You are here:
OAuth Plugin Enablement with Metadata API
In an external client app, the package.xml manifest file references the settings and policies files for each plugin. To enable external client app plugins, configure the settings files and reference the plugin in the manifest file.
External client apps include a package.xml manifest file and can include one or more plugins. Each external client app plugin includes two types of files.
- Settings files- Configured by the external client app developer.
- Policies files- Configured by the external client app subscriber.
This section describes an OAuth plugin to illustrate examples.
OAuth settings configurations are divided between two settings files. With two settings files, you can package and deliver customized external client apps. Use a local settings file for general settings, and maintain security with a restricted global settings file. Developers can configure both settings files, and any change to a global settings file affects all instances where the external client app is deployed.
OAuth policies files contain all of the settings that a subscriber org will use to configure the external client app for their unique situation. Settings like session timeout, start URL, and permission sets are determined by the subscriber’s use case and under their control.
- Configure the External Client App Global OAuth Settings
Configure a global settings file, which affects every instance where the external client app is deployed. - Configure the External Client App OAuth Settings
Configure the OAuth settings file, which affects the local instance. - External Client App OAuth Policies Configuration
The OAuth policies file is an important part of the external client app OAuth plugin that is generated with default values during deployment. Admins for the subscriber org configure the OAuth policies file for their specific use case.
