viaSocket Help
QuickStart
Basic of viaSocket
Make your first flow
Step by Step Guide to Build Workflows
Flows
Manage Your Workspace
Invite Team Members to Your Workspace
Use AI to Build Workflows
Webhook as Trigger
Schedule Tasks with Cron
In-built Tools
Multiple Paths
Human Intervention
Custom API
Use JavaScript code
Variable Customizations
Delay
AI
Memory
SMTP
Break
AI Agent
Web Scraping/Crawling
SMS
Looping in workflows
Trigger gets many records — handle one at a time
How to Map Data
Multi-Step Workflow
Drag and Drop Steps in Your Workflow
On/Off Action Steps
Pause or Delete Your Workflows
Duplicate Your Workflow
Running Flows on Historical Data (Bulk Transfer & More)
Webhook Response
Publish Workflow
Request a New App, Trigger, or Action in viaSocket
Metrics
Flow alerts and notifications
History
Error Handling
Security and Compliance
Create and Share a Template of Your Workflow
How to use Ready-Made Automations
How to create and use variables in API JSON and JS code steps
Email to Flow
MCP Server
Fair Usage Policy
Cursor Integration
Claude Desktop Integration
Windsurf Integration
MCP vs viaSocket Embed
Python Client Integration
TypeScript Client Integration
Embed
Showcase Workflow Templates in your Product
Native Embedding
How native embed works
Benefits of Native Embedding
Integration Guide: SaaS, AI & Security
Authentication & Security
Embed Pricing Plans
Steps to integrate Embed
Embed FAQs
LLM FAQ's
Plug Builder
What is Plugin Builder in viaSocket?
Steps to make Plugins in viaSocket
Visibility Configuration
Authentication
No Auth
Authentication - Basic Auth
Authentication Auth2.0 - Implicit Auth
Authentication Auth2.0 - Authorization code
Authentication Auth2.0 - Client Credentials
Authentication Auth2.0 - Password Credentials
Triggers
Instant Triggers
Scheduled Triggers
How to create Actions
File Upload using URL (for all file types)
Plugin Input Fields
Static input fields
Dynamic multiselect
Dictionary
Dynamic Input group
Dynamic dropdown
Dynamic Help Text
Hidden Fields
AI Field
API Configuration
Input Builder
Reusable-Component
Test Your App Integration on viaSocket
viaSocket OAuth
Lifetime Free Access
NGO Heroes Program
Women Leaders Program
Education Champions Program
Agency Growth Program
Influencers’ Power Program
Partnership Program
Affiliate Partner Program
Experts partner program
Billing Partner Program
Partner Badge
Integration Guides
Getting Started - Jira
Getting Started- Zoho Projects
Getting Started - Confluence Cloud
Getting Started - Zoom
Getting Started with Zoho CRM
Getting Started - Bigin
Getting Started - Zoho Sheet
Getting Started - Zoho Cliq
Getting Started - Zoho Writer
Getting Started - Zoho Mail
Getting Started - HubSpot
Getting Started - Xero
Getting Started - Zendesk Support
Getting Started - Zendesk Sell
Getting Started - Box
Getting Started - Klaviyo
How to Find the Chat ID in Google Chat
Getting Started- Gorgias
Getting Started - Asana
Getting Started - Zoho Books
Getting Started - Razorpay
Getting Started- Stripe
Getting Started - JustCall
Getting Started - ActiveCampaign
Getting Started - Pipedrive
Getting Started - Bitbucket
Sangam CRM - Generate Token Key and Login Url
Getting Started with Zoho Desk
Getting Started- Zoho Recruit
Getting Started - Bitly
Getting Started with Zoho Campaigns
Getting Started with Envoy
Getting Started with Contentful
How to Reconnect QuickBooks with viaSocket
Getting Started with Square
Getting Started with LionDesk
Getting Started with Zoho Meetings
Getting Started with LiveChat
Getting Started with Zoho Invoice
Getting Started with Dialpad
Getting Started with Zoho Sprints
Getting Started with Zoho Forms
Getting Started with Mixpanel
Getting Started - Livestorm
Getting Started -Bubble.io
Getting Started - Kommo
Getting Started - Fireflies.ai
Getting Started - Calendly
Getting Started - Zoho Marketing
Getting Started - Freeagent
Getting Started - Nutshell
Getting Started - WATI
Getting Started - BugHerd
How Todoist Filter works
Twitter (X) Connection
Getting Started - Firecrawl
Getting Started - DocsBot AI
Getting Started - YourGPT
YourGPT trigger setup
Getting Started - Pennylane
Getting Started - Chargebee
Getting Started - Facebook Ads Insights
viaSocket vs Zapier, Make, and n8n: Choosing the right automation tool
🔗 Integration & Connectivity
💡User Experience and Learning Curve
🔄 Loop and Conditional Logic
🤝 Collaboration & Sharing Features
🧠 AI & Advanced Features
🛠️ Developer Experience
📞 Support & Customer Success
Plans and Pricing
Lifetime Free Access- Limited Time Offer
Startup Policy
Discount for Developing Nation
Promo Code
Fair Usage Policy
What is a task in viaSocket?
Pricing Comparison
What are credits?
Others
How can experts help you
Support
Service Level Agreement (SLA)
Apply as Beta Tester for viaSocket
END USER LICENSE AGREEMENT
Security and Compliance
Questions
Security Testing Methodology
Vulnerability Managment Tool
Internal Audits
Privacy Related Standards
Application Vulnerability Management
Vulnerability Management
Evaluating Patches and Updates
Endpoint Security - End User
Config Management
Secrets Management
Network Security
Cryptographic Design
Key Management
Threat Intelligence
Monitoring
Incident Response
Incident Communication
Endpoint Security - Production Server
Network/Host Vulnerability Management
Information Security Policy
Technology Languages/Platforms
Data Classification Matrix
viaSocket – Data Encryption Practices
ISO Certificate
Config Management
Logs
Production Data Exfiltration Controls
QA checklist
Have to Follow - Internal Audits
About us
Company Profile
DocStarBuilt with DocStar
Security and Compliance
Questions
QA checklist

QA checklist

1. Input Validation (Basic XSS/SQL Injection)

  • In any input field (e.g., form, search), enter:

    • "><script>alert(1)</script> → Should not execute any script.

    • ' OR 1=1-- → Should not affect login or queries.

  • Observe page behavior and console for script execution or server errors.

2. Session Management

  • Login → Close tab → Reopen and access the app → Should still be logged in if session valid.

  • Login → Wait 30+ minutes idle → Try again → App should timeout session.

  • After logout, try using browser back → Should not allow access to pages.

3. Access Control / IDOR (Insecure Direct Object Reference)

  • Login as User A → Copy a URL containing an object ID (/flow/123)

  • Login as User B → Try accessing that same URL → Should receive Access Denied or 404

4. Error Handling / Information Leakage

  • Force an error (e.g., disconnect network or corrupt URL) → App should show a friendly error page, not a stack trace, database name, or internal path.

  • Look at responses in dev tools → Ensure no sensitive info (tokens, env values, etc.) is leaked.

5. Role-based Access Control (RBAC)

  • Log in with different roles (Admin/User/Viewer, etc.)

  • Try accessing features or APIs not allowed for that role via direct link → App should block or hide.

6. File Upload Validation (if applicable)

  • Try uploading:

    • .exe or .php files → Should be blocked

    • Large files (e.g., >20MB) → Should show limit exceeded

    • Rename a .js file to .jpg → Should still be blocked

  • Ensure uploaded files can’t be directly accessed unless needed

7. Security Headers (Non-CF Controlled)

Use browser dev tools → Network → Any request → Response headers
Check for:

  • X-Frame-Options: DENY

  • X-Content-Type-Options: nosniff

  • Referrer-Policy: no-referrer or strict-origin-when-cross-origin

(CF may not always cover these fully; backend should ensure)

8. Token & API Security

  • Open browser dev tools → Look for JWT or auth tokens → Ensure they are:

    • Stored in secure, HTTP-only cookies (preferred)

    • Not exposed in localStorage/sessionStorage (avoid this if possible)

  • Try calling a few API endpoints manually with an expired/invalid token → Should return 401/403, not data.

© 2025 viaSocket — All rights reserved. A product of walkover
Solutions
Company
Support