mendix · adeel2023 · Nov 14, 2024 · Nov 14, 2024 · Nov 14, 2024 · Nov 27, 2024
diff --git a/...refguide/modeling/integration/odata-services/published-odata-services/_index.md b/...refguide/modeling/integration/odata-services/published-odata-services/_index.md
@@ -197,11 +197,15 @@ xmlHttp.send(null);
 
 ##### Custom {#authentication-microflow}
 
-Specify which microflow to use for custom authentication.
+{{% alert color="info" %}}
+Support for using a list of `System.HttpHeader` in authentication microflows was introduced in [Studio Pro 10.18.0](/releasenotes/studio-pro/10.18/).
+{{% /alert %}}
 
-The microflow may take an [HttpRequest](/refguide/http-request-and-response-entities/#http-request) as a parameter, so it can inspect the incoming request.
+Specify which microflow to use for custom authentication. The microflow may take the following as a parameter:
 
-The microflow may also take an [HttpResponse](/refguide/http-request-and-response-entities/#http-response) as a parameter. When the microflow sets the status code of this response to something other then **200**, this value is returned and the operation will not be executed. Any headers set on the response are returned (except when the microflow returns an empty user).
+* A list of [HttpHeader](/refguide/http-request-and-response-entities/#http-header). This cannot be used in combination with [HttpRequest](/refguide/http-request-and-response-entities/#http-request) parameter.
+* [HttpResponse](/refguide/http-request-and-response-entities/#http-response). When the microflow sets the status code of this response to something other then **200**, this value is returned and the operation will not be executed. Any headers set on the response are returned (except when the microflow returns an empty user).
+* [HttpRequest](/refguide/http-request-and-response-entities/#http-request), so it can inspect the incoming request.
 
 The authentication microflow should return a User.
 

diff --git a/...fguide/modeling/integration/rest-services/http-request-and-response-entities.md b/...fguide/modeling/integration/rest-services/http-request-and-response-entities.md
@@ -39,6 +39,15 @@ You can retrieve or create response headers via the `HttpHeaders` association.
 
 An important `HttpResponse` header is `Content-Type`, which indicates how the content should be interpreted. For more information on this header, see the [W3C specification of Content-Type](https://www.w3.org/Protocols/rfc1341/4_Content-Type.html).
 
+## HttpHeader {#http-header}
+
+The `HttpHeader` entity has the following attributes:
+
+|  Attribute  |  Type  |  Default Value | Description  |
+|  ---  |  ---  |  ---  |  ---  |
+|  `Key`  |  String  | empty | Header key. |
+|  `Value`  |  String  | empty | Header value.  |
+
 ### Why Does Setting `ReasonPhrase` Have No Effect? {#reason-phrase}
 
 The HTTP/1.x protocol allowed servers to include a reason phrase in the response, including non-standard ones. In HTTP/2, reason phrases have been removed. Many web servers (including the one Mendix Runtime uses), do not allow setting anything other than the default reason phrase for the status code (even in HTTP/1.x, which technically allows it).