Zapier & Make Integration

Connect autoch.at CRM to Zapier and Make.com for powerful automation workflows.

Overview

autoch.at CRM can integrate with Zapier and Make.com in two ways:

1. Outbound (CRM → Zapier/Make): Use webhooks to send events to Zapier/Make
2. Inbound (Zapier/Make → CRM): Use the REST API to create/update data in CRM

Outbound Integration: Webhooks

Setting Up Webhooks

1. Go to Settings → Integrations → Webhooks
2. Click Create Webhook
3. Configure:
   • URL: Your Zapier/Make webhook URL
   • Event Types: Select events you want to receive (e.g., invoice.created, client.created)
   • Status: Active
4. Click Save
5. Copy the Signing Secret (shown only once) - you'll need this to verify webhook signatures

Available Events

• client.created - New client created
• client.updated - Client information updated
• invoice.created - New invoice created
• invoice.sent - Invoice sent to client
• invoice.paid - Invoice marked as paid
• invoice.overdue - Invoice marked as overdue
• quote.created - New quote created
• quote.accepted - Quote accepted by client
• quote.rejected - Quote rejected by client

Webhook Payload Format

{
  "event": "invoice.created",
  "timestamp": "2024-12-16T10:00:00Z",
  "data": {
    "invoice": {
      "id": "uuid",
      "invoice_number": "INV-0001",
      "client_id": "uuid",
      "status": "sent",
      "total": 1000.00,
      "due_date": "2024-12-31"
    }
  }
}

Signature Verification

Webhooks include an HMAC-SHA256 signature in the X-Webhook-Signature header:

X-Webhook-Signature: sha256=signature_here

To verify in Zapier/Make:

1. Get the signing secret from webhook settings
2. Compute HMAC-SHA256 of the request body using the secret
3. Compare with the signature header

Inbound Integration: REST API

Getting Your API Key

1. Go to Settings → Integrations → API Keys
2. Click Create API Key
3. Set scopes (e.g., clients:read, clients:write, invoices:read, invoices:write)
4. Set expiration (optional)
5. Click Create
6. Copy the API key immediately - it's shown only once

API Base URL

https://YOUR_PROJECT_REF.supabase.co/functions/v1/crm-api/v1

Authentication

Include your API key in the Authorization header:

Authorization: Bearer YOUR_API_KEY

OpenAPI Specification

Get the complete OpenAPI 3.0 specification:

GET https://YOUR_PROJECT_REF.supabase.co/functions/v1/openapi-spec

This spec can be imported into:

• Zapier: Use "Custom Action" and import the OpenAPI spec
• Make.com: Use "HTTP" module or import OpenAPI spec
• Postman: Import for testing

Common API Endpoints

List Clients

GET /v1/clients?limit=50&offset=0

Create Client

POST /v1/clients
Content-Type: application/json

{
  "company_name": "Acme Corp",
  "email": "contact@acme.com",
  "phone": "+1-555-0123"
}

List Invoices

GET /v1/invoices?limit=50&offset=0&order_by=created_at&order=desc

Create Invoice

POST /v1/invoices
Content-Type: application/json

{
  "client_id": "uuid",
  "due_date": "2024-12-31",
  "subtotal": 1000.00,
  "tax_rate": 10.0,
  "total": 1100.00
}

Get Invoice

GET /v1/invoices/{id}

Zapier Setup

Option 1: Webhook Trigger (Recommended)

1. In Zapier, create a new Zap
2. Choose Webhooks by Zapier as trigger
3. Select Catch Hook
4. Copy the webhook URL
5. In CRM, create a webhook with this URL
6. Test the connection

Option 2: Custom Action

1. In Zapier, create a new Zap
2. Choose Code by Zapier or Webhooks by Zapier as action
3. Use the REST API endpoints with your API key
4. Or import the OpenAPI spec for better integration

Example Zapier Workflow

Trigger: New Invoice Created (Webhook)
Action: Send Email via Gmail

• Use {{data.invoice.invoice_number}} in email subject
• Use {{data.invoice.total}} in email body

Make.com Setup

Option 1: Webhook Module

1. In Make.com, create a new scenario
2. Add Webhooks → Custom webhook module
3. Copy the webhook URL
4. In CRM, create a webhook with this URL
5. Configure webhook to trigger on desired events

Option 2: HTTP Module

1. In Make.com, add HTTP → Make a Request module
2. Configure:
   • URL: https://YOUR_PROJECT_REF.supabase.co/functions/v1/crm-api/v1/clients
   • Method: GET, POST, PUT, DELETE
   • Headers: Authorization: Bearer YOUR_API_KEY
   • Body: JSON payload (for POST/PUT)

Example Make.com Workflow

Trigger: New Invoice Created (Webhook)
Action: Create Task in Asana

• Map invoice data to Asana task fields
• Use invoice number as task title

Rate Limits

• API: 100 requests per hour per API key
• Webhooks: No rate limit (delivered asynchronously)

Security Best Practices

1. Store API keys securely: Never commit API keys to version control
2. Use least privilege: Only grant necessary scopes to API keys
3. Rotate keys regularly: Create new keys and revoke old ones periodically
4. Verify webhook signatures: Always verify webhook signatures in Zapier/Make
5. Use HTTPS: All API and webhook URLs use HTTPS

Troubleshooting

Webhook Not Receiving Events

1. Check webhook status is "Active" in CRM
2. Verify webhook URL is correct and accessible
3. Check webhook logs in CRM for delivery status
4. Ensure event types are selected in webhook configuration

API Authentication Failing

1. Verify API key is correct
2. Check API key hasn't expired
3. Ensure API key has required scopes
4. Verify Authorization header format: Bearer YOUR_API_KEY

Rate Limit Errors

1. Reduce request frequency
2. Implement exponential backoff
3. Use webhooks instead of polling API

Next Steps

• API Documentation - Complete API reference
• Webhooks Guide - Detailed webhook documentation
• API Keys - Managing API keys