Signed URLs let you launch authenticated Workflow Studio workflows via secure, one‑time links instead of a generic public URL.

To use them, publish your flow as an authenticated hosted experience and generate a signed link per end user via the signed-url API endpoint. Each link is unique and tied to a specific workflow and end client, preventing link‑sharing, brute‑forced session IDs, and large‑scale fraudulent completions while still giving you a low‑code, hosted experience.

The signed URL token itself is an opaque, base64‑encoded token. The entire signed URL will never exceed 256 characters.

Generate a new signed URL with a valid token for the provided flow, which can be used for future authorized calls for operations on the user state ID. This operation creates a new user state ID if no end client ID is provided.