Newer Version Available
ExtlClntAppGlobalOauthSettings
Parent Type
File Suffix and Directory Location
ExtlClntAppGlobalOauthSettings components have the suffix .ecaGlblOauth and are stored in the extlClntAppGlobalOauthSets folder.
Version
ExtlClntAppGlobalOauthSettings components are available in API version 59.0 and later.
Special Access Rules
Access to the OAuth plugin requires orgs to enable the Allow Access to OAuth Consumer Secrets via Metadata API permission in Setup. The View External Client Apps Consumer Secrets in Metadata user permission is required for users with developer roles to configure global OAuth settings.
Fields
| Field Name | Description |
|---|---|
| callbackUrl |
|
| certificate |
|
| consumerKey |
|
| consumerSecret |
|
| externalClientApplication |
|
| idTokenConfig |
|
| isClientCredentialsFlowEnabled |
|
| isCodeCredFlowEnabled |
|
| isCodeCredPostOnly |
|
| isConsumerSecretOptional |
|
| isDeviceFlowEnabled |
|
| isIntrospectAllTokens |
|
| isNamedUserJwtEnabled |
|
| isPkceRequired |
|
| isRefreshTokenRotationEnabled |
|
| isSecretRequiredForRefreshToken |
|
| isSecretRequiredForTokenExchange |
|
| isTokenExchangeEnabled |
|
| label |
|
| shouldRotateConsumerKey |
|
| shouldRotateConsumerSecret |
|
ExternalAppIdTokenConfig
Represents configurations that determine the ID token attributes.
| Field Name | Description |
|---|---|
| idTokenAudience |
|
| idTokenIncludeAttributes |
|
| idTokenIncludeStandardClaims |
|
| idTokenValidityInMinutes |
|
Declarative Metadata Sample Definition
This example shows an ExtlClntAppGlobalOauthSettings component.
1<?xml version="1.0" encoding="UTF-8"?>
2<ExtlClntAppGlobalOauthSettings xmlns="http://soap.sforce.com/2006/04/metadata">
3 <callbackUrl>https://www.example.com</callbackUrl>
4 <externalClientApplication>myeca</externalClientApplication>
5 <idTokenConfig>
6 <idTokenAudience>SalesforceAudience</idTokenAudience>
7 <idTokenIncludeStandardClaims>true</idTokenIncludeStandardClaims>
8 <idTokenValidityInMinutes>0</idTokenValidityInMinutes>
9 </idTokenConfig>
10 <isConsumerSecretOptional>false</isConsumerSecretOptional>
11 <isIntrospectAllTokens>false</isIntrospectAllTokens>
12 <isPkceRequired>true</isPkceRequired>
13 <isSecretRequiredForRefreshToken>false</isSecretRequiredForRefreshToken>
14 <label>myecaglobalset</label>
15 <shouldRotateConsumerKey>false</shouldRotateConsumerKey>
16 <shouldRotateConsumerSecret>false</shouldRotateConsumerSecret>
17</ExtlClntAppGlobalOauthSettings>This example package.xml references the previous definition.
1<?xml version="1.0" encoding="UTF-8"?>
2<Package xmlns="http://soap.sforce.com/2006/04/metadata">
3 <types>
4 <members>*</members>
5 <name>ExternalClientApplication</name>
6 </types>
7 <types>
8 <members>*</members>
9 <name>ExtlClntAppOauthSettings</name>
10 </types>
11 <types>
12 <members>*</members>
13 <name>ExtlClntAppGlobalOauthSettings</name>
14 </types>
15 <types>
16 <members>*</members>
17 <name>ExtlClntAppOauthConfigurablePolicies</name>
18 </types>
19 <types>
20 <members>*</members>
21 <name>ExtlClntAppConfigurablePolicies</name>
22 </types>
23 <version>60.0</version>
24</Package>Wildcard Support in the Manifest File
This metadata type supports the wildcard character * (asterisk) in the package.xml manifest file. For information about using the manifest file, see Deploying and Retrieving Metadata with the Zip File.