[Update] WebAPI 2.3.2 GA

Official release notes:
https://docs.uipath.com/activities/other/latest/developer/release-notes-uipath-web-activities#v232

It is stable, powerful and now also offers a debugging mode which makes the activity output extra information when testing the request:

See it in action below, where our debug output and Studio Autopilot do all the work for you:

(start the video at 7:30)

[Update] WebAPI 2.2.0-preview

Hi everyone, we released the WebAPI 2.2.0-preview as a follow-up to the original preview:

It introduces two huge improvements: design-time testing and cURL import features.

You can read more about it here:

It is really cool

[Update] WebAPI 2.1.0-preview

To follow-up on the original preview, we are following it up with a new one.

Learn more about it here:

Introduction

We are pleased to announce the release of the new Http Request activity, included in the WebAPI 2.0.0-preview package.

You can already try it out by:

• updating to the WebAPI 2.0.0-preview package version
• on our Cloud Community

This activity replaces the legacy version (the old activity was renamed to Http Request (legacy)) and delivers a more robust, highly configurable solution designed to meet the demands of modern HTTP workflows.

image683×423 20.1 KB

Built on top of the state-of-the-art .NET HttpClient, this updated activity provides a solid foundation for everything from simple API calls to complex integrations involving authentication, retries, cookie handling, streaming, and more.

Highlights at a Glance

• Full retry policy support – customizable retry count, delays, backoff, jitter and specific status codes
• SSL and client certificate support
• Automatic cookie handling with with the possibility to manually add more
• Redirect support with configurable limits
• Full proxy support – configure custom proxies, including support for authentication and bypass lists
• Flexible request body formats – JSON, form-encoded, multipart (including file uploads), binary and stream
• Built-in fault tolerance – optional Continue on Error lets workflows recover gracefully

Note 1: The activity will offer the best experience on the latest Studio version, with data mapping widget support used on several properties. Older Studio versions will fall back to the expression editor.

Full Proxy Configuration Support

The new Http Request activity introduces full proxy configuration through the WebProxyConfiguration class. This enables users to define proxy address, bypass rules, and credentials with fine-grained control. It integrates seamlessly with the Data Mapping widget, ensuring a smooth and user-friendly experience when configuring values dynamically at runtime.

image1244×862 63 KB

C#:

new WebProxyConfiguration
{
    Address = new Uri("http://localhost:8080"),
    ProxyCredentials = new System.Net.NetworkCredential("alexandru.marinescu@uipath", orchSecurePass),
    BypassOnLocal = true,
    BypassList = new string[]
    {
        "http://first.bypass.list.com",
        "http://second.bypass.list.com"
    }
}

VB:

New WebProxyConfiguration() With {
	.Address = New Uri("http://localhost:8080"),
	.ProxyCredentials = New System.Net.NetworkCredential("alexandru.marinescu@uipath", orchSecurePass),
	.BypassOnLocal = True,
	.BypassList = New String() {"http://first.bypass.list.com", "http://second.bypass.list.com"}
}

A Closer Look at Multipart Form Data

When sending multipart form data, the HTTP Request activity gives you complete control over how each part of the request body is built—whether you’re uploading files, submitting form values, or mixing different content types

The image shows a configuration interface for an HTTP Request, including options for setting the request method, URL, parameters, headers, body type, and various data handling settings. (Captioned by AI)334×472 6.45 KB

You can configure any of the options you require at the same time, and we’ll automatically bundle everything into a single multipart request for you.

You can add:

• Files: Either Local files (file path strings) or Resource files, via the two provided collections.
• Url-encoded Form data: Basic key-value pairs encoded using application/x-www-form-urlencoded format.
• Form data parts: For full flexibility, you can also compose a collection of FormDataPart objects, using either the Data Mapping widget or the Expression editor
  
  

  image1252×867 34.4 KB
  • FileFormDataPart – for file streams based on a given path
  • BinaryFormDataPart – for raw byte arrays
  • TextFormDataPart – for string payloads like JSON or plain text, with customizable encoding and MIME type

Note: The automatically inserted options serve as examples and will not be computed for the request until further configuration. You can configure them based on the content type of each attachment:

image921×105 10.8 KB

By combining these parts, you can construct a precise and compliant HttpRequestMessage body for any API that requires multipart/form-data. The multipart boundary delimiter is automatically generated and correctly inserted into the Content-Type header—no manual configuration needed. Whether you’re sending a complex form or handling file uploads with metadata, this model ensures you’re covered.

Here’s how you might combine all three in a single multipart form-data request, if the Data Mapping widget is not available:

C#:

New List<FormDataPart>()
{
    New TextFormDataPart("{\"jsonKey\":\"jsonValue\"}", "textPart", "application/json", System.Text.Encoding.UTF8),
    New BinaryFormDataPart(System.Text.Encoding.UTF8.GetBytes("binaryContent"), "binaryPart", "application/octet-stream"),
    New FileFormDataPart("C:/Work/tmp-453.txt", "filePart", "text/plain", "testfile.txt")
};

VB:

New List(Of FormDataPart) From {
	New TextFormDataPart("{""jsonKey"":""jsonValue""}", "textPart", "application/json", System.Text.Encoding.UTF8),
	New BinaryFormDataPart(System.Text.Encoding.UTF8.GetBytes("binaryContent"), "binaryPart", "application/octet-stream"),
	New FileFormDataPart("C:/Work/tmp-453.txt", "filePart", "text/plain","testfile.txt")
}

Each type of FormDataPart comes with several constructors, allowing the user to benefit from commonly used defaults. Each default is mentioned in the IntelliSense context menu like so:

image1512×296 37 KB

Understanding FileTypeMapper

The FileTypeMapper is a behind-the-scenes utility designed to streamline how Content-Type headers are assigned when uploading files in HTTP requests. As its name suggests, it maps file extensions to their appropriate MIME types — exactly as advertised.

What It Does

Whenever a file is added to an HTTP request, FileTypeMapper steps in to determine the correct Content-Type header based on the file extension. This happens in two primary scenarios:

1. Stream Body Type
   When the request is configured to send a Stream body (e.g. uploading a single file), the FileTypeMapper automatically assigns the correct Content-Type header. You can override this header manually if needed.
   Note: if a Resource file is provided instead, and its MIME Type is configured, we will use that value before inferring with the FileTypeMapper.

2. MultipartFormData Body Type
   When using multipart form data, FileTypeMapper will:

• Assign a Content-Type header for each file added via FileFormDataPart or via lists of local/resource files.
• For FileFormDataPart, users can explicitly override the default content type.
• For file lists, the automatically assigned content type cannot be overridden.
• For resource file lists, the MIME Type will be used, if available.

How It Works

Under the hood, FileTypeMapper uses a predefined dictionary of file extensions mapped to their MIME types. It covers most common types — including images, documents, audio/video files, archives, and common web content like .json, .xml, .html, and more. If a file extension is unknown or missing, it safely defaults to “application/octet-stream”

Long story short - you will rarely have to configure your Content-Type yourself, it should mostly happen automatically

Retry Policies

We have added support for two customizable retry strategies to help manage transient failures in HTTP-based workflows:

Basic Retry

This is a straightforward policy where users can configure:

• Retry Count – how many times to retry the request
• Delay – fixed delay between retries (in milliseconds)

image682×348 21.8 KB

Exponential Backoff

For more advanced scenarios, this strategy offers:

• Retry Count – number of attempts
• Initial Delay – wait time before first retry
• Multiplier – controls exponential growth of delay
• Jitter – optional randomization to avoid overloading

image683×429 27.5 KB

Common Features (Both Policies)

• Retry-After Header Support: If the response contains a Retry-After header, you can choose to honor it. To maintain control, a maximum delay cap can be set to avoid excessively long waits from server instructions.
• Retry Conditions:
  • Automatically retries on HttpRequestException – this covers most network-related issues, such as timeouts, unreachable servers, or broken connections.
  • Retries on specific HTTP status codes (customizable). The default set includes:
    • 408 Request Timeout
    • 429 Too Many Requests
    • 500 Internal Server Error
    • 502 Bad Gateway
    • 503 Service Unavailable
    • 504 Gateway Timeout

These policies aim to offer both simplicity and flexibility depending on your use case.

Result Output

The new HTTP Request activity now returns a structured result that captures key details from the server’s response. It includes:

• StatusCode – the HTTP status code returned by the server
• TextContent – the response body as a string, if available
• BinaryContent – raw response bytes, for handling non-text content
• File – an ILocalResource representing the response as a local file, if applicable
  • Saves the content to the user’s Downloads folder.
  • The filename is first extracted from the response headers; if missing or invalid, a unique name is generated in such a way to avoid overwriting existing files.
• Headers – all response headers, including those related to caching, authentication, and more
• ContentHeaders – headers specifically related to the body content (e.g., Content-Type, Content-Length)
  
  

  image676×413 17.8 KB

The use of ILocalResource provides seamless access to file-based responses. Whether you’re downloading a PDF, an image, or a CSV, this abstraction lets you handle the result as a locally accessible file—ready for downstream processing or inspection.

Cookies

We implemented a shared cookie container that will seemingly pass cookies between the HTTP Requests that have the Enable cookies property set to True:

Such requests will now automatically interpret the Set-Cookie header of each request, and properly attach them to the requests respecting all domain restrictions.

You can also add additional cookies to your requests via the Additional cookies property:

Variable input is available on (almost) all properties

Nearly all properties can now be configured dynamically by passing a variable, instead of forcing a static, design-time configuration.

Built for Peace of Mind

Between the sensible default values the activity initializes with, the flexibility of the retry mechanisms, the convenience of automatic redirects, and the resilience offered by the Continue on Error option, we’ve built an HTTP activity designed to be reliable, forgiving, and easy to work with—whether you’re just starting out or deploying at scale. It just works. No surprises, no headaches.

Migration Notes

There is no action needed for existing workflows.

The old activity has simply been renamed to HTTP Request (legacy) when you’ll search for it. The new activity is what you’ll now find under the HTTP Request activity name. We recommend switching to the new one for all future development.

Learn More

We encourage you to explore the full capabilities of the new Http Request activity in our upcoming official documentation page. There, you’ll find detailed explanations, property breakdowns, examples, and best practices to help you make the most out of every feature.

Feedback?

We’d love to hear how this new version works for you. Questions? Feature suggestions? Let’s discuss below.

Everyone, please let us know what you think

We know we took our time with this one, but we hope that the features available to you through this new HTTP Request will make your life much easier!

Perfect! And all activities should follow this design pattern.

I like the idea of a build-in retry scope around status-codes. I’ll definitly try it out soon!

It is definitely superior and clearer to understand when dealing with different body types. I like the output object with all the properties related to the response

Even though I am still waiting for a native way to create a JSON body without the need to concatenate text

We had to pick our battles

However! Try it like this:

It makes it a bit better, and we are thinking about ways to improve it further.

Also, don’t forget that you can create custom objects in Studio from a JSON schema. You can then simply serialize it to a string with a code snippet, or by using the new Serialize JSON activity which we completely forgot to mention in the above post

The image displays a variable configuration interface, allowing selection of data types including Boolean, String, and custom types generated from JSON schema. (Captioned by AI)441×355 12 KB

The image shows a configuration screen for HTTP Request and JSON Serialization activities in UiPath, demonstrating settings and mappings for a JSON processing workflow. (Captioned by AI)1136×764 58.8 KB

Excellent, thanks for explaining that. I will use it for sure

Amazing!. I am more than eager to try iot.

Here you can find all the supported HttpStatusCode Enum in order to improve the List of Retry status codes.

New List (Of System.Net.HttpStatusCode) From _
{
	System.Net.HttpStatusCode.RequestTimeout,
	System.Net.HttpStatusCode.TooManyRequests,
	System.Net.HttpStatusCode.InternalServerError,
	System.Net.HttpStatusCode.BadGateway,
	System.Net.HttpStatusCode.ServiceUnavailable,
	System.Net.HttpStatusCode.GatewayTimeout
}

Can this new activity allow us to pass cookie for authentication instead of credentials?

Yes.
You can add additional cookies to your requests via the Additional cookies property:

In your scenario, you must leave the Authentication to “No authentication” and provide the cookie in the a above mentioned list.

If the Enable Cookies is set to True, subsequent requests to that domain will reuse your initially set auth cookie.

Thanks @Alex_Marinescu !

I’ve tried the activity and it worked perfectly! I noticed my cookies was included in the Headers so I did not indicate any values under “Additional Cookies”.

I was doing trial and error on the variable format for the Header and Parameters and attached screenshot below in case anyone needs it.

This image displays a Collection Builder interface for configuring HTTP request headers in a software application, listing several key-value pairs for user agent, language, and other parameters. (Captioned by AI)1091×763 48.8 KB

And if you’re ever in a pinch and want to come back to our proposed default list, there’s a feature just for that.

The image displays a retry policy configuration interface with settings such as retry type, counts, delay, and output options. (Captioned by AI)623×698 38.1 KB

Looks great. One question though, all the output information is part of single object like status code and text response. Also, status code is also in string instead of integer. Is it by design? Going to miss configuration wizard though for quick previews.

The image displays a debugging interface showing HTTP response properties, including status code, headers, and content information. (Captioned by AI)637×355 13.7 KB

Hello

The StatusCode is actually of System.Net.HttpStatusCode type which allows you to either use it directly (with .ToString()) or cast it to an integer like so:

(int)responseContent_1.StatusCode

We know the configuration wizard was nice but it was a Windows project only feature. When we created this activity with Cross-Platform in mind, we aimed to make the best use of all the widgets we had at our disposal, hopefully mitigating the loss of some of the utility that the wizard provided.

We are looking into ways of providing the “TEST” capability cross-platform in future releases.

Looks good, mostly excited about the simple retry mechanism. Need to play around with it a bit more in practice to see how it works, but first instincts say: nice changes!

This update looks really helpful, especially the retry and file upload parts.

A quick feedback on this—having built-in option for request and response logging (headers and body) would be very useful, not just for this, but for all API-related activities. Right now, we use Log Message or Write Line, but still need to add extra steps and write expressions just to check what is being sent or received. A simple checkbox to log this directly would save effort and help during debugging.

Also, a “Test Request” option within the activity itself would be useful to quickly check the API response without running the full workflow.

Hello and thanks for the feedback!

We will be adding enhanced HTTP Diagnostics in the near future.

This initiative will introduce a robust internal tracing and diagnostic layer for the HttpRequest activity. The goal is to enable transparent, structured, and AI-friendly insights into how HTTP requests are executed behind the scenes — significantly improving both user self-help capabilities and support workflows.

We also plan to deliver a lightweight “Test Request” feature for simple scenarios where you don’t have to run the whole workflow.

Stay tuned!

Hi all!

Just wanted to share a working example using the new New HTTP Request activity to call a SOAP web service.
Here’s how I used it to query the capital city of a country via the public CountryInfoService.

Goal

Call this SOAP endpoint:

http://webservices.oorsprong.org/websamples.countryinfo/CountryInfoService.wso

Using the CapitalCity operation with input RO (Romania), and receive Bucharest as response.

New HTTP Request Setup

• Request Method: POST
• Endpoint:
  http://webservices.oorsprong.org/websamples.countryinfo/CountryInfoService.wso
• Headers:

  "SOAPAction": "http://www.oorsprong.org/websamples.countryinfo/CapitalCity"

You can use:

New KeyValuePair(Of String, String)("SOAPAction", "http://webservices.oorsprong.org/websamples.countryinfo/CountryInfoService.wso/CapitalCity")

• Request body Type: Text
• Text content type: text/xml
• Text (XML string): Envelope content

<?xml version="1.0" encoding="utf-8"?>
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" 
               xmlns:ns="http://www.oorsprong.org/websamples.countryinfo">
  <soap:Body>
    <ns:CapitalCity>
      <ns:sCountryISOCode>RO</ns:sCountryISOCode>
    </ns:CapitalCity>
  </soap:Body>
</soap:Envelope>

The image shows a configuration panel for making an HTTP request, specifying a POST method, URL, headers, text-based request body, and UTF-8 encoding. (Captioned by AI)760×869 25.2 KB

Response Example

You’ll get something like:

xml

CopyEdit

@"<?xml version=""1.0"" encoding=""utf-8""?>
 <soap:Envelope xmlns:soap=""http://schemas.xmlsoap.org/soap/envelope/"">
   <soap:Body>
     <m:CapitalCityResponse xmlns:m=""http://www.oorsprong.org/websamples.countryinfo"">
       <m:CapitalCityResult>Bucharest</m:CapitalCityResult>
     </m:CapitalCityResponse>
   </soap:Body>
 </soap:Envelope>

You can then extract the result using Deserialize XML or XPath.

Attached: Working .xaml

I’ve attached a working TestCase.xaml file showing this in action — it uses the New HTTP Request activity to send the SOAP request and and verified the response is correct.

Hope this helps anyone looking to consume SOAP services with the new activity!

Happy automating!
SOAP Request Example.zip (4.4 KB)