Custom Salesforce Identity Provider
Click on your account icon at the top right of the page, and select My Developer Account.
Note: You may be asked to authenticate again.
Click on the settings icon at the top right of the page, and select Setup.
In the left menu, go to Platform Tools > Apps > App Manager.
Click the New Connected App button at the top right.
- Enter your contact information.
- For the name of your application, we recommend using your organization or company name.
Under API (Enable OAuth Settings), check the Enable OAuth Settings option.
For the Callback URL, enter:
For Selected OAuth Scopes
, select and add the following:
- Allow access to your unique identifier (openid)
If you need the user's Access Token by enabling Authorization Data in Bread & Butter, please also add:
- Perform requests on your behalf at any time (refresh_token, offline_access)
If you enable Authorization Data without adding the above Scope, users will be blocked from logging in by Salesforce.
- Check the Configure ID Token option.
- More options will appear. Also check the Include Standard Claims option.
Take note of the Consumer Key and Consumer Secret for the Bread & Butter setup below.
If you intend to enable Authorization Data to use Access Tokens
and Refresh Tokens, please follow these steps to ensure that the Refresh Token settings are correct:
- In the left menu, go to Apps > Connected Apps > Manage Connected Apps.
- Click Edit for your App.
- Ensure that Refresh Token Policy is not set to expire immediately. Instead set to Refresh Token is valid until revoked, or one of the other expiry time periods, depending on your internal policies.
Bread & Butter Setup:
- Go to https://app.breadbutter.io/sign-in/
- Click Sign In and authenticate (or Sign Up make a new account and authenticate).
- Navigate to Default Rules (or Domain Rules and open/create a domain module).
- Click on the Salesforce Social Provider icon.
- Click Create New to start creating your custom Salesforce provider.
- Enter a custom name and description.
- Enter the Consumer Key from the Salesforce setup steps above.
- Enter the Consumer Secret from the Salesforce setup steps above.
- Click Add.
- Click the checkbox next to your new Salesforce provider to enable it.