Features

Integrations

OpsDash connects to external tools through API keys, outbound webhooks, and Gmail sync. The Lead Capture API accepts inbound data from any source without requiring an SDK.

API keys

Tier: Enterprise (platform:api-access). Manage at Settings → Integrations → API Keys (admin/owner only).

• Keys are stored as SHA-256 hashes — the raw key is shown only once at creation
• Each key is org-scoped and tracks usage_count and last_used_at
• Keys can be revoked at any time (takes effect immediately)

Creating a key: Settings → Integrations → API Keys → Generate New API Key → copy it (not shown again).

Using the key:

curl -X POST https://your-app.com/api/lead-capture \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "Jane Doe",
    "email": "jane@example.com",
    "company": "Acme Corp",
    "source": "zapier"
  }'

Lead Capture API (inbound)

Tier: Pro (platform:lead-capture-api). Endpoint: POST /api/lead-capture

{
  name: string;      // Required
  email: string;     // Required
  company?: string;
  phone?: string;
  source?: string;   // zapier, make, n8n, resend, etc.
  notes?: string;
}

Response: { "success": true, "leadId": "uuid" }

Zapier / n8n / Make: Use a Webhooks/HTTP Request node — POST to the endpoint with Authorization: Bearer YOUR_KEY and the JSON body above.

Outbound webhooks

Tier: Enterprise (platform:webhooks). Manage at Settings → Integrations → Webhooks.

Events sent: lead created, lead converted, deal stage changed, deal won, deal lost, contact created.

Payload format:

{
  "event": "deal.won",
  "org_id": "uuid",
  "timestamp": "2026-03-24T12:00:00Z",
  "data": { "deal_id": "uuid", "title": "...", "value": 15000 }
}

Signature verification: When a webhook secret is set, OpsDash adds an X-OpsDash-Signature header:

const expected = `sha256=${createHmac('sha256', secret).update(rawBody).digest('hex')}`;
const isValid = timingSafeEqual(Buffer.from(expected), Buffer.from(received));

Gmail integration

Tier: Pro (crm:email-integration). Manage at Settings → Integrations → Gmail.

Syncs emails from a connected Gmail account into CRM Activities, giving the team a complete interaction history without manual logging.

Setup flow:

1. Settings → Integrations → Gmail → Connect Gmail
2. Authorize OpsDash to read Gmail (readonly scope)
3. After authorization, click Sync Now or let the cron sync automatically

What gets synced: Emails to/from CRM contact email addresses are matched and linked. Each matched email creates an activity of type email. Emails already synced are not re-imported (tracked by Gmail messageId).