How to enforce oauth scope for lightning apps?
How to find if any of the lightning apps in my org uses oauth. Can anyone please guide me with this.
To enforce oauth scope for lightning apps-
Salesforce
Enforce OAuth Scope for Lightning Apps [closed]
Asked 1 year, 7 months ago
Modified 1 year, 7 months ago
Viewed 847 times
-1
Closed. This question is off-topic. It is not currently accepting answers.
Questions about requirements or objectives should demonstrate the work or research you’ve done so far and ask a specific question. Providing complete implementations based on a list of requirements is not a goal of this community. This question can be reopened when it is edited to include the needed information.
Closed 1 year ago.
How to find if any of the lightning apps in my org uses oauth. Can anyone please guide me with this.
lightningoauthappwinter22
Share
Improve this question
Follow
asked Aug 31, 2021 at 6:41
Sindhuja's user avatar
Sindhuja
13311 gold badge77 silver badges1919 bronze badges
Add a comment
1 Answer
Sorted by:
Highest score (default)
3
What you're looking for is within ConnectedApp metadata. If you pull down this metadata type from the metadata API you'll be able to identify your apps. This should be a good first step for you to identify your apps. That being said, I am not sure what aspects of a ConnectedApp (if anything) identifies it as a "Lightning app" specifically. Check for a startUrl property - that may be informative.
Per the Salesforce release notes they can be identified by their URL:
Lightning apps include Lightning Experience and any resource with a URL that ends with .app before any optional query string.
For each app, check the OAuth scopes under oauthConfig:
test@example.com
My App
https://www.test.com
the key will be here
false
false
false
true
Lightning
ENFORCE
infinite
In order for your Lightning app to continue to provide permissions to authenticated users correctly, it must use one of the following 4 scopes (per the release notes). I have placed the actual scope name in bold for emphasis.
- Allow access to Lightning applications (lightning)
- Provide access to custom applications (visualforce)
- Provide access to your data via the web (web)
- Full access (full). Use this option only if none of the other options are sufficient.