I am trying to use OAuth authentication to get the Salesforce Authentication Token, so I referred wiki docs, but after getting authorization code, when I make a Post request
To whitelist an IP address range follow these steps:
Setup
in the top-rightAdminister
> Security Controls
> Network Access
from the left navigationNew
Save
I was banging my head against the desk trying to get this to work. Turns out my issue was copying and pasting, which messed up the " character. I went and manually typed " pasted that into the command line and then it worked.
Replace your Salesforce password with combination of the password and the security token. For example, if your password is "MyPassword" and your security token is "XXXXXX", you would need to enter "MyPasswordXXXXXX" in the password field.
If you do not have the security token you can reset it as below.
You can call your APEX controller using Postman if you enter the Consumer Key and Consumer Secret in the Access Token settings - you don't need the Security Token for this.
Set up the Authorization like this screenshot...
Postman OAuth 2.0
And enter your credentials on the window after hitting the Get New Access Token button...
Get Access Token
Then hit the Request Token button to generate a token, then hit the Use Token button and it will populate the Access Token field on the Authorization tab where you hit the Get New Access Token button.
For anyone who is as stuck and frustrated as I was, I've left a detailed blog post on the entire process (with pictures and ranty commentary!). Click the link if you want that:
http://www.calvinfroedge.com/salesforce-how-to-generate-api-credentials/
Here is a text only answer:
Step 1:
Create an account. You can create a (free) developer account at developer.salesforce.com
Step 2:
Ignore all the landing pages and getting started crap. It's an endless marketing loop.
Step 3:
Click the "Setup" link
Step 4:
In the lefthand toolbar, under "Create", click "Apps"
Step 5:
Under "Connected Apps" click "New"
Step 6:
Fill out the form. Important fields are the ones marked as required, and the oauth section. Note that you can leave any url for your callback (I used localhost).
Step 7:
Be advised that Salesforce has crappy availability.
Step 8:
Press continue. You finally have your client_id key (labelled 'Consumer Key') and client_secret (labelled 'Consumer Secret').
Step 9:
But wait! You're not done yet; select 'Manage' then 'Edit Policies'
Make sure IP relaxation is set to Relax IP restrictions,
and make sure that Permitted Users is set to "All users may self-authorize.",
and also make sure the your Security > Network Access > Trusted IP Ranges has been set
If you're concerned about disabling security, don't be for now, you just want to get this working for now so you can make API calls. Tighten permissions once you have everything working, one at a time, so you can figure out what setting is giving you authentication errors.
Step 10:
Celebrate! This curl call should succeed:
on production:
curl -v https://login.salesforce.com/services/oauth2/token \
-d "grant_type=password" \
-d "client_id=YOUR_CLIENT_ID_FROM_STEP_8" \
-d "client_secret=YOUR_CLIENT_SECRET_FROM_STEP_8" \
-d "username=user@wherever.com" -d "password=foo@bar.com"
on sandbox or test:
curl -v https://test.salesforce.com/services/oauth2/token \
-d "grant_type=password" \
-d "client_id=YOUR_CLIENT_ID_FROM_STEP_8" \
-d "client_secret=YOUR_CLIENT_SECRET_FROM_STEP_8" \
-d "username=user@wherever.com" -d "password=foo@bar.com"
Notes:
You shouldn't be doing password authorization if you're building a multi-tenant app, where users need to authorize their own application. Use the Oauth2 workflow for that.
You may need to pass in your security token appended to your password.
I had the same error with all keys set correct and spent a lot of time trying to figure out why I cannot connect.
Finally I've found that in Setup -> Manage Connected Apps -> Click "MyAppName" -> Click "Edit Policies".
In the 'Permitted Users' field value "All users may self-authorize" should be set.