Connect REST API Developer Guide

Connect REST API Developer Guide
Introduction
Quick Start
Work with Features
Examples
Resources
Action Links Resources
Activity Reminders Resources
Application for Program
B2B and D2C Commerce Resources
Batch Resource
Bot Version Activation Resource
Briefcase Priming Records Resource
Call Coaching Resources
Clean Resources
CMS Managed Content Resources
Commerce Einstein Webstore Resources
Connect Resources
Content Workspace Permissions Resource
Conversation Application Definition Resource
Conversations Resources
Custom Domain Resources
Customer Asset Lifecycle Management Resources
Data Cloud Resources
Data Integration Resources
Duplicate Resources
Einstein Prediction Service Resources
Einstein Prompt Template Generations Resource
Einstein Recommendation Resources
Email Merge Field Services Resource
Employee Profiles Resources
Enhanced CMS Workspaces Resources
Environment Hub Resources
Experience Cloud CMS Content Search Resource
Experience Cloud Microsites Resources
Experience Cloud Sites Knowledge Resources
Experience Cloud Sites Moderation Resources
Experience Cloud Sites Resources
Experience Model Resources
External Email Services Resource
Field Service Recordset Filter Criteria Resource
Field Service Shifts from Pattern Resource
Files Connect Repository Resources
Files Resources
Folders Resources
Forecasts Resources
Knowledge Article View Stat Resource
List Share Resources
Managed Topics Resources
Messaging Channels Resource
Microbatching Resources
Motifs Resources
Named Credentials Resources
Credential
External Credential OAuth URL
External Credentials
External Credential
Named Credentials
Named Credential
Navigation Menu Items Resource
Network Data Category Resources
Next Best Action Resources
Notification Settings Resources
Notifications Resources
OAuth Credentials Resources
OAuth Usage Resources
Orchestration Resource
Pardot Business Unit Context Resource
Personalization Resources
Private Connect Resources
Push Notifications Resource
Quick Text Resource
Quip Related Records Resource
Salesforce Omnichannel Inventory Resources
Salesforce Order Management Resources
Salesforce Payments Resources
Salesforce Scheduler Resources
Share Captured Activity Resource
Social Engagement Resources
Social Engagement Setup Resources
Surveys Resources
Topics Resources
Topics on Records Resource
User Files Resources
Chatter Resources
Request Bodies
Response Bodies
Appendices
PDF

Newer Version Available

This content describes an older version of this product. View Latest

Credential

Get, create, refresh, update, replace, or delete a credential.
Resource
1/named-credentials/credential
Available version
56.0
HTTP methods
GET, POST, PUT, PATCH, DELETE
PATCH is supported in version 59.0 and later only for custom protocols.
Request parameters for GET
Parameter Name Type Description Required or Optional Available Version
externalCredential String Fully qualified developer name of the external credential. Required 56.0
principalName String Name of the external credential named principal. Required if principalType is NamedPrincipal 56.0
principalType String Type of credential principal. Values are:
  • AwsStsPrincipal
  • NamedPrincipal
  • PerUserPrincipal
 Required 56.0
Response body for GET
Credential
Request parameters for POST
Use this request parameter to refresh an OAuth or AWS Roles Anywhere credential.
Parameter Name Type Description Required or Optional Available Version
action String Action to take when creating the credential. Value is:
  • Refresh
 Optional 58.0
Request body for POST, PUT, and PATCH
Use this request body to create (POST), replace (PUT), and update (PATCH) a credential.
Root XML tag
<credential>
JSON example for creating a credential (POST)
1{
2externalCredential: "ecNameAws",
3authenticationProtocol: "AwsSv4",
4principalName: "principalA",
5principalType: "NamedPrincipal",
6credentials: {
7   awsAccessKeyId: {
8      value: "00000000000",
9      encrypted: false
10   },
11   awsSecretAccessKey: {
12      value: "aws-secret-value",
13      encrypted: true
14   },
15   awsRoleArn: {
16      value: "arn:partition:service:region:account-id:resource-id",
17      encrypted: false
18   }
19}
20}
JSON example for replacing a credential (PUT)
In this example. assume the credential has two values: apiKey and apiSecret. When this request body is used with PUT, apiKey is updated and apiSecret is deleted.
1{
2   authenticationProtocol: String : "Custom",
3   externalCredential: String : "medicalIntegrationExternalCredential",
4   principalName: String : "customerSupportGroup", 
5   principalType: String : "NamedPrincipal",
6   // Map<String, ConnectApi.CredentialValue>
7   credentials: { 
8       apiKey: { 
9           value: String : "00000000",
10           encrypted: Boolean : false
11       }
12   }
13}
JSON example for updating a custom credential (PATCH)
PATCH is supported only for custom credentials. Only the credentials included in the request body are updated. In this example. assume the credential has two values: apiKey and apiSecret. When this request body is used with PATCH, apiKey is updated and apiSecret remains the same.
1{
2   authenticationProtocol: String : "Custom",
3   externalCredential: String : "medicalIntegrationExternalCredential",
4   principalName: String : "customerSupportGroup", 
5   principalType: String : "NamedPrincipal",
6   // Map<String, ConnectApi.CredentialValue>
7   credentials: { 
8       apiKey: { 
9           value: String : "00000000",
10           encrypted: Boolean : false
11       }
12   }
13}
Properties
Name Type Description Required or Optional Available Version
authentication​Protocol String Authentication protocol of the external credential. Values are:
  • AwsSv4
  • Basic
  • Custom
  • Jwt
  • OAuth
 Required 56.0
authentication​ProtocolVariant String Authentication protocol variant of the external credential. Values are:
  • AwsSv4_STS—AWS Signature Version 4 with Security Token Service.
  • ClientCredentialsClientSecret—OAuth 2.0 Client Credentials client secret. Client secrets are sent in the callout’s request body.
  • ClientCredentialsClientSecretBasic—OAuth 2.0 Client Credentials client secret. Client secrets are sent in the callout’s authorization header, as with Basic authentication.
  • ClientCredentialsJwtAssertion—OAuth 2.0 Client Credentials JSON Web Token assertion.
  • JwtBearer—OAuth 2.0 JSON Web Token bearer flow.
  • NoAuthentication—No authentication.
  • RolesAnywhere—AWS Signature Version 4 with Identity and Access Management (IAM) Roles Anywhere.
If specified, the authentication protocol variant must match the actual protocol variant of the external credential.		 Optional 57.0
credentials Map<String, Credential Value Input> Map of protocol-specific credentials.
Authentication protocols have credential allowlists and encryption rules.
  • AwsSv4awsAccessKeyId (not encrypted), awsSecretAccessKey (encrypted), awsRoleArn (not encrypted)
  • Custom—Any credential name is valid (user sets encryption rules)
 Required 56.0
externalCredential String Fully qualified developer name of the external credential. Required 56.0
principalName String Name of the external credential named principal. Required if principalType is NamedPrincipal 56.0
principalType String Type of credential principal. Values are:
  • AwsStsPrincipal
  • NamedPrincipal
  • PerUserPrincipal
 Required 56.0
Response body for POST, PATCH, and PUT
Credential
Request parameters for DELETE
Parameter Name Type Description Required or Optional Available Version
authentication​Parameters String[] List of authentication parameters only for custom protocols, for example myApiKey,myApiSecret. If unspecified, all credentials are deleted. Optional 59.0
externalCredential String Fully qualified developer name of the external credential. Required 56.0
principalName String Name of the external credential named principal. Required if principalType is NamedPrincipal 56.0
principalType String Type of credential principal. Values are:
  • AwsStsPrincipal
  • NamedPrincipal
  • PerUserPrincipal
 Required 56.0
Response for DELETE
204: Successful Delete