The myCRMSIM API enables third-party applications (such as Make.com custom apps) to integrate with the myCRMSIM SMS gateway platform. The API supports OAuth 2.0 authentication, inbound SMS webhooks, and outbound SMS dispatch.
\nMain API: https://backend.mysmsgateway.app
SMS Dispatch: https://api.mysmsgateway.app
The API uses OAuth 2.0 Authorization Code Grant flow. All API endpoints require a Bearer access token in the Authorization header.
Standard rate limits apply per OAuth client. Contact support for higher limits.
\nFor integration questions or technical issues, contact: support@mycrmsim.com
\n","schema":"https://schema.getpostman.com/json/collection/v2.0.0/collection.json","toc":[{"content":"myCRMSIM API Documentation","slug":"mycrmsim-api-documentation"}],"owner":"50634098","collectionId":"dec4cadb-bff2-4336-a760-eb25bf4b74cc","publishedId":"2sBXwjvZ7m","public":true,"customColor":{"top-bar":"FFFFFF","right-sidebar":"303030","highlight":"FF6C37"},"publishDate":"2026-05-21T15:48:22.000Z"},"item":[{"name":"OAuth - Authorize User","id":"d195fc88-00f8-45c7-8dfa-3874a37dd23f","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[],"description":"Initiates the OAuth 2.0 authorization flow. This URL should be opened in the user's browser (not called from an API client) so they can sign in and grant consent.
\nRedirect user's browser to this URL with client_id, redirect_uri, response_type=code, and optional state.
User signs in to myCRMSIM (if not already signed in).
\nUser clicks \"Allow\" on the consent page.
\nmyCRMSIM redirects the browser to redirect_uri with ?code=AUTH_CODE&state=....
The application then exchanges the code for an access token using the /oauth/token endpoint.
Redirects the browser to: {redirect_uri}?code=AUTHORIZATION_CODE&state=YOUR_STATE
Redirects to: {redirect_uri}?error=ERROR_CODE&error_description=...
This endpoint returns an HTML page for browser users. It cannot be called as a JSON API — it must be opened in a browser to trigger the OAuth consent flow.
\n","urlObject":{"query":[],"variable":[]},"url":""},"response":[],"_postman_id":"d195fc88-00f8-45c7-8dfa-3874a37dd23f"},{"name":"2. OAuth - Exchange Code for Token","id":"f231d9cb-6535-4327-b502-e22b8c0c668c","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[],"description":"Exchanges the authorization code (received via redirect after /oauth/authorize) for an access token + refresh token.
Authorization: Basic — HTTP Basic auth with your OAuth credentials
Content-Type: application/json
{\n \"grant_type\": \"authorization_code\",\n \"code\": \"AUTH_CODE\",\n \"redirect_uri\": \"https://www.make.com/oauth/cb/app\"\n}\n\n{\n \"access_token\": \"eyJhbGciOi...\",\n \"refresh_token\": \"def502004a8b...\",\n \"token_type\": \"Bearer\",\n \"expires_in\": 3600\n}\n\n{\n \"error\": \"invalid_grant\",\n \"error_description\": \"The authorization code is invalid or expired.\"\n}\n\nUses a refresh token to obtain a new access token when the old one expires.
\nAuthorization: Basic
Content-Type: application/json
{\n \"grant_type\": \"refresh_token\",\n \"refresh_token\": \"EXISTING_REFRESH_TOKEN\"\n}\n\n{\n \"access_token\": \"eyJhbGciOi... (new)\",\n \"refresh_token\": \"def502004a8b... (may rotate)\",\n \"token_type\": \"Bearer\",\n \"expires_in\": 3600\n}\n\nInvalidates an access token, preventing further use.
\nAuthorization: Bearer ACCESS_TOKEN
Content-Type: application/json
{\n \"token\": \"ACCESS_TOKEN_TO_REVOKE\"\n}\n\nEmpty response body, HTTP 200 OK.
\n","urlObject":{"query":[],"variable":[]},"url":""},"response":[],"_postman_id":"fb2ee549-f76a-43c5-afb0-8f45c140be71"},{"name":"Get User Locations","id":"805aeee5-e987-49a2-b3aa-87270a6bfcad","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[],"description":"Returns information about the authenticated user and their accessible locations. Used by Make.com to verify the OAuth connection and populate location dropdowns.
\nAuthorization: Bearer ACCESS_TOKEN{\n \"data\": {\n \"user\": {\n \"id\": \"user_abc123\",\n \"email\": \"user@example.com\",\n \"name\": \"Jane Doe\"\n }\n }\n}\n\nNote: The same endpoint also returns a list of locations the user has access to, used to populate location selection dropdowns in integrations.
\n{\n \"error\": \"unauthorized\",\n \"message\": \"Invalid or expired access token\"\n}\n\nRegisters a webhook URL to receive notifications when a new inbound SMS message arrives for the specified location.
\nAuthorization: Bearer ACCESS_TOKEN
Content-Type: application/json
{\n \"targetUrl\": \"https://hook.eu1.make.com/your-webhook-url\",\n \"event\": \"new_message\",\n \"locationId\": \"loc_abc123\"\n}\n\n{\n \"webhook_id\": \"wh_xyz789\"\n}\n\nStore webhook_id — needed to unsubscribe later.
When a new inbound SMS arrives, myCRMSIM POSTs this payload to targetUrl:
{\n \"id\": \"msg_abc123\",\n \"phone_number\": \"+923001234567\",\n \"locationId\": \"loc_abc123\",\n \"message\": \"Reply message text\",\n \"created_at\": \"2026-05-21T10:00:00.000Z\"\n}\n\nRemoves a previously registered webhook subscription, stopping inbound message notifications.
\n{\n \"targetUrl\": \"https://hook.eu1.make.com/your-webhook-url\",\n \"webhookId\": \"wh_xyz789\",\n \"locationId\": \"loc_abc123\"\n}\n\n{\n \"success\": true\n}\n\nSends an outbound SMS or MMS message to a specified phone number. Supports text, images, PDFs, and other attachments.
\nThis endpoint is hosted on a separate domain (api.mysmsgateway.app) than the main API, but uses the same OAuth access tokens.
Authorization: Bearer ACCESS_TOKEN
Content-Type: application/json
{\n \"phone\": \"+923001234567\",\n \"locationId\": \"loc_abc123\",\n \"message\": \"Hello from myCRMSIM\",\n \"attachments\": [\n \"https://example.com/file.jpg\"\n ]\n}\n\n{\n \"id\": \"msg_xyz789\",\n \"phone\": \"+923001234567\",\n \"locationId\": \"loc_abc123\",\n \"message\": \"Hello from myCRMSIM\",\n \"status\": \"sent\",\n \"sent_at\": \"2026-05-21T10:00:00.000Z\"\n}\n\n{\n \"error\": \"invalid_phone\",\n \"message\": \"Phone number must be in E.164 format\"\n}\n\n{\n \"error\": \"location_not_found\",\n \"message\": \"The specified location does not exist or you don't have access to it\"\n}\n\n