Loading
Salesforce now sends email only from verified domains. Read More
Agentforce Contact Center
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Set Up Token-Based User Verification

            You are here:

            1. Salesforce Help
            2. Docs
            3. Agentforce Contact Center

            Set Up Token-Based User Verification

            Let customers have secure conversations with token-based user verification. Add keys or an Endpoint URL to create a keyset, and then turn on user verification in Setup.

            Required Editions

            View supported editions.
            Checkmark This article applies to: Enhanced In-App Chat and Enhanced Web Chat channels
            X icon This article doesn’t apply to: Enhanced WhatsApp, Standard and Enhanced Facebook Messenger, Standard and Enhanced SMS, Enhanced Apple Messages for Business, Enhanced LINE, and Bring Your Own Channel
            User Permissions Needed
            To set up this feature: Customize Application
            Important
            Important Token-based user verification is available for a mobile app, an external website, or some Aura sites (Build Your Own Aura, Help Center, and Customer Service templates). When you’re using the Enhanced Chat for In-App SDK for mobile apps, we don’t support verified users alongside unverified users. Your mobile app implementation must be designed for either verified users or unverified users.

            Add Your Keys or Endpoint URL to Create a Keyset

            Create a keyset for token-based user verification. Choose whether to create your keyset from an endpoint URL or by manually uploading your keys.

            1. From Setup, in the Quick Find box, enter User Verification, and then select Enhanced Chat User Verification.
            2. To create a Keyset from an Endpoint URL:
              1. Click New Keyset.
              2. Name your keyset and indicate the JSON web key issuer. Enter an issuer that matches the iss parameter value in the JWT payload.
              3. Under Type, select Endpoint URL, and add your JWKS URL Response to the Endpoint URL field. Note the following when creating your URL: 1) The JWKS URL Response must be hosted outside of Salesforce. 2) We support the RS256 and RS512 algorithms. 3) Formatting matters. Here’s an example endpoint format:
                Example code illustrating an endpoint format.
              4. Save your changes.
            3. To create a keyset by uploading keys:
              1. Click New Key.
              2. Name your key and activate it.
              3. Upload your key file.
              4. Save your changes.
              5. Repeat steps a through d until all keys are uploaded.
              6. Click New Keyset.
              7. Name your keyset and indicate the JSON web key issuer. Enter an issuer that matches the iss parameter value in the JWT payload.
              8. Select Keys as the type.
              9. Search for and select each key to add to your keyset.
              10. Save your changes.

            Turn On User Verification

            Turn on user verification for Enhanced Chat.

            1. From Setup, in the Quick Find box, enter Messaging, and then select Messaging Settings.
            2. In the dropdown for your messaging channel, select Edit.
            3. Select the Add User Verification checkbox.
            4. Return to the Messaging Settings related list, and click the name of your messaging channel.
            5. Under User Verification, click New.
            6. Enter a configuration name. To let customers continue the same messaging conversation across channels, add the same configuration name to each channel.
            7. Select a keyset.
            8. Select Active.
            9. Save your changes.

            Determine Authorization Token Expiration Time

            Control when a messaging session gets renewed by your website or mobile app to continue the conversation.

            When user verification is turned off, the field is labeled Authorization Token Expiration Time for Unverified Users and it controls the number of minutes until an Enhanced Web Chat session expires. The default value for this field is 360 minutes (6 hours) and you can specify up to 72 hours. Enhanced In-App Chat sessions is automatically renewed by the SDK so this value has a minimal impact on mobile app users.

            Authorization token expiration time for unverified users

            When user verification is turned on, the field is labeled Authorization Token Expiration Time for Verified Users and it controls how long until Salesforce calls your client API (Web, iOS, Android) so that you can either let the session expire, or provide a valid identity token to renew the session. The default value for this field is 60 minutes.

            Authorization token expiration time for verified users

            Use the API to Send the Token to Salesforce

            From your website or mobile app, use the APIs we provide to send the customer token to Salesforce.

            Here's the list of APIs we provide to send a customer token to Salesforce.

            See Also

             
            Loading
            Salesforce Help | Article