflows that span your entire technology ecosystem.