Hi Everyone, I am struggling to | Salesforce Trailblazer Community

Apr 15, 2019, 5:46 PM

Hi Everyone,

I am struggling to understand the differences between OAuth 2.0 SAML Bearer Assertion Flow v/s SAML Assertion Flow and their use cases . Can someone please help me understand , when to use which ?

Also I have a scenario given below:

Specialty Plants Application: This in-house application is used by design consultants and allows

them to search several 3rd party databases for availability and inventory of specialty plants. This

application supports SAML, and GRS would like to make sure that all users accessing the

application are active users of Salesforce.

Salesforce in turn uses AD as its IdP.

What kind of oAuth flow would be required here?

Since both app (Salesforce, Specialty Plants Application) are web apps , can we use Web Server oAuth Flow + SAML (AD as Idp)

3 comments

Ian Glazer (Salesforce)
Apr 16, 2019, 7:05 PM
Any reason why the secure web service couldn't use OAuth?
Also have you seen our Digging Deeper in OAuth article(s):
https://help.salesforce.com/articleView?id=remoteaccess_authenticate_overview.htm

Add a comment

Write a comment...

0/9000

Salesforce Identity