ISVforce Guide

Clouds with binary code floating aboveCloud with binary code floating above

No Results

Search Tips:

  • Please consider misspellings
  • Try different search keywords
PDF

Newer Version Available

This content describes an older version of this product. View Latest

Connected Apps Overview

Connected Apps can be created in: Group, Professional, Enterprise, Performance, Unlimited, and Developer Editions

Connected Apps can be installed in: All Editions

User Permissions Needed
To read: “Customize Application”
To create, update, or delete: “Customize Application” AND either

“Modify All Data” OR “Manage Connected Apps
To update all fields except Profiles, Permission Sets, and Service Provider SAML Attributes: “Customize Application”
To update Profiles, Permission Sets, and Service Provider SAML Attributes: “Customize Application” AND “Modify All Data”
To uninstall: “Download AppExchange Packages”

A connected app is an application that integrates with salesforce.com using APIs. Connected apps use standard SAML and OAuth protocols to authenticate, provide Single Sign-On, and provide tokens for use with Salesforce APIs. In addition to standard OAuth capabilities, connected apps allow administrators to set various security policies and have explicit control over who may use the applications.

Connected apps begin with a developer defining OAuth metadata about the application, including:
  • Basic descriptive and contact information for the connected app
  • The OAuth scopes and callback URL for the connected app
  • Optional IP ranges where the connected app might be running
  • Optional information about mobile policies the connected app can enforce
In return, the developer is provided an OAuth client Id and client secret for the connected app. The developer can then package the app and provide it to a Salesforce administrator.
There are two deployment modes:
  • The app is created and used in the same organization. This is a typical use case for IT departments, for example.
  • The app is created in one organization and installed on other organizations. This is how an entity with multiple organizations or an ISV would use connected apps.
Administrators can install the connected app into their organization and use profiles, permission sets, and IP range restrictions to control which users can access the application. Management is done from a detail page for the connected app. Administrators can also uninstall the connected app and install a newer version. When the app is updated, the developer can notify administrators that there is a new version available for the app.

Salesforce-managed connected apps packages like those for the Salesforce1 downloadable apps can’t be uninstalled. They are automatically updated when the next user’s session refreshes.

Note