Awesome-omni-skill power-platform-custom-connector
Build Power Platform custom connectors (Independent Publisher and Verified Publisher) for Microsoft certification. Use when user says "create a custom connector", "build a Power Automate connector", "write apiDefinition.swagger.json", "configure apiProperties.json", "add x-ms-* extensions", "set up OAuth for a connector", "write script.csx custom code", "create a webhook trigger connector", "prepare connector for certification PR", "add dynamic dropdowns", "configure policy templates", or "submit connector to PowerPlatformConnectors repo". Capabilities; Swagger 2.0 OpenAPI definitions, 5 auth types, 13 policy templates, C# custom code,webhook triggers, dynamic values, Copilot Studio AI extensions, certification checklists, pac connector CLI. Do NOT use for generic REST API design, Azure API Management policies, or Logic Apps built-in connectors.
install
source · Clone the upstream repo
git clone https://github.com/diegosouzapw/awesome-omni-skill
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/diegosouzapw/awesome-omni-skill "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/development/power-platform-custom-connector" ~/.claude/skills/diegosouzapw-awesome-omni-skill-power-platform-custom-connector && rm -rf "$T"
manifest:
skills/development/power-platform-custom-connector/SKILL.mdsource content
Power Platform Custom Connector Creation
Build production-ready Power Platform custom connectors and submit them to the microsoft/PowerPlatformConnectors GitHub repo. This skill covers Independent Publisher and Verified Publisher connector paths.
References: OPENAPI_EXTENSIONS.md | AUTH_PATTERNS.md | POLICY_TEMPLATES.md | CUSTOM_CODE.md | WEBHOOK_TRIGGERS.md | CERTIFICATION.md | EXAMPLES.md | COMMON_MISTAKES.md
First Step: Identify Publisher Type
IMPORTANT — Ask the user before proceeding:
Before generating any connector files or certification guidance, ask the user:
"Are you building an Independent Publisher connector or a Verified Publisher connector?"
- Independent Publisher — You are a community member (MVP, developer, enthusiast) wrapping a third-party API you do not own.
- Verified Publisher — You are the service/API owner and want to publish your own connector.
The answer determines: directory structure, brand color, icon requirements, OAuth support, certification workflow, submission target, and connector title format. Tailor all subsequent guidance to the selected publisher type.
Quick Reference: Independent Publisher vs Verified Publisher
| Aspect | Independent Publisher | Verified Publisher |
|---|---|---|
| Who | Community member (MVP, developer) — does NOT own the API | Service owner — owns the underlying API |
| Brand color | Must be | Custom brand color allowed |
| PR target | | |
| Certification | Free, reviewed by MS Connector Certification Team | Free, via ISV Studio registration |
| Connector tier | Premium (automatic for external APIs) | Premium (automatic for external APIs) |
| PR requirements | Screenshots of 3 unique operations working in a Flow | Thorough API testing documentation |
| OAuth redirect | Per-connector redirect URI (mandatory since Feb 2024) | Per-connector redirect URI (mandatory since Feb 2024) |
| OAuth support | Not currently supported for certification | Fully supported (AAD, Generic OAuth) |
| Connector title | Service name only (≤30 chars) | Service name only (≤30 chars) |
| Icon | Generic icon assigned automatically | Custom icon required (100×100 to 230×230 px, PNG, non-white/non-default background) |
| Submission target | GitHub PR to | Microsoft Partner Center |
| Identity verification | Verified credentials via OneVet + Microsoft Authenticator | Partner Center account |
| Deployment timeline | ~15 business days after approval (Friday deployments) | ~15 business days after approval (Friday deployments) |
| Intro artifact | | |
Decision rule: If you own the API/service, go Verified Publisher. If you're wrapping a third-party API you don't own, go Independent Publisher.
Getting Started
Required Files
Every connector directory must contain:
| File | Required | Purpose |
|---|---|---|
| Yes | OpenAPI 2.0 (Swagger) definition — operations, parameters, responses, schemas |
| Yes | Connection parameters, brand color, auth config, policy templates |
| Yes | Description, prerequisites, supported operations, credentials guide |
| Optional | Connector icon displayed in the designer |
| Optional | C# custom code for request/response transformation |
Directory Structure
PowerPlatformConnectors/ ├── independent-publisher-connectors/ │ └── YourConnector/ │ ├── apiDefinition.swagger.json │ ├── apiProperties.json │ ├── readme.md │ ├── icon.png (optional) │ └── script.csx (optional) ├── certified-connectors/ (verified publishers) ├── custom-connectors/ (samples only) ├── schemas/ (JSON Schema for validation) │ ├── apiDefinition.swagger.schema.json │ └── paconn-apiProperties.schema.json └── templates/ (starter templates)
Scaffold a New Connector
# Fork and clone the repo git clone https://github.com/<your-fork>/PowerPlatformConnectors.git cd PowerPlatformConnectors git checkout dev # Create connector directory mkdir independent-publisher-connectors/YourConnector cd independent-publisher-connectors/YourConnector # Create required files (see EXAMPLES.md for complete templates)
Swagger Definition Structure (apiDefinition.swagger.json)
Critical: Must be OpenAPI 2.0 (Swagger). OpenAPI 3.0 is NOT supported.
If your source API provides an OpenAPI 3.0 definition, convert it before importing:
# Option 1: api-spec-converter CLI (requires Node.js) npm install -g api-spec-converter api-spec-converter --from=openapi_3 --to=swagger_2 openapi3.yaml > apiDefinition.swagger.json # Option 2: Apimatic Transform (https://www.apimatic.io/transformer) # Upload your 3.0 file → select Swagger 2.0 → download
After conversion, manually verify the output — automated tools may not handle all Power Platform–specific extensions correctly.
{ "swagger": "2.0", "info": { "version": "1.0.0", "title": "My Service", "description": "Short description (30-500 chars). No words 'API', 'Connector', or Power Platform product names.", "contact": { "name": "Your Name", "url": "https://github.com/yourusername", "email": "you@example.com" } }, "host": "api.myservice.com", "basePath": "/v1", "schemes": ["https"], "consumes": ["application/json"], "produces": ["application/json"], "securityDefinitions": {}, "security": [], "paths": {}, "definitions": {}, "x-ms-connector-metadata": [ { "propertyName": "Website", "propertyValue": "https://myservice.com" }, { "propertyName": "Privacy policy", "propertyValue": "https://myservice.com/privacy" }, { "propertyName": "Categories", "propertyValue": "AI;Business Intelligence" } ] }
Key rules:
— Maximum 30 characters. Cannot include the words "API", "Connector", "Copilot Studio", or any Power Platform product names. Must end with an alphanumeric character (no trailing punctuation, spaces, or special chars). Must be unique and distinguishable from existing connector titles. Note: thetitle
suffix goes on the PR title, not the connector title in the OpenAPI definition(Independent Publisher)
— Must be 30-500 characters for certification quality and must stay within the platform import hard limit of 1000 characters. Use plain text only (no HTML tags). Cannot contain "API", "Copilot Studio", or Power Platform product names. Must be free of grammatical and spelling errors. Should concisely describe the main purpose and value of the connectordescription
— Includecontact
,name
, andurl
with a valid email addressemail
— Required array with Website, Privacy policy, and Categories. Thex-ms-connector-metadata
value must be a semicolon-delimited string from these allowed values:Categories
,AI
,Business Management
,Business Intelligence
,Collaboration
,Commerce
,Communication
,Content and Files
,Data
,Finance
,Human Resources
,Internet of Things
,IT Operations
,Lifestyle and Entertainment
,Marketing
,Productivity
,Sales and CRM
,Security
,Social MediaWebsite
/consumes
— Always explicitly set toproduces
for JSON APIs. Do not omit these fields even if the API only handles JSON — being explicit prevents content-type mismatches["application/json"]
— Must includeschemes
(HTTP not allowed for production connectors)"https"
— Production host URL only. Staging, dev, and test host URLs are not allowed. Base hostname only, no path segmentshost
File formatting:
- Use soft tabs with 4 spaces for indentation — no hard tabs
- Remove trailing whitespace from all lines
- Structure the file in this order: swagger version → info → host/schemes → consumes/produces → paths → definitions → parameters
Operations (Paths)
Define actions and triggers in the
paths"paths": { "/items": { "get": { "operationId": "ListItems", "summary": "List all items", "description": "Retrieves a list of all items from the service.", "x-ms-visibility": "important", "parameters": [ { "name": "status", "in": "query", "type": "string", "x-ms-summary": "Status", "description": "Filter items by their current status.", "x-ms-visibility": "advanced" } ], "responses": { "200": { "description": "Success", "schema": { "$ref": "#/definitions/ItemList" } }, "400": { "description": "The request was invalid or malformed." }, "404": { "description": "The requested resource was not found." } } }, "post": { "operationId": "CreateItem", "summary": "Create an item", "description": "Creates a new item in the service.", "parameters": [ { "name": "body", "in": "body", "required": true, "schema": { "$ref": "#/definitions/CreateItemRequest" } } ], "responses": { "201": { "description": "Created", "schema": { "$ref": "#/definitions/Item" } } } } } }
Key rules:
— Must be PascalCase (capitalize every word), unique across all operations. Remove all non-alpha characters — no hyphens, underscores, or spaces (e.g.,operationId
→get_user-info
)GetUserInfo
— Required for every operation. Must be sentence case, 80 characters or fewer, and must end with an alphanumeric character (no trailing punctuation, spaces, or special characters). Must contain only alphanumeric characters or parentheses — no slashes (summary
). As a naming convention: start with "List" when the operation returns multiple records, "Get" when it returns a single record. For triggers, use the format: "When a [event]" (e.g., "When a task is created")/
andsummary
must not have the same text — the description should provide additional information beyond the summarydescription
— Required for every operation and parameter. Must be a full, descriptive sentence ending in punctuation. Must not contain URLs or HTML markup. Must be in English and free of grammatical or spelling errorsdescription- Input description UX style — Parameter descriptions are shown as helper text in Power Automate/Power Apps. Keep them concise and action-oriented: avoid repetitive prefixes like "Filter the response by"; prefer short forms like "Location code (ISO-3).", "Reference period start (inclusive).", or "Select from dropdown." for long enum lists
Description Style Examples (Parameters)
Use this quick mapping when rewriting parameter helper text for designer UX.
| Pattern | Avoid | Prefer |
|---|---|---|
| Generic filter prefix | | |
| Date lower bound | | |
| Date upper bound | | |
| Boolean flag | | |
| Enum (short list) | | |
| Enum (long list/dropdown) | | |
| Non-clickable references | | |
— Required on every parameter and schema property. Use Title Case, matching the parameterx-ms-summary
but without hyphens or underscores (e.g.,name
→name: "form_name"
)x-ms-summary: "Form Name"
— Controls visibility:x-ms-visibility
(always shown),"important"
(hidden under menu),"advanced"
(hidden from user)"internal"- Response schemas — Each operation should have only one response with a schema, which should be the
success response (200 or 201). The2XX
response should NOT have a schema definition — schemas belong on expected success responses only. For error responses (default
,4xx
), provide meaningful descriptions but remove the schema property. Empty response schemas are not allowed (except when dynamic). Empty operations are not allowed — every operation must have at least one response5xx - Boolean filters — Parameters that represent true/false flags (for example
,has_hrp
,in_gho
, and origin/asylum variants) should useis_hxl
instead of"type": "boolean""string" - Path parameters — All path parameters (e.g.,
) must include/items/{itemId}
and must be marked"x-ms-url-encoding": "single""required": true - Reserved names — A parameter cannot be named
(reserved by the platform)connectionId - Swagger 2.0 parameter typing — Every non-body parameter (
,in: query
,header
,path
) must include aformData
field. Missingtype
frequently causes APIM import failures such astypeJSON is valid against no schemas from 'oneOf' - GET operations — Cannot have body or form data parameters
is NOT supported — The Custom Connector wizard rejects array parameters withcollectionFormat: "multi"
. Workaround: change the parameter type from"collectionFormat": "multi"
toarray
, accept comma-separated values, and use custom code (string
) to split them into repeated query parameters. See CUSTOM_CODE.md Pattern 5 and COMMON_MISTAKES.md entry #33script.csx- Remove empty properties from operations and parameters unless they are explicitly required
Recommended preflight lint before
/ pac connector create
:pac connector update
- Confirm every non-body parameter has a
type - Confirm every action/operation has a non-empty
description - Confirm path parameters are
withrequired: truex-ms-url-encoding: "single" - Confirm each operation has exactly one success response schema
- Confirm every
entry has an explicit schema discriminator (definitions.*.properties.*
,type
,$ref
,enum
,anyOf
, oroneOf
) so properties are never ambiguous during WADL conversionallOf - Confirm every array schema has explicit
typing/ref metadata (noitems
placeholders)"items": {} - Confirm no
schema properties are listed in any definitionreadOnly: true
arrayrequired - Confirm there are no empty parameter/response/schema objects such as
after automated transforms{} - Confirm boolean-like flags (
,has_*
,in_*
) are typed asis_*
where semantically correctboolean - Confirm parameter descriptions are concise helper text (no repetitive "Filter the response by" boilerplate)
- Parse-check the file before deploy (
) to catch malformed JSON and trailing/extra datapython -c "import json;json.load(open('apiDefinition.swagger.json',encoding='utf-8'))" - Check for missing operation descriptions (
)python -c "import json; s=json.load(open('apiDefinition.swagger.json',encoding='utf-8')); missing=[(m.upper(),p,o.get('operationId')) for p,ms in s.get('paths',{}).items() for m,o in ms.items() if isinstance(o,dict) and not (isinstance(o.get('description'),str) and o.get('description').strip())]; print('missing_description_count',len(missing)); [print(x) for x in missing[:200]]" - If converting from OpenAPI 3.x, run a second pass to ensure nullable fields were translated into valid Swagger 2.0 schemas (avoid leaving properties with only
/description
)title - Confirm nullable primitives use Swagger 2.0-compatible patterns (
+type
) and avoid OpenAPI 3 style unions likex-nullable: true"type": ["integer", "null"]
Definitions (Schemas)
Define reusable data models in the
definitions$refKey rules:
- All objects under
must include both aproperties
anddescription
property, even when nested — unless the object contains atitle
property$ref - Every property schema must include an explicit schema discriminator (
,type
,$ref
,enum
,anyOf
, oroneOf
); do not leave property definitions as metadata-only objectsallOf
— Must be in Title Case. Must not contain URLstitle
— Must be a full sentence with proper punctuation. Must not contain URLsdescription- Keep all other existing properties of the definition intact
- Remove
values from objects insidedefault
(defaults belong on operation parameters, not schema definitions)properties - If a
ornumber
property's description mentions minimum or maximum values, add explicitinteger
and/orminimum
properties to the schemamaximum - Nullable fields (Swagger 2.0) — Represent nullable scalar properties with
on the property schema. If upstream data can omit or null a field, remove that field from responsex-nullable: true
arrays. Do not use arrayrequired
unions such astype["integer", "null"]
"definitions": { "Task": { "type": "object", "properties": { "id": { "type": "string", "title": "Task ID", "description": "The unique identifier for the task.", "x-ms-summary": "Task ID" }, "name": { "type": "string", "title": "Task Name", "description": "The display name of the task.", "x-ms-summary": "Task Name" }, "priority": { "type": "integer", "title": "Priority", "description": "The priority level of the task, from 1 (highest) to 5 (lowest).", "x-ms-summary": "Priority", "minimum": 1, "maximum": 5 }, "project": { "$ref": "#/definitions/Project" } } } }
Note: The
project$reftitledescriptionOpenAPI Extensions Quick Reference
| Extension | Purpose | Applies To |
|---|---|---|
| Action title in designer | Operations |
| Display name for entity | Parameters, schema properties |
| Verbose explanation | Operations, parameters, schemas |
| | Operations, parameters, schemas |
| | Operations |
| Hint text for triggers | Operations |
| Webhook payload schema | Resources (path level) |
| Marks field as callback URL | Parameters |
| Populate dropdown from API call | Parameters |
| Enhanced dynamic dropdown (unambiguous refs) | Parameters |
| Dynamic schema from API call | Parameters, responses |
| Enhanced dynamic schema (unambiguous refs) | Parameters, responses |
| Test connection, chunk transfer | Connectors, operations |
| Versioning: family, revision, replacement | Operations |
| | Path parameters |
| Website, privacy policy, categories | Root level |
| Skip generic testing | Operations |
| Mark POST as non-modifying | Operations |
Copilot Studio / AI extensions:
| Extension | Purpose |
|---|---|
| LLM-friendly operation name (snake_case) |
| LLM-friendly usage description |
| |
Extended format types:
date-no-tzemailhtmluriuuidSee OPENAPI_EXTENSIONS.md for detailed examples of each extension.
Dynamic Dropdown Pattern (Metadata Endpoints)
For connectors with metadata operations (for example, location/sector/org catalogs), use
x-ms-dynamic-values{ "name": "location_code", "in": "query", "type": "string", "required": false, "x-ms-summary": "Location Code", "description": "Filter the response by location code.", "x-ms-dynamic-values": { "operationId": "GetLocationApiVMetadataLocationGet", "parameters": { "output_format": "json", "limit": 10000, "offset": 0 }, "value-collection": "data", "value-path": "code", "value-title": "name" } }
Guidance:
- Map frequently reused filters (location/admin1/admin2/sector/org/org-type/commodity/market) to metadata operations
- Use
to match the response payload root (commonlyvalue-collection
)data - Avoid applying dynamic-values on the same metadata source action itself
- Provide stable defaults for source operation parameters (
,output_format
,limit
)offset
Authentication Quick Reference
Configure auth in
apiProperties.jsonconnectionParametersconnectionParameterSets| Auth Type | | Identity Provider | Example |
|---|---|---|---|
| API Key | | N/A | Most Independent Publisher connectors |
| OAuth 2.0 (AAD) | | | Azure services (Key Vault, Graph) |
| OAuth 2.0 (Generic) | | | GitHub, Slack, Spotify |
| Basic Auth | | N/A | Username + password |
| Multi-Auth | | Mixed | Multiple auth options for one connector |
Note: Multi-auth connectors use
connectionParameterSetsconnectionParameterspac connectorpaconnAPI Key example (apiProperties.json):
{ "properties": { "connectionParameters": { "api_key": { "type": "securestring", "uiDefinition": { "constraints": { "clearText": false, "required": "true", "tabIndex": 2 }, "description": "Your API key from the service dashboard", "displayName": "API Key", "tooltip": "Provide your API key" } } }, "iconBrandColor": "#da3b01", "capabilities": [], "publisher": "Your Name", "stackOwner": "Service Company Name" } }
Critical: Independent Publisher
iconBrandColor"#da3b01"See AUTH_PATTERNS.md for OAuth 2.0, AAD, and Basic Auth patterns.
Policy Templates
Policy templates transform requests/responses without custom code. Defined in
apiProperties.json| Template ID | Purpose |
|---|---|
| Route to dynamic host URL from connection params |
| Inject request/response headers |
| Add default query parameters |
| Redirect request to different path |
| Set body property values |
| Configure polling trigger behavior |
| Fix pagination nextLink routing |
"policyTemplateInstances": [ { "templateId": "setheader", "title": "Set Content-Type Header", "parameters": { "x-ms-apimTemplateParameter.name": "Content-Type", "x-ms-apimTemplateParameter.value": "application/json", "x-ms-apimTemplateParameter.existsAction": "override", "x-ms-apimTemplateParameter.newValue": "application/json" } } ]
See POLICY_TEMPLATES.md for all templates with examples.
Custom Code (script.csx)
C# code for request/response transformation when policy templates aren't sufficient.
public class Script : ScriptBase { public override async Task<HttpResponseMessage> ExecuteAsync() { if (this.Context.OperationId == "MyOperation") return await HandleMyOperation().ConfigureAwait(false); // Forward all other requests unchanged return await this.Context.SendAsync( this.Context.Request, this.CancellationToken ).ConfigureAwait(false); } }
Constraints: .NET Standard 2.0 | 2-minute timeout | 1 MB max file size | One script per connector
Common Pattern: Build Base64 Identifier from Connection Fields
When the upstream API expects a computed identifier (for example
base64("app_name:email")connectionParametersscript.csxvar appName = GetHeaderValue("app_name")?.Trim(); var email = GetHeaderValue("email")?.Trim(); if (!string.IsNullOrWhiteSpace(appName) && !string.IsNullOrWhiteSpace(email)) { var appIdentifier = Convert.ToBase64String(Encoding.UTF8.GetBytes($"{appName}:{email}")); // Inject into query/header as required by the API // Remove raw app_name/email headers before forwarding }
Guidance:
- Use UTF-8 before Base64 encoding
- Trim values before encoding
- Remove raw source headers after deriving the computed identifier
- If accepted by the API, set both query and header forms for compatibility
- Prefer deterministic header injection via
+policyTemplateInstances
usingsetheader
, then consume those headers in@connectionParameters('...')script.csx
Example
apiProperties.json"policyTemplateInstances": [ { "templateId": "setheader", "title": "app_name", "parameters": { "x-ms-apimTemplateParameter.name": "app_name", "x-ms-apimTemplateParameter.value": "@connectionParameters('app_name')", "x-ms-apimTemplateParameter.existsAction": "override", "x-ms-apimTemplate-policySection": "Request" } } ]
See CUSTOM_CODE.md for full reference with examples.
Webhook Triggers
Mark an operation as a webhook trigger with
x-ms-trigger"/hooks": { "x-ms-notification-content": { "schema": { "$ref": "#/definitions/WebhookPayload" } }, "post": { "operationId": "WebhookTrigger", "summary": "When an event occurs", "x-ms-trigger": "single", "x-ms-trigger-hint": "To see it work, create a new item in the service.", "parameters": [ { "name": "body", "in": "body", "schema": { "type": "object", "properties": { "callbackUrl": { "type": "string", "x-ms-notification-url": true, "x-ms-visibility": "internal" } } } } ], "responses": { "201": { "description": "Created" } } } }
Requirements: Must also define a DELETE operation so the platform can unregister webhooks. The API must return a
LocationSee WEBHOOK_TRIGGERS.md for complete patterns.
Certification & Submission
See CERTIFICATION.md for full step-by-step certification workflows, packaging instructions, and submission details for both publisher types.
Connector Requirements (Both Publisher Types)
Connector Title:
- ≤30 characters, no restricted words (
,API
,Connector
)Copilot Studio - The
suffix goes on the PR title, not the connector title in the OpenAPI definition(Independent Publisher)
Connector Description: 30–500 characters, ≤1000 total, no HTML tags.
Icon (Verified Publisher only): Custom icon required — 100×100 to 230×230 px, PNG, non-white/non-default background.
OAuth: Currently unsupported for Independent Publisher certification.
Certification Process Summary
| Step | Independent Publisher | Verified Publisher |
|---|---|---|
| 1 | Verify connector doesn't already exist | Prepare connector artifacts + custom icon |
| 2 | Submit proposal PR ( | Run Solution Checker |
| 3 | Build connector after approval | Create |
| 4 | Submit artifacts to same PR | Package solution zip + intro.md |
| 5 | Complete OneVet identity verification | Validate with ConnectorPackageValidator.ps1 |
| 6 | Certification review → deploy (~15 biz days, Fridays) | Upload to blob (SAS URL) → submit via Partner Center (~15 biz days, Fridays) |
Office Hours: Tuesdays 3:30–4:30 PM UTC with the Connector Certification Team.
PR Checklist
- All files in correct directory (
orindependent-publisher-connectors/
)certified-connectors/ - PR targets
branch (neverdev
)master -
passes swagger validation (use Solution Checker)apiDefinition.swagger.json -
is valid JSON (no trailing/extra data) and contains no emptyapiDefinition.swagger.json
parameter/response/schema placeholders{} -
matches schemaapiProperties.json -
/readme.md
follows template (Publisher, Prerequisites, Operations, Credentials, Known Issues)intro.md - No secrets or real API keys in any file
- Connector title is ≤30 characters, no restricted words ("API", "Connector", "Copilot Studio")
- Connector description is 30-500 characters
- Connector description is <= 1000 characters and contains no HTML tags
- Host URL is a production URL (no staging/dev/test URLs)
- Response schemas provided on success responses only (not on
response)default - All
entries have explicit schema type/ref metadata (no ambiguous properties during OpenAPI→WADL conversion)definitions.*.properties.* -
array present with Website, Privacy policy, Categoriesx-ms-connector-metadata - All summaries are ≤80 chars, end with alphanumeric, no slashes
- Every action/operation has a non-empty
description - All descriptions are full sentences ending in punctuation, no URLs
- Summary and description text are not identical for any operation or parameter
- All path parameters have
andrequired: truex-ms-url-encoding: "single" - All
values are PascalCase with no non-alphanumeric charactersoperationId - For OAuth connectors:
(not"redirectMode": "GlobalPerConnector"
)"Global" - For Independent Publisher:
isiconBrandColor"#da3b01" - For Independent Publisher with OAuth: detailed instructions for creating the OAuth app
- At least 10 successful calls per operation tested
- Screenshots of 3+ unique operations working in a Flow (Independent Publisher)
- All strings are in English, free of spelling/grammar errors
- JSON uses 4-space indentation, no trailing whitespace
- Package validated with ConnectorPackageValidator.ps1
CLI Deployment
Two CLI tools can deploy custom connectors. Power Platform CLI (
) is the modern, recommended tool. pac
is the legacy Python-based tool still used in many existing guides.paconn
| Feature | | |
|---|---|---|
| Install | | |
| Auth | | |
| Solution-aware | Yes — | No |
| Scaffold | | N/A |
| List connectors | | N/A |
| Validate swagger | N/A (use ConnectorPackageValidator.ps1) | |
| Status | Actively maintained | Maintenance mode |
Power Platform CLI (pac connector
)
pac connector# Install (Windows) winget install Microsoft.PowerPlatformCLI # Or install via dotnet dotnet tool install --global Microsoft.PowerApps.CLI.Tool # Authenticate pac auth create --environment <environment-url-or-id> # Scaffold a new connector (generates starter apiProperties.json) pac connector init \ --connection-template OAuthAAD \ --generate-script-file \ --generate-settings-file \ --outputDirectory MyConnector # List connectors in current environment pac connector list # Create a connector pac connector create \ --api-definition-file apiDefinition.swagger.json \ --api-properties-file apiProperties.json # Create with icon, custom code, and add to a solution pac connector create \ --api-definition-file apiDefinition.swagger.json \ --api-properties-file apiProperties.json \ --icon-file icon.png \ --script-file script.csx \ --solution-unique-name MySolution # Update an existing connector pac connector update \ --api-definition-file apiDefinition.swagger.json \ --api-properties-file apiProperties.json \ --connector-id <connector-id> # If connector uses custom code, ALWAYS include script file on update pac connector update \ --api-definition-file apiDefinition.swagger.json \ --api-properties-file apiProperties.json \ --script-file script.csx \ --connector-id <connector-id> # Download a connector's files pac connector download \ --connector-id <connector-id> \ --outputDirectory ./MyConnector
paconn CLI (Legacy)
# Install the CLI pip install paconn # Authenticate paconn login # Create a connector paconn create --api-def apiDefinition.swagger.json --api-prop apiProperties.json # With custom code and icon paconn create --api-def apiDefinition.swagger.json --api-prop apiProperties.json \ --script script.csx --icon icon.png # Update an existing connector paconn update --api-def apiDefinition.swagger.json --api-prop apiProperties.json \ --connector-id <connector-id> # Validate swagger definition paconn validate --api-def apiDefinition.swagger.json # Download connector files paconn download -e <environment-id> -c <connector-id>
Tip: Both CLIs support a
file to store environment, connector ID, and file paths — avoiding repetitive flags on every command. When usingsettings.json, always download first as a backup before runningpaconn.update
Reliability note:
withpac connector updatecan intermittently fail with--script-file(often surfaced as upstream 502). This is commonly transient; retry the same command after a short delay before changing connector files.CustomScriptProvisioningFailed
README Template
# Service Name Short description of the service (2-3 sentences). ## Publisher: Your Name ## Prerequisites - An account with [Service Name](https://service.com) - An API key (obtained from Settings > API Keys) ## Supported Operations ### List Items Retrieves all items from your account. ### Create Item Creates a new item with the specified properties. ## Obtaining Credentials Step-by-step instructions for getting API credentials. ## Known Issues and Limitations - Rate limited to 100 requests per minute - Maximum 1000 items per response ## Deployment Instructions Run one of the following commands: \`pac connector create --api-definition-file apiDefinition.swagger.json --api-properties-file apiProperties.json\` or (legacy): \`paconn create --api-def apiDefinition.swagger.json --api-prop apiProperties.json\`
Pagination Support
For connectors to leverage Power Platform's built-in paging, the API must return responses following this pattern:
{ "nextLink": "https://api.example.com/items?page=2", "value": [ { "id": "1", "name": "Item 1" }, { "id": "2", "name": "Item 2" } ] }
Requirements:
— Array of result items (required on every page)value
— Full URI to the next page (present only when more pages exist; omit on the final page)nextLink- Return HTTP 200 for all paginated responses
When the last page is reached, omit
nextLinkImportant runtime caveat (custom code):
- Do not rely on
to reshape pagination payloads for built-in auto paging.script.csx - In practice, follow-up requests triggered internally by platform auto-pagination may bypass custom response transformation logic.
- If page 1 is transformed to include
/value
but the upstream API returns a different shape on subsequent pages (for examplenextLink
/data
), built-in pagination can still fail.next
Recommended approach:
- Prefer native upstream pagination contracts for built-in paging (
+value
on every page).nextLink - If upstream payloads are non-standard and cannot be changed, implement manual pagination in the flow (Do Until) or create a dedicated custom action that fetches/aggregates pages explicitly.
Pagination decision tree (use this before implementing):
- Can the upstream API return
+value
on every page?nextLink
- Yes → Use built-in connector pagination.
- No → Continue to step 2.
- Can
policy safely map the API's paging model?updatenextlink
- Yes → Use
+ built-in pagination.updatenextlink - No → Continue to step 3.
- Need all records in a single action output?
- Yes → Build a dedicated custom "fetch all pages" action.
- No → Use manual pagination in Flow (
) and process page-by-page.Do Until
Rule of thumb: If pagination correctness depends on response reshaping in
script.csxIf the API uses non-standard pagination (e.g.,
pagelimit- Use the
policy template to rewrite the pagination URL into theupdatenextlink
format Power Platform expectsnextLink - Build pagination logic in a Power Automate flow using a Do Until loop that increments the page parameter until no more results are returned
Add
limitpage{ "name": "limit", "in": "query", "type": "integer", "required": false, "x-ms-summary": "Page Size", "description": "The number of items to return per page." }, { "name": "page", "in": "query", "type": "integer", "required": false, "x-ms-summary": "Page Number", "description": "The page number of results to retrieve." }
Using AI to Accelerate Development
Leverage AI assistants to generate boilerplate OpenAPI extensions and documentation. This is especially valuable when an API has many operations or parameters that each need
x-ms-summarydescriptiontitleGenerating OpenAPI extensions prompt:
Acting as a Power Platform developer, I would like your assistance in writing a custom connector. I will provide each path for the API. Include the following:
- A
andsummaryattribute for each pathdescription- A
anddescriptionattribute for each path parameter and response property; thex-ms-summaryshould read like a title for the name fieldx-ms-summary- A
,title, anddescriptionattribute for each response property; thex-ms-summaryandtitlewill be the samex-ms-summary- If the
attribute is used in thename, then update the description to use the newdescriptionattributetitlePlease update the file with those additional attributes and provide it back to me. Here is the first path:
<paste path here>
Generating README prompt:
Acting as a technical writer, create a README.MD file for the custom connector. Below is the template — do not deviate from it. When generating the operations, include all input attributes and use the friendly names.
TEMPLATE:
# {Connector Title} {Description from the OpenAPI info.description} ## Publisher: {Your Name} ## Prerequisites {How to get an account and API credentials} ## Supported Operations ### {Operation Summary} {Operation description} - **Inputs:** `{Param x-ms-summary}`: {param description} - **Outputs:** `{Property title}`: {property description} ## Obtaining Credentials {Step-by-step instructions} ## Known Issues and Limitations {Current limitations or "Currently, no known issues or limitations exist."}OPENAPI FILE:
<paste full apiDefinition.swagger.json>
Tips:
- Process paths individually for APIs with many operations — large files may exceed context limits
- Always review and validate AI output against the coding standards before submission
- AI works best when the source API has comprehensive documentation
Testing and Debugging
After importing the connector into Power Platform via the Custom Connector Wizard or CLI:
- Test every operation in the connector's Test tab — run at least 10 successful calls per operation
- Use the Swagger Editor toggle in the custom connector editor for quick inline edits to fix validation errors
- Common schema validation fixes:
- Remove
arrays from response schemas — if the API doesn't always return every field, therequired
constraint causes validation failures. Keeprequired
on request body schemas but remove from response schemasrequired - Fix type mismatches — if the API returns a string where the schema says integer (or vice versa), update the schema to match actual API behavior
- Remove empty schema properties — empty
on responses can cause issuesproperties: {}
- Remove
- Re-test after every change — iterate until all operations pass cleanly
- Create test flows in Power Automate using 3+ unique operations to verify end-to-end behavior and capture screenshots for PR submission
Post-Deploy Verification (Recommended)
After
pac connector createpac connector update- Download the deployed connector files using
pac connector download --connector-id <id> - Perform semantic JSON comparison between local and downloaded files
- Focus on functional parity for:
- OpenAPI paths/parameters/responses
mappingsx-ms-dynamic-values
and script wiringconnectionParameters
- Treat these as common platform-managed non-functional differences unless behavior changed:
may be auto-addedpolicyTemplateInstances
orpublisher
may differ/appear blank in downloadedstackOwnerapiProperties.json
Best Practices
Do:
- Use
on every parameter and schema property (controls designer labels)x-ms-summary - Use
for parameters with fixed values (e.g.,x-ms-visibility: "internal"
)api-version - Provide default values for all
required parametersinternal - Include complete response schemas on success responses only (enables dynamic content in flows)
- Use
definitions and$ref
parameters for reusable schemas and shared parameters$ref - Test with the custom connector wizard before submitting PR — run at least 10 successful calls per operation
- Run Solution Checker and ConnectorPackageValidator.ps1 before submitting
- Use policy templates before reaching for custom code
- Use PascalCase for
— remove all non-alpha charactersoperationId - Keep
to 80 characters or fewer, sentence case, ending with an alphanumeric charactersummary - Ensure summaries contain only alphanumeric characters or parentheses — no slashes
- Start summaries with "List" (returns many) or "Get" (returns one); for triggers: "When a [event]"
- Make sure
andsummary
have different text on every operation/parameterdescription - Write
as full sentences ending in punctuation — no URLsdescription - Keep parameter helper text concise for designer UX; avoid repetitive boilerplate and long non-clickable references
- Add
(Title Case) andtitle
(full sentence) to all definition properties (skip fordescription
)$ref - Add
and"x-ms-url-encoding": "single"
to all path parameters"required": true - Add
/minimum
when number/integer ranges are knownmaximum - Use
for true/false inputs instead oftype: "boolean"
flagsstring - For nullable response primitives, use
and remove fromx-nullable: true
when null/omitted is possiblerequired - Ensure all text is in English and free of grammatical/spelling errors
- Capitalize abbreviations to avoid translation issues
- Use
for all OAuth connectors"redirectMode": "GlobalPerConnector" - Use 4-space soft tabs and remove trailing whitespace in JSON files
- Use only production host URLs (no staging, dev, or test URLs)
- Explicitly set
andconsumes
toproduces
— don't rely on defaults["application/json"] - Back up connector files using source control before running
commandsupdate - For APIs with multiple cloud endpoints (e.g., commercial, GCC, GCC High, DoD), use the
policy template to let users select the correct endpoint at connection timedynamichosturl
Don't:
- Use OpenAPI 3.0 — must be Swagger 2.0
- Include real API keys or secrets in files (use dummy values:
)<<Enter your API key>> - Submit PR to
branch (always targetmaster
)dev - Leave
empty or missingx-ms-connector-metadata - Use wrong brand color for Independent Publisher (must be
)#da3b01 - Skip response schemas (breaks dynamic content in Power Automate)
- Put schemas on the
response — schemas belong on explicit success responses (200/201) onlydefault - Exceed 1 MB for the OpenAPI definition file
- Put schemas on error responses (4xx/5xx) — descriptions only
- Leave
values on definition properties (only on operation parameters)default - Include empty properties unless they are required
- Put URLs in
ortitle
fieldsdescription - Name any parameter
(reserved by the platform)connectionId - Include body or form data parameters on GET operations
- Use
— must be"redirectMode": "Global"
(mandatory since Feb 2024)"GlobalPerConnector" - Exceed 30 characters for connector title
- Include
arrays on response schemas — they cause validation failures when the API omits optional fieldsrequired - Use OpenAPI 3 nullable union syntax in Swagger 2.0 files (for example
)"type": ["integer", "null"]
Known limitation: When using
paconnstackOwnerapiProperties.jsonpaconn updatestackOwnerpaconnpac connectorSee COMMON_MISTAKES.md for a full error catalog with fixes.
Session Learnings
Use this section as a lightweight changelog for practical field learnings that should influence future connector work.
2026-02-18: HDX Connector Session
- Swagger 2.0 strictness: Non-body parameters without
caused APIM import failures (type
); adding explicitJSON is valid against no schemas from 'oneOf'
resolved deployment.type - Metadata-driven UX: Mapping metadata endpoints to
significantly improved usability by enabling dropdowns for common filter parameters.x-ms-dynamic-values - Computed auth pattern: Collecting
+app_name
as connection parameters and computingemail
inapp_identifier
(UTF-8 Base64) produced a cleaner auth experience.script.csx - Deterministic parameter flow: For custom code that reads connection values from headers, explicitly map with
+policyTemplateInstances
(setheader
,@connectionParameters('app_name')
) instead of relying on implicit runtime behavior.@connectionParameters('email') - Input normalization: Trimming connection values before encoding prevented malformed identifiers from accidental whitespace.
- Operational reliability:
with custom code can intermittently fail withpac connector update
/502; retrying the same command after a short delay often succeeds.CustomScriptProvisioningFailed - Deployment discipline: When a connector has
, includescript.csx
on every--script-file script.csx
; otherwise code changes might not be published with schema updates.pac connector update - Verification approach: Post-deploy semantic comparison is more reliable than byte-for-byte diff because downloaded files may include platform-managed differences.
- WADL hardening: In addition to property typing, Power Apps WADL conversion also requires typed array
and rejectsitems
properties inreadOnly
arrays.required
2026-02-25: HDX Connector UX & Nullability Session
- Input description UX: Power Automate surfaces parameter
as helper text; concise descriptions materially improve usability. Prefer short guidance over repeated phrases like "Filter the response by...".description - No dead links in helper text: URLs/HTML anchors in parameter descriptions are not useful in designer helper text; remove them from input descriptions.
- Enum helper strategy: For short enums, include values inline (
). For long enums shown as dropdowns, use concise text such as "Select from dropdown.".Allowed values: ... - Boolean correctness: Converted boolean-like query flags (
,has_hrp
,in_gho
,origin_*
,asylum_*
) fromis_hxl
tostring
to align schema with runtime semantics.boolean - Swagger 2.0 nullable safety: Avoid
arrays (for exampletype
) because they can pass some validators but fail connector import/parsing; use["integer", "null"]
with scalarx-nullable: true
instead.type - Required vs nullable: If upstream API returns
or omits fields, remove those fields from responsenull
arrays rather than coercing values (for example, avoid null→0 data mutation unless explicitly desired).required
2026-02-26: HDX Auto-Pagination Session
- Auto-pagination + custom code caveat: Built-in platform auto-pagination may execute follow-up page calls outside custom
response-shaping assumptions.script.csx - Design implication: Do not depend on custom code to retrofit page 2+ into
/value
for built-in pagination.nextLink - Preferred fallback: Use manual pagination (Do Until) or a dedicated "fetch all pages" action when the upstream API cannot natively emit Power Platform paging shape on every page.
Troubleshooting
| Symptom | Likely Cause | Fix |
|---|---|---|
| Non-body parameter missing | Add |
| Schema on | Move schema to the |
| Transient deployment error | Retry the same |
| Dynamic content missing in Power Automate | No response schema on success response | Add a complete schema to the |
| Path parameter missing | Add |
| Parameter named | Rename the parameter (e.g., |
| Array parameter with | Change to |
| Ambiguous definition properties (missing | Ensure every |
| Properties show raw technical names in designer | Missing | Add |
| Double-encoded path parameters | Missing | Add |
| OAuth connector certification rejected | Using | Change to |
| Connector title rejected | Title > 30 chars or contains "API"/"Connector" | Shorten title and remove restricted words |
For the full error catalog with detailed fixes and code examples, see COMMON_MISTAKES.md.
Related Files
- OPENAPI_EXTENSIONS.md — Detailed reference for all
extensions with examplesx-ms-* - AUTH_PATTERNS.md — API Key, OAuth 2.0 (AAD/Generic), Basic Auth, and Multi-Auth patterns
- POLICY_TEMPLATES.md — All policy template IDs with configuration examples
- CUSTOM_CODE.md — C#
patterns, ScriptBase class, supported namespacesscript.csx - WEBHOOK_TRIGGERS.md — Webhook trigger registration, notification, and deletion patterns
- CERTIFICATION.md — Full certification workflows for Independent and Verified Publishers, packaging, and submission
- EXAMPLES.md — Complete working connector examples for common scenarios
- COMMON_MISTAKES.md — Error catalog with fixes and validation tips