Thanks a lot for the valuable lesson. I have a request that please show a small project end to end in different session starting from configuration to customisation including lightning and integration. It will be a real help for me.
I have seen numerous blogs on open Salesforce from the external system via SSO. Here, I am looking for a reverse implementation, i.e., to open an external portal from the Salesforce record detail page(Quick Action) without giving user credentials and use either SSO/JWT to login the external system. Is it possible open external website endpoint with JWT?
Buddy, there are various ways to establish Identity and Access Management, and JWT is just one of them. Named credentials is yet another wrapper around which you can use various IAM routes to integrate / authorize to server. So it is not like Named Credentials came and reduced effort (which leverage Auth Providers), you can use several other techniques to reduce effort. In a nutshell, this article is still relevant to study
SFDC-chronicle, I am getting “invalid_client; Authorize error 400”. On SF I see “Failed: Missing Consumer Key Parameter”. I am using encodeBase64URLSafeString to encode all three parts of jwt token. I am using iss :consumer key copied from SF connected app. Not sure what is it I am doing wrong. Any thoughts?
Please check the consumer key is used from the SF connected app in which you have given access to the user and in the jsonbody it contains all the 4 parameter iss, sub, aud,exp.
Thank you so much for this video ! I need to generate a JWT for an external app. The customer will log into this app and then when they click on a link they need to be log into community without having to log again. From what I understand in your vid, I need to create a connected app, then create the JWT in apex. I did all that, but I have "Unrecognized base64 character:-" as an error. I can create the header and body but have an issue with the signature. I don't know what I'm doing wrong and if I need to do something else before giving the JWT I generate to the external app...Could you help me with this please ?
@@rakhipandey9217 Had the same issue. After I removed -----BEGIN RSA PRIVATE KEY----- and -----END RSA PRIVATE KEY----- strings from the .key file the issue is gone,
Maam you are the best!
Thanks a lot for the valuable lesson. I have a request that please show a small project end to end in different session starting from configuration to customisation including lightning and integration. It will be a real help for me.
Thank you. Sure will shortly started our Salesforce Basics session and within that series will include your suggestions.
@@sfdc-chronicle9591 thank you so much🙂
Hello Scott, You can use OpenSSL to generate the certificate. I have uploaded the private key in Static Resource and use that key to sign the request.
Excellent
you should ping the resources on the description. It'll be a great help. For eg. github link, stackeschange link etc
Thanks for the feedback. Will try to provide details as much as possible.
How you generated file didn't shown in video. how will come to know about file generate ?.
I have seen numerous blogs on open Salesforce from the external system via SSO. Here, I am looking for a reverse implementation, i.e., to open an external portal from the Salesforce record detail page(Quick Action) without giving user credentials and use either SSO/JWT to login the external system. Is it possible open external website endpoint with JWT?
Can we use web server flow and refresh token never expire ? And that way user don't have to authenticate or login every time but originally ones ?
You can now use Named Credentials which would reduce much of your work!!
Buddy, there are various ways to establish Identity and Access Management, and JWT is just one of them. Named credentials is yet another wrapper around which you can use various IAM routes to integrate / authorize to server. So it is not like Named Credentials came and reduced effort (which leverage Auth Providers), you can use several other techniques to reduce effort.
In a nutshell, this article is still relevant to study
@@rajat.mahajan3095 Agreed
Hi SFDC-Chronicle, I am using self-signed certificate , what changes are required to Apex Class can you please help!!
SFDC-chronicle, I am getting “invalid_client; Authorize error 400”. On SF I see “Failed: Missing Consumer Key Parameter”. I am using encodeBase64URLSafeString to encode all three parts of jwt token. I am using iss :consumer key copied from SF connected app. Not sure what is it I am doing wrong. Any thoughts?
Please check the consumer key is used from the SF connected app in which you have given access to the user and in the jsonbody it contains all the 4 parameter iss, sub, aud,exp.
Hello Thanks yous for this démo.
Static Resource Information
: What content the file for this demo ? where do you get key.pem ?
Thank you so much for this video ! I need to generate a JWT for an external app. The customer will log into this app and then when they click on a link they need to be log into community without having to log again. From what I understand in your vid, I need to create a connected app, then create the JWT in apex. I did all that, but I have "Unrecognized base64 character:-" as an error. I can create the header and body but have an issue with the signature. I don't know what I'm doing wrong and if I need to do something else before giving the JWT I generate to the external app...Could you help me with this please ?
Hey.. Did you find the answer of your query? I'm also facing the similar issue. Please help me if you have any solution to implement such use cases.
@@rakhipandey9217 Had the same issue. After I removed -----BEGIN RSA PRIVATE KEY----- and -----END RSA PRIVATE KEY----- strings from the .key file the issue is gone,
Just realized that author mentioned this error in the end of the video...
can you please share the apex class please??