Salesforce Developer Security Auth Oauth Jwtflow

salesforce-developer-security

// Salesforce - Developer - Security - OAuth - JWT Bearer Token Flow:

The OAuth 2.0 JWT bearer token flow defines how a JWT can be used to request an 
OAuth access token from Salesforce when a client wishes to utilize a previous
authorization. In this flow, authentication of the authorized application is 
provided by a digital signature applied to the JWT.  A step-by-step guide is 
avaliable here: http://sforce.co/2hhd8hV

There are two important things of note with this authentication flow:

1. The client doesn’t need to have or store the refresh_token.

2. The client_secret is not required to be passed to the token endpoint.
Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License