Colvio for Dynamics 365

Colvio — Data Explorer, Loader & Inspector for Microsoft Dynamics 365 / Dataverse.

# Chrome Web Store Listing — Colvio ## Short Description (132 chars max) Free, in-browser toolkit for Dynamics 365 / Dataverse. Query, inspect, load, test the API, audit — no setup, no account. ## Detailed Description Colvio — The Free In-Browser Toolkit for Microsoft Dynamics 365 / Dataverse Colvio is a free, open-source Chrome extension that gives D365 consultants, admins, and developers instant access to their Dataverse data and Web API — directly from the browser, with zero configuration. No API keys. No app registration. No subscription. No account. Just click the icon on any D365 page and start exploring. The free, in-browser toolkit that Dynamics 365 has been missing. KEY FEATURES Data Explorer — 4 Query Modes Query any entity with a visual query builder (Builder), raw OData URLs, FetchXML, or SQL. Yes, SQL — Colvio includes a built-in SQL-to-FetchXML translator. Smart field picker with type filtering. Multi-filter WHERE with AND/OR groups. Expand parent AND child relationships, with per-expand $filter on collection (1:N) expands. Auto-pagination with no 5000-record cap, virtual scrolling (60fps on 10k+ records), inline cell editing, bulk update and delete. API Tester (new) A Postman-equivalent for Dataverse, built right in. Run ad-hoc Web API requests (GET, POST, PATCH, PUT, DELETE) without leaving Colvio. Auth is automatic via your active D365 session — no OAuth dance, no client secret, no token refresh, no environment variables per org. Headers autocomplete for common Dataverse headers (Prefer, MSCRM.SuppressDuplicateDetection, MSCRM.BypassCustomPluginExecution, If-Match, etc.). JSON body editor with line-numbers gutter and live validation that points to the exact line on parse errors. Response panel with status, elapsed time, body size, pretty-printed JSON, and headers tab. Templates for common operations (WhoAmI, CREATE, PATCH, UPSERT by alt-key, DELETE, RetrieveCurrentOrganization). History of your last 50 requests stored locally. Copy as cURL for sharing in tickets or chat. Ctrl/Cmd+Enter to send. Show All Data Auto-detects the record open in your D365 tab. One click to inspect every field with logical name, type, and value. Copy individual fields or full JSON. Metadata Browser Browse entities, fields, and OptionSet values with codes, labels, and descriptions. Export all fields of any entity as CSV (logical name, OData column name, type, required flag, custom flag) — instant data dictionary, ready to paste into a $select clause. Export all OptionSets as CSV for offline documentation. Data Loader — fully rewritten Import CSV, TSV, or Excel files (XLSX/XLS) directly — drag-drop or paste from any spreadsheet. Multipart OData $batch parallelized across 5 concurrent workers with one changeset per record, so a single bad row doesn't roll back the entire batch. Tunable performance: batch size (1-1000) and parallel threads (1-10), defaults 200×6 for ~3-4k records/second. Live per-row import log shown in real time during the run, with every CSV column visible and Success/Failed status + the exact Dataverse error message. Alt-key direct binding skips the GUID resolution query when the lookup target field is a registered alternate key (auto-detected from metadata). Smart upsert key dropdown with alt-keys highlighted at the top. Smart parent lookup nav-property dropdown auto-fills the target entity from metadata. Auto-skip of Lookup-type fields in the mapping step (prevents accidental writes to lookup `_value` columns). Cancel mid-import with graceful in-flight batch completion. Transforms (statecode, picklist, boolean, date). CREATE or UPSERT modes. Relationship Graph Visual SVG graph of entity relationships: N:1 parents, 1:N children, N:N many-to-many. Depth 1-2, click nodes to drill down. Schema (ERD) Interactive Entity Relationship Diagram. Add entities to a canvas, see field details with FK badges, bezier curves between lookups and target entities. Drag cards, zoom, pan. Expand/collapse fields or view tables only. Export as PNG, SVG, or Mermaid. Solution Explorer Browse D365 solutions and their components. 13 component types resolved to readable names (Entity, Attribute, View, Plugin, Web Resource, etc.). Translation Manager View and edit field labels in multiple languages. Non-renameable fields automatically locked as read-only. Export/import CSV for bulk translation workflows. Auto-publish after save. User & License Monitor Monitor ALL D365 users — Access Mode, CAL Type, Business Unit, security roles, last login date. Filter by Active/Disabled/Non-Interactive, identify unused licenses (never logged in, disabled but still allocated). Full CSV export. No limit on user count. Security Audit Review all security roles and their privileges. Readable labels (prvDeleteAccount becomes Delete · Account), depth badges (User/BU/Org), sensitive privilege flags (30+ critical privileges highlighted). Filter by Org-level or Sensitive. CSV export per role. Login History User login/logout audit timeline from D365 audit logs. Session duration, access type stats, CSV export. Help & Onboarding Built-in feature guide, first-launch tour, keyboard shortcuts panel, contextual tooltips. GLOBAL Dark/Light theme with system preference detection English/French interface toggle Environment badge — reads Microsoft's authoritative OrganizationType (Production / Sandbox / CustomerTest / Trial / Preview / Developer) so you always know which environment you're working in Export: XLSX, CSV, JSON — copy or download Keyboard shortcuts (Ctrl+Enter to query, Ctrl+/ for shortcuts, Escape to close) Session expiration detection with Reconnect button Query History (last 20 queries) + Saved Queries (20 max) 5 pre-built query templates for common tasks SECURITY & PRIVACY — Full audit: 0 critical, 0 high findings Zero data collection — no analytics, no telemetry, no external servers All requests go directly from your browser to your D365 server — same-origin guard on the API Tester blocks any request not pointing at your active D365 host Uses your existing Azure AD / Entra ID session — no credentials stored Input validation on all API parameters (entity names, GUIDs, search terms) OData injection protection — numeric and GUID values validated before query insertion CSV export formula injection protection — prevents spreadsheet formula execution Content Security Policy enforced on extension pages Bulk operation safeguards — typed confirmation on delete, confirm dialog on bulk update CanBeDeleted pre-check — verifies entity permissions before allowing delete operations Client-side rate limiting — capped concurrent requests to prevent API abuse and respect Dataverse Service Protection limits Role-based tab visibility — sensitive modules auto-hidden for non-admin users Only 3 runtime dependencies (React, React-DOM, xlsx export-only) Open source — audit the code yourself on GitHub BUILT WITH SECURITY IN MIND Colvio goes beyond what similar tools offer in terms of safety: Typed confirmation required before any bulk delete (you must type the entity name) Entity CanBeDeleted metadata check before delete operations are allowed Confirm dialog on bulk update showing field name, value, and record count Same-origin URL guard on ad-hoc API requests — Colvio refuses to send requests to any domain other than your current D365 host Rate limiting prevents accidental API flooding OData and GUID input validation prevents injection attacks CSV formula injection protection on all exports Role-based access control hides admin-only modules from standard users Content Security Policy blocks unauthorized script execution PII stripping in query history — filter values are not persisted All write operations respect your D365 security roles — Colvio cannot bypass server-side permissions ROLE-BASED ACCESS Some modules require elevated D365 permissions and are automatically hidden for non-admin users: Available to all users: Data Explorer, API Tester, Show All Data, Metadata Browser, Data Loader, Relationship Graph, Schema, Help Requires System Administrator or System Customizer: Solution Explorer, Translation Manager, Login History, Users & Licenses, Security Audit Colvio detects your permissions at startup and only shows the tabs you can access. No error screens, no confusion. SUPPORTED REGIONS Works on all Dynamics 365 / Dataverse environments worldwide: NA, EMEA, APAC, UK, France, Canada, Australia, Japan, India, UAE, South Africa, and all crm*.dynamics.com domains. 100% FREE & OPEN SOURCE No freemium. No paywalls. No "Pro" tier. Colvio is free for everyone, forever. Source code, documentation, and security audit available on GitHub. github.com/zmissoum/colvio PERFECT FOR D365 consultants exploring a new org Admins troubleshooting data issues Developers testing API queries and prototyping Web API integrations (without setting up Postman with OAuth) Data migration teams loading or extracting hundreds of thousands of records Salesforce consultants transitioning to D365 (Colvio is the equivalent of Salesforce Inspector for Dataverse) Anyone who needs quick, safe access to Dataverse data and metadata ## Category Developer Tools ## Language English, French ## Screenshots Needed (1280x800 or 640x400) 1. Data Explorer — query builder with results table (dark theme) 2. API Tester — request + response panels with templates visible 3. Data Loader — Live import log with per-row Success/Failed status 4. Show All Data — record inspector with field details 5. Schema — interactive ERD with entity cards and bezier lines 6. Security Audit — roles and privileges viewer 7. Metadata Browser — entity fields with Export buttons and OptionSet viewer