Assign an OAuth Custom Scope to an External Client App
After you create an OAuth custom scope in your Salesforce org, you can assign it to an
external client app to set data-access permissions for the app. For example, an external client
app with an order_status custom scope has the correct permission set to access order status data
from the external entity.
Required Editions
Available in: both Salesforce Classic and
Lightning Experience
External client apps can be created in: Group, Essentials, Professional,
Enterprise, Performance, Unlimited, and Developer
Editions
External client apps can be installed in: All editions
User Permissions Needed
To manage, create, edit, and delete OAuth apps:
Manage external client apps
Typically, to receive custom scopes that are assigned to an
external client app, you must include the scope parameter in the
authorization request. With the OAuth 2.0 JWT bearer flow, for external client apps that are
pre-authorized, custom scopes are automatically returned with an access token. For more
information, see OAuth 2.0 JWT Bearer Flow for Server-to-Server Integration.
From Setup, in the Quick Find box, enter external client apps,
and select External Client Apps Manager.
From the list, select the external client app.
Expand the OAuth Policies section of the Policies page.
Select the OAuth custom scopes to assign to the external client app, and save your
updates.
Did this article solve your issue?
Let us know so we can improve!
Loading
Salesforce Help | Article
Cookie Consent Manager
General Information
Required Cookies
Functional Cookies
Advertising Cookies
General Information
We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required Cookies
Always Active
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional Cookies
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising Cookies
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.
