Apiiro

Apiiro is a platform for secure application development and implementation.

Use Apiiro to trigger Torq workflows

To send events from Apiiro to Torq, you’ll create a webhook in Torq and then create webhook workflow in Apiiro.

Webhooks let you build integrations with SIEM (security information and event management) systems or custom dashboards by subscribing them to specific events in Apiiro. When an event is triggered, Apiiro sends an HTTP POST payload to the webhook's configured URL

to push the selected data to whichever integrations, SIEM systems, or dashboards you've routed it

to.

For webhooks to work, you need to have Apiiro governance rules set up, and build out the workflow

in Apiiro as you would any other workflow.

The governance rules used for the workflow must have assigned risk and include a label defined in

Governance > Definitions.

Create an Apiiro trigger integration in Torq

1. Go to the Integrations page, locate the Apiiro card, and click Add.

2. Enter a meaningful name for the integration.

3. (Optional) Enter authorization headers.

4. Click Add.

5. Copy the Webhook URL that is generated. You'll need this URL when you create a webhook workflow in Apiiro.

Create a webhook workflow in Apiiro

1. Log in to your Apiiro portal.

2. Go to Governance > Workflows and choose an existing workflow or create a new one.

3. In the Then section, choose the Send a webhook action.

4. Enter the URL you copied earlier in Torq.

5. If you added authorization headers when creating the webhook in Torq, enter them here.

6. To check that everything works, you can click the Test Webhook button. Apiiro will send a test GET request to Torq to check the following things:

   • Apiiro is able to reach Torq

   • You can view the request in Torq

Available steps

These are the public steps for Apiiro. Don't see the step you need? No problem; you can easily create custom steps.

• List Applications

• List Risks