Package Information
Downloads: 397 weekly / 397 monthly
Latest Version: 0.2.0
Author: Jan Marc Coloma
Documentation
n8n-docusign-node
An n8n community node for DocuSign - the world's leading eSignature platform for sending documents for signature and managing envelopes.
Features
- Full Envelope Management - Create, send, void, delete, and download documents
- Embedded Signing - Generate signing URLs for iframe integration in your app
- Multiple Signers & Documents - Support for multiple signers with routing order and multiple documents per envelope
- Advanced Tab Types - Signature, initials, date, text fields, checkboxes, and more
- Custom Fields - Add metadata fields to envelopes for tracking and reporting
- Template Support - Create envelopes from pre-configured templates
- Webhook Trigger - Real-time event notifications via DocuSign Connect
- Regional Support - NA, EU, AU, and CA regions for production environments
- Rate Limiting - Built-in retry logic with exponential backoff
- Input Validation - RFC 5322 compliant email validation, secure URL validation (blocks internal networks)
- Token Caching - Efficient JWT token caching with automatic refresh
- Type Safety - Full TypeScript support with comprehensive type definitions
- Security Hardened - HMAC-SHA256 webhook signature verification, replay attack protection
Requirements
DocuSign Plan Requirements
| Environment | Plan Required |
|---|---|
| Development/Testing | Free Developer Account |
| Production | Business Pro or higher |
| Webhooks (DocuSign Connect) | Business Pro+ or Connect add-on |
Start with a free DocuSign Developer Account to test before committing to a paid plan.
Installation
Community Nodes (Recommended)
- Go to Settings > Community Nodes in your n8n instance
- Select Install
- Enter
n8n-docusign-node - Click Install
npm
npm install n8n-docusign-node
Credentials
To use this node, you need DocuSign API credentials:
- Log in to your DocuSign Admin
- Go to Settings > Apps and Keys
- Create an Integration Key (Client ID)
- Generate an RSA Key Pair and save the private key
- Note your User ID and Account ID
Granting Consent
Before first use, grant consent for your integration:
Demo:
https://account-d.docusign.com/oauth/auth?response_type=code&scope=signature%20impersonation&client_id=YOUR_INTEGRATION_KEY&redirect_uri=YOUR_REDIRECT_URI
Production:
https://account.docusign.com/oauth/auth?response_type=code&scope=signature%20impersonation&client_id=YOUR_INTEGRATION_KEY&redirect_uri=YOUR_REDIRECT_URI
Nodes
DocuSign
The main node for interacting with the DocuSign eSignature API.
Resources & Operations
| Resource | Operations |
|---|---|
| Envelope | Create, Create From Template, Get, Get Many, Send, Resend, Void, Delete, Download Document, List Documents, Get Recipients, Update Recipients, Get Audit Events, Create Signing URL |
| Template | Get, Get Many |
Envelope Create Options
| Option | Description |
|---|---|
| Multiple Signers | Add additional signers with routing order |
| Multiple Documents | Attach multiple documents to one envelope |
| Embedded Signing | Enable for iframe integration (adds clientUserId) |
| Custom Fields | Add metadata fields for tracking |
| Additional Tabs | Initial, date, text, checkbox, company, title fields |
| Anchor Tags | Position signature fields using text anchors |
DocuSign Trigger
Webhook trigger node for receiving real-time events via DocuSign Connect.
Supported Events
envelope-sent- Envelope sent to recipientsenvelope-delivered- Envelope delivered to recipientenvelope-completed- All recipients completed signingenvelope-declined- Recipient declined to signenvelope-voided- Envelope voidedrecipient-sent- Recipient received enveloperecipient-delivered- Recipient viewed enveloperecipient-completed- Recipient completed signingrecipient-declined- Recipient declinedrecipient-authenticationfailed- Recipient failed authenticationtemplate-created- Template createdtemplate-modified- Template modifiedtemplate-deleted- Template deleted
Example Workflows
1. Send Contract for Signature
HTTP Request (Get Contract) > DocuSign (Create Envelope) > Slack (Notify Team)
Send a document for signature and notify your team.
2. Signed Document to Cloud Storage
DocuSign Trigger (envelope-completed) > DocuSign (Download Document) > Google Drive (Upload)
Automatically save signed documents to cloud storage.
3. Multi-Party Agreement
Form Trigger > DocuSign (Create Envelope with Multiple Signers) > Wait for Completion
Create envelopes with multiple signers using routing order.
4. Template-Based Onboarding
New Employee (Webhook) > DocuSign (Create From Template) > HR System (Update)
Use templates for standardized documents like onboarding forms.
5. Embedded Signing in Your App
Form Trigger > DocuSign (Create Envelope, Embedded=true) > DocuSign (Create Signing URL) > Redirect User
Generate signing URLs for embedding DocuSign in your application.
6. Envelope Status Dashboard
Schedule Trigger > DocuSign (Get Many, status=sent) > Google Sheets (Update)
Track pending envelopes and update a dashboard.
Filtering
"Get Many" operations support filtering:
| Filter | Description | Available On |
|---|---|---|
status |
Filter by envelope status | Envelopes |
fromDate |
Start date for date range | Envelopes |
toDate |
End date for date range | Envelopes |
searchText |
Search by subject or recipient | Envelopes, Templates |
folderId |
Filter by folder | Templates |
Security
Webhook Security
The webhook trigger includes built-in security features:
- HMAC-SHA256 Signature Verification - All webhooks verified using signatures
- Replay Attack Protection - Rejects webhook requests older than 5 minutes
- Timing-Safe Comparison - Prevents timing attacks
- Configurable Verification - Enable/disable signature and replay protection in trigger settings
Input Validation
- Email Validation - RFC 5322 compliant validation
- UUID Validation - Format validation for envelope/template IDs
- Base64 Validation - Document content validation
- URL Validation - Blocks internal/private network URLs to prevent SSRF attacks:
- localhost, 127.0.0.1, 0.0.0.0
- Private ranges: 10.x.x.x, 172.16-31.x.x, 192.168.x.x
- Link-local: 169.254.x.x (AWS metadata endpoint)
Token Security
- JWT tokens cached in memory only (never persisted)
- Automatic refresh 5 minutes before expiration
- RSA keys handled securely via n8n credentials
Error Handling
The node includes built-in error handling with detailed messages:
- Continue on Fail: Enable to process remaining items even if some fail
- Detailed Errors: Field-level error details for validation failures
- Automatic Retry: Rate limit and server errors automatically retried
Error Code Reference
| Status Code | Description |
|---|---|
| 400 | Bad Request - Invalid or malformed request |
| 401 | Unauthorized - Invalid credentials or expired token |
| 403 | Forbidden - No permission to access resource |
| 404 | Not Found - Envelope or template does not exist |
| 429 | Rate Limited - Too many requests (auto-retry) |
| 500+ | Server Error - DocuSign server issue (auto-retry) |
Troubleshooting
"consent_required" Error
- Visit the consent URL for your environment (demo or production)
- Log in with the user account specified in credentials
- Grant access to the integration
"Invalid JWT" Error
- Verify your RSA private key is complete (including BEGIN/END lines)
- Check Integration Key (Client ID) is correct
- Ensure User ID matches the account granting consent
Webhook Not Receiving Events
- Verify the webhook URL is publicly accessible
- Check DocuSign Connect configuration matches n8n URL
- Verify HMAC secret matches (if using signature verification)
- Check event types are enabled in Connect settings
Rate Limiting Issues
If you encounter rate limiting (429 errors):
- The node automatically retries with backoff
- Reduce frequency of API calls
- Use "Return All" sparingly for large datasets
- Consider caching responses where appropriate
Development
# Install dependencies
npm install
# Build the node
npm run build
# Watch mode (rebuild on changes)
npm run dev
# Run tests
npm test
# Run tests with coverage
npm run test:coverage
# Run linter
npm run lint
# Fix linting issues
npm run lintfix
# Check formatting
npm run format:check
# Format code
npm run format
# Type check
npm run typecheck
Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
- Fork the repository
- Create your feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'feat: add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
Resources
- DocuSign Developer Center
- eSignature REST API Reference
- JWT Authentication Guide
- DocuSign Connect Guide
- n8n Community Nodes Documentation
Changelog
v0.2.0
New Features:
- Embedded signing URL generation (Create Signing URL operation)
- List Documents operation
- Custom fields support for envelope metadata
- Additional tab types: Initial, Date Signed, Text, Checkbox, Full Name, Email, Company, Title
- Embedded signing option in Create Envelope (adds clientUserId)
- Requirements section with DocuSign plan information
v0.1.0
New Features:
- Replay attack protection for webhooks (rejects requests older than 5 minutes)
- Delete operation for draft envelopes
- CI/CD pipeline with GitHub Actions
- Mocked webhook handler tests for 100% trigger coverage
v0.0.4
Initial Release:
- Full envelope management (create, send, void, download, recipients, audit)
- Template operations (get, list)
- Multiple signers and documents support
- DocuSign Trigger for real-time webhook events
- Regional support (NA, EU, AU, CA)
- JWT authentication with token caching
- Rate limiting with automatic retry
- Input validation (email, UUID, base64, URL with SSRF protection)
- HMAC-SHA256 webhook signature verification
- 61 tests with comprehensive coverage
License
Made with ✍️ by Jan Marc Coloma