This error message is typically surfaced when the connector uses a 2-step authentication method and needs make a /token request first. In these cases, the /token request failed.
For example, connectors that use OAuth 2.0 Client Credentials, make a request to a /token endpoint in order to get an access_token. We then use that access_token to make the primary request.
We recommend validating your HTTP action in Postman or another API testing tool first. Once you are confident your API works, then you can recreate it in Moveworks using the cURL import option. Make sure that all headers, query params, and body are properly set.
️ Failed to construct request. Please make sure that all variables denoted by {{{}}} have corresponding example values
There are a few reasons why your request may fail to be constructed properly.
Your error message may have more details like
missing variable \”okta\”
or some other variable. This means that variable was never defined:
Moveworks uses the Mustache protocol for body templating. This means…
"{{{my_string_value}}}")
{{number}})Check if the base URL in your connector starts with https:// or http://
The hostname may not exist. Double check your base URL is configured properly
The hostname may be private. You can check if a DNS Record is found by copy & pasting your base URL on mxtoolbox.com
This error message forwards the response of the original API Request.
We recommend validating your HTTP action in Postman or another API testing tool first. Once you are confident your API works, then you can recreate it in Moveworks using the cURL import option. Make sure that all headers, query params, and body are properly set.
When a slot value is passed into a query parameter, the Action query parameter generation may URL-decode and then re-encode the value. This can cause + characters to be converted to spaces, corrupting the original value.
This commonly affects any slot value that contains a + character — for example, ISO 8601 timestamps with timezone offsets (2024-01-15T10:30:00+05:00), Base64-encoded strings, or any user-provided input that includes +.
Workaround: Use $REPLACE in DSL to pre-escape the + character before it reaches query parameter encoding:
$REPLACE uses regex, so the + must be wrapped in a character class [+] to be treated as a literal character rather than a regex quantifier.