Why Craft Events?
The simplest way to schedule events using your existing Craft documents
Create event pages with time slots in seconds. No complex setup required.
Your API credentials are encrypted server-side. Never exposed to browsers or stored in databases.
Share voting links with anyone. No Craft accounts needed for participants.
View current availability anytime. Refresh the results page to see the latest votes synced from your Craft document.
How to Create a Connection
Get started by setting up your Craft API connection
Create API Connection
Follow these steps to connect Craft Events to your Craft workspace. You'll need your Craft API URL and optionally an API key for authentication.
Create new API Connection
Select connection type
Copy URL (and API key if needed)
The Complete Workflow
From connecting to Craft to sharing results—see how it all works
Connect to Craft
Start by entering your Craft API URL and optional API key. These credentials are immediately encrypted on the server using AES-GCM encryption before any storage or transmission.
- Credentials encrypted server-side with AES-GCM
- No credentials stored in databases
- Encrypted blob created for secure URL sharing
Select Your Document
Choose which Craft document you want to create the event in. The server temporarily decrypts your credentials to fetch your documents list, then immediately discards the decrypted values.
- Browse all your Craft documents
- Credentials only decrypted server-side, never in browser
- Clean document selector interface
Create Your Event
Define your event details: title, description, location, and select available time slots. The server creates a new page in your Craft document with a markdown table ready for scheduling.
- Add event title, description, and location
- Select multiple dates and time slots
- Event page automatically created in Craft
Share & Collect Votes
Share the voting link with participants. They can mark their availability without needing Craft accounts. Votes are written directly to your Craft document via the API.
- Copy voting link with one click
- Participants vote without accounts
- Votes are written immediately to your Craft document
View Live Results
The results page reads the table from your Craft document and displays current availability. Refresh the page to see the latest votes. Anyone with the results link can view availability, making it easy to coordinate schedules.
- Current availability visualization
- Color-coded availability indicators
- Refresh to see latest votes from Craft
Security & Privacy
Your credentials are protected with enterprise-grade encryption
Your API credentials are encrypted using AES-GCM (Advanced Encryption Standard - Galois/Counter Mode), the same encryption used by major tech companies and governments.
- PBKDF2 key derivation with server-side master key
- Unique 12-byte initialization vector per encryption
- 16-byte authentication tag prevents tampering
- URL-safe Base64URL encoding for sharing
All API calls to Craft are made server-side using Next.js Server Actions. Your credentials are decrypted only on the server, used for the API call, and immediately discarded.
- No database storage of credentials
- Credentials never appear in browser network logs
- Decrypted values discarded immediately after use
- Master key stored as environment variable only
Access Control
Only people with voting or results URLs can access your events
Revocable Access
Delete links or remove pages from Craft to revoke access instantly
Browser Storage
Event history stored only in your browser cookies, never transmitted to servers
Open Source
Review the codebase to verify security and privacy practices