Thank you for your interest in my Workflow plugin!
At this moment the plugin uses the following triggers:
And the following actions:
- workflow (e.g. e series of actions)
I use the ping function to ping a URL at IFTTT.com and this works without security headers.
I have not used the ping function to request a URL on an October website that sends mails from the onStart() function. I would suggest that you use the mail action directly from whatever event or cronjob you use to trigger the ping action that you use to request a page that sends a mail.
If you want to ping the URL on an October website from another October website adding some form of optional authentication might be smart although you could prevent mail bombs with some form of rate-limiting mechanism (I think that is what IFTTT.com does).
Is there a scenario you plan on using this plugin for that requires authentication?