How to enforce oauth scope for lightning apps?

441    Asked by AudreyBerry in Salesforce , Asked on May 5, 2023

How to find if any of the lightning apps in my org uses oauth. Can anyone please guide me with this.

Answered by Dipika Agarwal

To enforce oauth scope for lightning apps-



Salesforce
Enforce OAuth Scope for Lightning Apps [closed]
Asked 1 year, 7 months ago
Modified 1 year, 7 months ago
Viewed 847 times
-1

Closed. This question is off-topic. It is not currently accepting answers.

Questions about requirements or objectives should demonstrate the work or research you’ve done so far and ask a specific question. Providing complete implementations based on a list of requirements is not a goal of this community. This question can be reopened when it is edited to include the needed information.

Closed 1 year ago.

How to find if any of the lightning apps in my org uses oauth. Can anyone please guide me with this.

lightningoauthappwinter22
Share
Improve this question
Follow
asked Aug 31, 2021 at 6:41
Sindhuja's user avatar
Sindhuja
13311 gold badge77 silver badges1919 bronze badges
Add a comment
1 Answer
Sorted by:
Highest score (default)
3

What you're looking for is within ConnectedApp metadata. If you pull down this metadata type from the metadata API you'll be able to identify your apps. This should be a good first step for you to identify your apps. That being said, I am not sure what aspects of a ConnectedApp (if anything) identifies it as a "Lightning app" specifically. Check for a startUrl property - that may be informative.

Per the Salesforce release notes they can be identified by their URL:

Lightning apps include Lightning Experience and any resource with a URL that ends with .app before any optional query string.
For each app, check the OAuth scopes under oauthConfig:


    test@example.com
    My App
   
        https://www.test.com
        the key will be here
        false
        false
        false
        true
        Lightning
   
   
        ENFORCE
        infinite
   

In order for your Lightning app to continue to provide permissions to authenticated users correctly, it must use one of the following 4 scopes (per the release notes). I have placed the actual scope name in bold for emphasis.

  • Allow access to Lightning applications (lightning)
  • Provide access to custom applications (visualforce)
  • Provide access to your data via the web (web)
  • Full access (full). Use this option only if none of the other options are sufficient.



Your Answer

Interviews

Parent Categories