Skip to main content

Latest Post

How to Set Up Two-Factor Time-Based One-Time Password (TOTP) Authentication on iPhone Without Third-Party Apps

Unlocking an additional layer of safety to your iPhone is less difficult than you might suppose. With Two-Factor Time-Based One-Time Password (TOTP) authentication, you may bolster your device's protection and other website safety without relying on 1/3-party apps. Here's how you could set it up:

Using Apex Code to Obtain an Access Token

Introduction:

In today's interconnected digital landscape, securing data and ensuring authorized access to various resources is of utmost importance. Access tokens play a pivotal role in this process, serving as a secure and efficient way to authenticate and authorize users or applications. In this blog post, we'll explore how to leverage Apex code within the Salesforce ecosystem to obtain an access token for interacting with external APIs or services.


Understanding Access Tokens:


Access tokens are credentials that are used to gain access to protected resources. They are typically short-lived and are granted after a successful authentication process. Once obtained, these tokens are sent with each subsequent API request to ensure that the request is coming from an authenticated and authorized source.


Prerequisites:


Before diving into the code, make sure you have the following prerequisites in place:

  1. Salesforce Developer Account: You'll need a Salesforce developer account to create and test Apex code.
  2. Connected App: Create a connected app in your Salesforce org to establish the integration and obtain the necessary credentials (Client ID and Client Secret).
  3. Target API: Identify the external API or service you wish to interact with, and understand their authentication requirements.

Step-by-Step Implementation:


Here's a step-by-step guide on how to use Apex code to obtain an access token:


1. Create Apex Class:

   Create a new Apex class that will handle the process of obtaining an access token. You can do this from the Salesforce Developer Console or your preferred IDE.


2. Define Constants:

   Define constants to store the following information:

  • Client ID: Obtained when you create a connected app.
  • Client Secret: Also obtained from the connected app.
  • Token Endpoint: The endpoint where you exchange your credentials for an access token.
  • Username and Password: Salesforce username and password for authentication.

3. Write Apex Code:

   Write Apex code to make a POST request to the token endpoint using the provided credentials. Here's a simplified example:


   public class AccessTokenProvider {

       private static final String CLIENT_ID = 'your_client_id';

       private static final String CLIENT_SECRET = 'your_client_secret';

       private static final String TOKEN_ENDPOINT = 'https://login.salesforce.com/services/oauth2/token';

       private static final String USERNAME = 'your_username';

       private static final String PASSWORD = 'your_password_with_security_token';


       public static String getAccessToken() {

           HttpRequest request = new HttpRequest();

           request.setEndpoint(TOKEN_ENDPOINT);

           request.setMethod('POST');

           request.setHeader('Content-Type', 'application/x-www-form-urlencoded');

           request.setBody('grant_type=password&client_id=' + CLIENT_ID + '&client_secret=' + CLIENT_SECRET + '&username=' + USERNAME + '&password=' + PASSWORD);


           Http http = new Http();

           HttpResponse response = http.send(request);


           if (response.getStatusCode() == 200) {

               Map<String, Object> jsonResponse = (Map<String, Object>) JSON.deserializeUntyped(response.getBody());

               return (String) jsonResponse.get('access_token');

           } else {

               return null;

           }

       }

   }


4. Testing:


   Call the getAccessToken method to obtain the access token. You can then use this token to authenticate your API requests to the external service.


Security Considerations:

  • Hardcoding sensitive information like the client secret and password in your code is not recommended. Use Salesforce's built-in mechanisms to securely manage secrets.
  • Consider using OAuth 2.0 JWT Bearer Flow or other suitable flows for more secure authentication.

Conclusion:


Access tokens are essential components of modern authentication and authorization systems. By implementing the above steps in your Salesforce environment, you can efficiently obtain an access token and ensure secure interaction with external APIs or services. Remember to adhere to best practices and keep security a top priority when working with sensitive information.

Labels:

Popular Posts

Uninstall all Windows 10 default apps using Powershell

Here is script to uninstall all windows 10 default modern apps. This script uninstalls xbox, xbox Game bar, Xbox App,Xbox Gaming Overlay, Get started etc from your computer. No need to run one by one commands Just copy below script, run  powershell as administrator and paste script and press enter . It will automatically uninstall all default programs.  If you do not  want to uninstall some apps than just remove " "  line from script. $packages = @( "7EE7776C.LinkedInforWindows" "C27EB4BA.DropboxOEM" "Microsoft.3DBuilder" "Microsoft.Microsoft3DViewer"
Read more

How to Save Quote PDF, Send PDF, Preview PDF in salesforce with custom functionality

Want to develop custom pdf viewer, save pdf in quote pdf related List and Send quote to customer on button click when quote is custom in salesforce . These functionality are standard from salesforce. but you can develop these functionality custom in salesforce. Here is the solution:- Custom button to save Quote PDF and send PDF  Step 1:-  First Create Two custom button. which will used for PDF preview and Save quote pdf in quotes pdf related list.                               1. PDF preview Button                              2. Save & Send Quote Button Replace "Your VF page here" to Your quote PDF cuatom page. Step 2:-  PDF preview button   pdf preview button will display the pdf's preview in standard format of salesforce. So you need to set the  following configuration (In picture). After that you have ...
Read more

Insert formatted data (HTML) in Rich Text Area

Here I am going to show you, How  to insert formatted data (table, colorful text etc) in rich text area field salesforce. We can directly use updated rich text area in our email templates without doing any extra code for email template. Here is sample code. //Heading for rich text area content. string body='<h3 style=\"color: #2e6c80;\">your heading :</h3>\n              <ol style=\"list-style: none; font-size: 12px; line-height: 32px; \">\n'; body += '<li style=\"clear: both;\"><b>'+Your Label Name+'  : </b> '+                     yourValue.replaceAll(';',' , ') +'</li>';  body +='</ol>'; yourRichTextAreaField=body; Below code is for table:-
Read more

System.LimitException: Too many DML statements: 1

  System.LimitException: Too many DML statements: 1 This error comes when you perform DML operation with "readonly" page attribute. When you see limitation window it shows Close to limit Message.
Read more

LWC Full Dynamic Working Code for Verify Phone HTTP Request in Salesforce

Introduction: In this blog post, we will explore how to build a Lightning Web Component (LWC) in Salesforce that performs a dynamic HTTP request to verify a phone number. We will utilize the power of LWC and Salesforce's capabilities to create an interactive and efficient solution. By the end of this tutorial, you will have a complete understanding of how to implement phone number verification using LWC and HTTP requests.
Read more

Must have Online Tools for all

lets start... 1. UW CSE Indenter Tool :-  This tools mainly useful for developer. This helps to fix  indentation in   their code. It supports below languages-  Java/JS/C/CSS  PHP/Perl/ASM/Bash  HTML/XML  Standard ML  Scheme / Lisp Link :-   UW CSE Indenter Tool 2. JOSN2Apex :- Create an apex class and their test class using this tool. Just paste your JSON and get class. Link:-   Json2Apex 3. Diff Checker:-  This  tool is  to compare text differences between two text files. Link :- Diff Checker 4. Text Compare :- This is purely online tool for text comparison. Just paste your text and find the differences. Link:-   Text Compare 5. Code Beautify :- You can find many many tools here like converter, number utilities, Editor, Compressor etc.  Link :- Code Beautify   6. Certificate Tool :-  This tool is useful to generate X509 Certificate. Link:-   Certificate Tool 7. Online file Convers...
Read more