OAuth 2.0 for Salesforce
This section describes the steps to configure the Trifacta Application to integrate with your Salesforce deployment using OAuth 2.0 to authenticate.
OAuth 2.0 authentication must be enabled in theDesigner Cloud Powered by Trifacta platform. For more information, seeEnable OAuth 2.0 Authentication.
In Salesforce, you must create the connected app through which the Trifacta Application uses OAuth 2.0 to access and connect to your Salesforce data.
Steps:
Login: Log in to the Salesforce account in which you want the OAuth 2.0 app to be created.
In the top bar, click Setup.
In the left nav bar, search for:
apps
. Then, navigate to Create > Apps.Create connected app: In the Connected Apps section, click New.
To create a connected app, please complete the listed fields with the appropriate information. Some specifics:
Field
Description
Connected App Name
Display name of the app. Suggested:
Trifacta application
API Name
Please add the value for Connected App Name here.
Contact Email
Add a valid contact email address.
Logo image URL
(optional) Upload an app logo as needed.
Enable OAuth Settings
Select this option.
Callback URL
Please provide a URL in the following format:
https://<platform_url>:<port_number>/oauth2/callback
This value may or may not include a port number.
Selected OAuth Scopes
Please select the following scopes:1.
api
2.refresh_token
Require secret for web server flow
Select this option.
At the bottom of the screen, click Save to save the connected app.
Configure policies: In the left nav bar, select Manage > Connected apps.
Then, click the Edit Policies button.
In the Edit Policies screen, click the Manage button.
Under Session Policies, select the TImeout Value. Set this value to 24 hours.
Click Save to save your connected app.
Retain values: Your Salesforce connected app configuration is complete. Please acquire the following information from the app listing in Salesforce. These parameter values are needed for creating the OAuth 2.0 client in the Trifacta Application:
Parameter
Description
Consumer Key
This value is used as the Client Id in Trifacta Application. Select Click to reveal to display.
Consumer Secret
This value is used as the Client Secret inTrifacta Application. SelectClick to revealto display.
Selected OAuth Scopes
Acquire this values. Unless otherwise specified, these values should include:1.
api
2.refresh_token
Access token expires in
Navigate to Manage > Edit Policies. Typically, this value in milliseconds is set to 1 hour (
3600000
milliseconds).For more information, see https://help.salesforce.com/articleView?id=connected_app_manage_session_policies.htm&type=5.Save any changes to the connected app.
The following scopes are required in the connected app for the Trifacta Application to access Salesforce:
Scope | Description |
---|---|
api | (required) Provides REST API access to Salesforce. |
refresh_token | (required) This token allows the OAuth 2.0 client to refresh the connection with Salesforce without user interaction. |
After the Salesforce connected app is created, you must create an OAuth 2.0 client in the Trifacta Application, which is used to integrate with the OAuth 2.0 connected app that you created above.
Note
You must create one OAuth 2.0 client in the Trifacta Application for each Salesforce connected app that you wish to use.
Steps:
Login to the Trifacta Application as a workspace administrator.
In the lefthand menu, select User menu > Admin console > OAuth2.0 Clients.
In the OAuth2.0 Clients page, click Register OAuth2.0 Client.
Specify the new client. Apply the following values:
Setting
Description
Type
Set to
salesforce
.Name
Display name for the OAuth 2.0 client in the Trifacta Application.
Client ID
Set this value to the Consumer Key value in your Salesforce connected app.
Client Secret
Set this value to the Consumer Secret value in your Salesforce connected app.
Authorization URL
Set this value to the following:
https://login.salesforce.com/services/oauth2/authorize
Token URL
Set this value to the following:
https://login.salesforce.com/services/oauth2/token
Scopes
Insert the scopes you specified as a space-separated list.
Access Token Expires In
Set this value to the corresponding value in your Salesforce connected app. See above.
Refresh Token Expires In
Set this value to the number of milliseconds after which the refresh token expires.
Set the value to
0
(does not expire).To save your OAuth 2.0 client, clickSave.
For more information, see Create OAuth2 Client.
After you have created the two OAuth 2.0 client references, you can create a connection to your Salesforce data.
Note
You must create a separate connection for each OAuth 2.0 client that is available in the Trifacta Application.
For more information, see Salesforce Connections.