Showing results for 
Search instead for 
Did you mean: 
Quicky Regular Visitor
Regular Visitor

Custom Data Connector with parameterised OAuth ClientID

Hi. I've built a custom data connector to a REST API that uses OAuth. Currently the client_id and client_secrets used by the OAuth authentication are stored in spearate files as per the samples provided by Microsoft here.


Is it possible for the client_id to and client_secret to be provided by the user filling in a paramater prompt during authentication once the connector has been deployed in Power BI, or must these credentials be stored in the connector's mez package?

v-ljerr-msft Super Contributor
Super Contributor

Re: Custom Data Connector with parameterised OAuth ClientID

Hi @Quicky,


Here is a similar thread in which a solution is mentioned. Could you go to check if it helps in your scenario? Smiley Happy

I have managed to sort this out.
I have accomplished an alpha solution that covers the authentication part + fetches data.
Currently tested with mock data.
I might add some paging mechanism to support large scale data fetch.



Quicky Regular Visitor
Regular Visitor

Re: Custom Data Connector with parameterised OAuth ClientID

Thanks for that link - I'm glad someone else has encountered this! I guess it's not officially possible at the moment.


The workarounds mentioned in that thread are:

  1. Get the keys and store them as parameters, which is a potential security issue (although arguably no less secure than my current method of storing the keys within flat files inside the .mez), or
  2. For APIs that utilise username/password authentication, request that the user enters their keys as part of the username field, and parse that before verification (a bit of a hack, and I don't know how this would work when using OAuth)
  3. Build a custom OAuth flow to accommodate extra parameters (well outside my breadth of knowledge)



Since the eventual roadmap must surely involve the distribution of generic connectors through the Office Store, I'd be interested to know how it will be possible to incorporate the secure storage of API key, client IDs and client secrets into the authentication procedure going forward. The only working solution in that thread (the second one above) isn't particularly user friendly or universally applicable to all authentication methods.

Helpful resources


How to Get Your Question Answered Quickly

Power BI Super User, Greg Deckler, explains

Summit North America

Power Platform Summit North America

Register by September 5 to save $200

Back to School Contest

Back to School Contest

Engage and empower students with Power BI!

MBAS Gallery

Watch Sessions On Demand!

Continue your learning in our online communities.

Top Ideas
Top Kudoed Authors
Users Online
Currently online: 48 members 955 guests
Please welcome our newest community members: