Skip to main content

Apex Code for Refresh Token and Token Generation for Interaction

Introduction:

In Salesforce, interacting with external systems often requires the use of access tokens for authentication and authorization. To ensure secure and uninterrupted interactions, it is essential to handle token generation and refresh token functionality properly. In this blog post, we will explore Apex code examples for generating access tokens and implementing a refresh token mechanism to maintain secure and continuous communication with external systems.


1. Generating Access Tokens:

To generate access tokens for interaction, you can use the OAuth 2.0 authentication protocol. The following Apex code demonstrates the generation of an access token using the Username-Password Flow:


public class TokenGenerator {

    public static String getAccessToken(String clientId, String clientSecret, String username, String password, String endpointUrl) {

        HttpRequest request = new HttpRequest();

        request.setEndpoint(endpointUrl);

        request.setMethod('POST');

        request.setHeader('Content-Type', 'application/x-www-form-urlencoded');

        request.setBody('grant_type=password&client_id=' + clientId +

                        '&client_secret=' + clientSecret +

                        '&username=' + EncodingUtil.urlEncode(username, 'UTF-8') +

                        '&password=' + EncodingUtil.urlEncode(password, 'UTF-8'));


        Http http = new Http();

        HttpResponse response = http.send(request);

        

        if (response.getStatusCode() == 200) {

            Map<String, Object> jsonResponse = (Map<String, Object>) JSON.deserializeUntyped(response.getBody());

            return (String) jsonResponse.get('access_token');

        } else {

            // Handle error response

            return null;

        }

    }

}


In this example, you pass the client ID, client secret, username, password, and the OAuth endpoint URL. The method sends a POST request to the endpoint and retrieves the access token from the response.


2. Implementing Refresh Token Mechanism:

To maintain continuous interaction, it is essential to handle token expiration and implement a refresh token mechanism. The following Apex code demonstrates how to refresh an access token using the Refresh Token Flow:


public class TokenRefresher {

    public static String refreshToken(String clientId, String clientSecret, String refreshToken, String endpointUrl) {

        HttpRequest request = new HttpRequest();

        request.setEndpoint(endpointUrl);

        request.setMethod('POST');

        request.setHeader('Content-Type', 'application/x-www-form-urlencoded');

        request.setBody('grant_type=refresh_token&client_id=' + clientId +

                        '&client_secret=' + clientSecret +

                        '&refresh_token=' + refreshToken);


        Http http = new Http();

        HttpResponse response = http.send(request);

        

        if (response.getStatusCode() == 200) {

            Map<String, Object> jsonResponse = (Map<String, Object>) JSON.deserializeUntyped(response.getBody());

            return (String) jsonResponse.get('access_token');

        } else {

            // Handle error response

            return null;

        }

    }

}


In this example, you pass the client ID, client secret, refresh token, and the OAuth endpoint URL. The method sends a POST request to the endpoint to refresh the access token, and the refreshed token is returned from the response.


Conclusion:

Handling access tokens and implementing a refresh token mechanism are crucial aspects of securely interacting with external systems in Salesforce. By using the provided Apex code examples for token generation and refresh token functionality, you can ensure uninterrupted communication and maintain the security of your interactions.


Remember to customize the code according to your specific OAuth implementation and endpoint requirements. Proper error handling and additional security measures should be implemented to enhance the reliability and robustness of your integration.


References:

- Salesforce Developer Documentation - OAuth 2.0: https://developer.salesforce.com/docs/atlas.en-us.api_rest.meta/api_rest/intro_understanding_oauth_endpoints.htm

Popular Posts

Apex Test Class Examples for @HttpPost Exposed WebService Class

Introduction: In Salesforce, the Apex programming language allows you to create powerful web services that can be exposed to external systems for data integration. One common scenario is using the @HttpPost annotation to create a custom RESTful web service. In this blog post, we'll walk through some examples of how to write effective test classes for an @HttpPost exposed web service class in Salesforce. Writing comprehensive test classes ensures that your code is robust, functional, and ready for deployment.

How to Save Quote PDF, Send PDF, Preview PDF in salesforce with custom functionality

Want to develop custom pdf viewer, save pdf in quote pdf related List and Send quote to customer on button click when quote is custom in salesforce . These functionality are standard from salesforce. but you can develop these functionality custom in salesforce. Here is the solution:- Custom button to save Quote PDF and send PDF  Step 1:-  First Create Two custom button. which will used for PDF preview and Save quote pdf in quotes pdf related list.                               1. PDF preview Button                              2. Save & Send Quote Button Replace "Your VF page here" to Your quote PDF cuatom page. Step 2:-  PDF preview button   pdf preview button will display the pdf's preview in standard format of salesforce. So you need to set the  following configuration (In picture). After that you have ...

Uninstall all Windows 10 default apps using Powershell

Here is script to uninstall all windows 10 default modern apps. This script uninstalls xbox, xbox Game bar, Xbox App,Xbox Gaming Overlay, Get started etc from your computer. No need to run one by one commands Just copy below script, run  powershell as administrator and paste script and press enter . It will automatically uninstall all default programs.  If you do not  want to uninstall some apps than just remove " "  line from script. $packages = @( "7EE7776C.LinkedInforWindows" "C27EB4BA.DropboxOEM" "Microsoft.3DBuilder" "Microsoft.Microsoft3DViewer"

Unveiling the Power of Named Credentials in Salesforce with Comprehensive Code Examples

Introduction: Named Credentials are a powerful feature in Salesforce that allow you to securely authenticate and connect to external services and APIs without exposing sensitive information like usernames and passwords. In this blog post, we'll delve into the world of Named Credentials, understand their significance, and provide you with in-depth code examples to illustrate their implementation in various scenarios.

Unleashing the Power of Flow Orchestrator in Salesforce: Streamlining Business Processes

Introduction: Salesforce Flow Orchestrator is a powerful tool that enables businesses to automate and streamline complex business processes within the Salesforce platform. With its intuitive visual interface, advanced workflow capabilities, and seamless integration with other Salesforce features, Flow Orchestrator revolutionizes how organizations manage and optimize their processes. In this blog post, we will explore the features, benefits, and potential of Flow Orchestrator in driving operational efficiency and productivity. 1. Simplifying Complex Business Processes: Flow Orchestrator empowers business users to design and execute complex workflows without the need for extensive coding or technical expertise. Its visual interface allows users to create dynamic flows, define decision points, and automate repetitive tasks, all while maintaining a clear and intuitive process design. 2. Enhanced Automation with Conditional Logic: Flow Orchestrator offers advanced conditional logic c...

Must-listen songs for developers

Here are some must-listen songs for developers: "Strobe" by deadmau5 . This electronic dance music (EDM) track is perfect for getting into a flow state. The repetitive beat and simple melody are easy to focus on, and the overall mood of the song is upbeat and motivating.  "Viva la Vida" by Coldplay . This rock song has a soaring melody and powerful lyrics that can inspire you to stay focused and productive. The song's message of hope and resilience is perfect for those times when you're feeling stuck or discouraged.  "Code Monkey" by Jonathan Coulton . This tongue-in-cheek song is a hilarious and accurate portrayal of the life of a software developer. The lyrics are catchy and the song's upbeat tempo will make you want to get up and dance.  "The Sound of Silence" by Simon & Garfunkel . This classic folk song is perfect for those times when you need to focus and concentrate. The song's slow tempo and haunting melody will h...

Deploy Lightning Web Component Files - Full Code with Output

Introduction: Lightning Web Components (LWC) are a powerful way to build efficient and reusable components in the Salesforce ecosystem. In this blog, we will walk through the process of deploying Lightning Web Component files and explore the full code with the output. By the end of this tutorial, you will have a clear understanding of how to create, deploy, and test Lightning Web Components.