Thursday, 17 October 2024

Authorization ways for API

 

https://www.apexhours.com/salesforce-oauth-flows-guidelines-and-tips/

Inbound – you decide! Salesforce supports the following flows


OAuth 2.0 based different time of Authorization - 

  1. Web Server Authentication - when user logic through web app and UI is involved , eg - workbench

  3. User-Agent - used for desktop/mobile application eg - app/data loader/salesforce1

  5. JWT Bearer Token - Ideal for application which access sfdc only through API as there is no  UI involved. For example ETL tools or middleware.
  6. based to digital signature in JSON web token (JWT)
  7. No refresh token

  9. SAML Bearer Assertion
  10. User for SSO
  11. This flow also return only access token not refresh token

  1. SAML Assertion

  3. Username-Password

  5. Device Authentication
  • The OAuth 2.0 device authentication flow is typically used by applications on devices with limited input or display capabilities, such as TVs, appliances, or command-line applications

  1. Asset Token
  2. Refresh Token - 
  3. This flow also return only access token not refresh token

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Heap Size and Apex CPU Time Limit

  Heap Size - 1) Memory size for holding object , variables and records 2) CPU Time limit -  1) time consuming during whole transaction   ...

  • Named Credentials and Remote Site Settings
      𝐂𝐨𝐦𝐩𝐚𝐫𝐢𝐬𝐨𝐧 𝐛𝐞𝐭𝐰𝐞𝐞𝐧 𝐍𝐚𝐦𝐞𝐝 𝐂𝐫𝐞𝐝𝐞𝐧𝐭𝐢𝐚𝐥𝐬 𝐚𝐧𝐝 𝐑𝐞𝐦𝐨𝐭𝐞 𝐒𝐢𝐭𝐞 𝐒𝐞𝐭𝐭𝐢𝐧𝐠𝐬  1) Named Credentials ...
  • Authorization ways for API
      https://www.apexhours.com/salesforce-oauth-flows-guidelines-and-tips/ Inbound  – you decide! Salesforce supports the following flows OAuth...
  • STREAMING API - Subscription Mechanism
    Salesforce Streaming API allows you to stream real-time events and data to your applications.  It's beneficial for scenarios where you n...