Newer Version Available
ExtlClntAppOauthConfigurablePolicies
Parent Type
File Suffix and Directory Location
ExtlClntAppOauthConfigurablePolicies components have the suffix .ecaOauthPlcy and are stored in the extlClntAppOauthPolicies folder.
Version
ExtlClntAppOauthConfigurablePolicies components are available in API version 59.0 and later.
Special Access Rules
The View all External Client Apps, view their settings, and edit their policies user permission is required for users with admin roles to configure OAuth policies.
Fields
| Field Name | Description |
|---|---|
| apexHandler |
|
| clientCredentialsFlowUser |
|
| commaSeparatedCustomScopes |
|
| commaSeparatedPermissionSet |
|
| customAttributes |
|
| executeHandlerAs |
|
| externalClientApplication |
|
| guestJwtTimeout |
|
| ipRelaxationPolicyType |
|
| isClientCredentialsFlowEnabled |
|
| isGuestCodeCredFlowEnabled |
|
| isNamedUserJwtEnabled |
|
| isTokenExchangeFlowEnabled |
|
| label |
|
| namedUserJwtTimeout |
|
| permittedUsersPolicyType |
|
| policyAction |
|
| refreshTokenPolicyType |
|
| refreshTokenValidityPeriod |
|
| refreshTokenValidityUnit |
|
| requiredSessionLevel |
|
| sessionTimeoutInMinutes |
|
| singleLogoutUrl |
|
| startUrl |
|
ExtlClntAppOauthPoliciesAttribute
Represents admin-defined attributes that provide personal information to customize the external client app for a specific use case.
| Field Name | Description |
|---|---|
| formula |
|
| key |
|
Declarative Metadata Sample Definition
This example shows an ExtlClntAppOauthConfigurablePolicies component.
1<?xml version="1.0" encoding="UTF-8"?>
2<ExtlClntAppOauthConfigurablePolicies xmlns="http://soap.sforce.com/2006/04/metadata">
3 <externalClientApplication>myeca</externalClientApplication>
4 <label>myecapolicy</label>
5 <apexHandler>MyEcaOauthApexHandler</apexHandler>
6 <executeHandlerAs>admin@example.org</executeHandlerAs>
7 <refreshTokenPolicyType>SpecificLifetime</refreshTokenPolicyType>
8 <refreshTokenValidityPeriod>1</refreshTokenValidityPeriod>
9 <refreshTokenValidityUnit>Days</refreshTokenValidityUnit>
10 <ipRelaxationPolicyType>Enforce</ipRelaxationPolicyType>
11 <permittedUsersPolicyType>AdminApprovedPreAuthorized</permittedUsersPolicyType>
12 <commaSeparatedPermissionSet>PermSetExample</commaSeparatedPermissionSet>
13 <commaSeparatedCustomScopes>CustomScopeExample</commaSeparatedCustomScopes>
14 <sessionTimeoutInMinutes>1</sessionTimeoutInMinutes>
15 <requiredSessionLevel>HIGH_ASSURANCE</requiredSessionLevel>
16 <policyAction>RaiseSessionLevel</policyAction>
17 <singleLogoutUrl>https://www.example.com</singleLogoutUrl>
18 <startUrl>https://www.example.com</startUrl>
19</ExtlClntAppOauthConfigurablePolicies>This example package.xml that references the previous definition.
1<?xml version="1.0" encoding="UTF-8"?>
2<Package xmlns="http://soap.sforce.com/2006/04/metadata">
3 <types>
4 <members>*</members>
5 <name>ExternalClientApplication</name>
6 </types>
7 <types>
8 <members>*</members>
9 <name>ExtlClntAppOauthSettings</name>
10 </types>
11 <types>
12 <members>*</members>
13 <name>ExtlClntAppGlobalOauthSettings</name>
14 </types>
15 <types>
16 <members>*</members>
17 <name>ExtlClntAppOauthConfigurablePolicies</name>
18 </types>
19 <types>
20 <members>*</members>
21 <name>ExtlClntAppConfigurablePolicies</name>
22 </types>
23 <version>60.0</version>
24</Package>Wildcard Support in the Manifest File
This metadata type supports the wildcard character * (asterisk) in the package.xml manifest file. For information about using the manifest file, see Deploying and Retrieving Metadata with the Zip File.