Custom Salesforce Identity Provider

Step 1

Log in to Salesforce Developer site:

https://developer.salesforce.com/


Step 2

Click on your account icon at the top right of the page, and select My Developer Account.

Note: You may be asked to authenticate again.


Step 3

Click on the settings icon at the top right of the page, and select Setup.

Step 3

Step 4

In the left menu, go to Platform Tools > Apps > App Manager.


Step 5

Click the New Connected App button at the top right.

Step 5

Step 6

  • Enter your contact information.
  • For the name of your application, we recommend using your organization or company name.
Step 6

Step 7

Under API (Enable OAuth Settings), check the Enable OAuth Settings option.


Step 8

For the Callback URL, enter:

https://api.logonlabs.com/callback


Step 9

For Selected OAuth Scopes, select and add the following:

  • Allow access to your unique identifier (openid)

If you need the user’s Access Token by enabling Authorization Data in LogonLabs, please also add:

  • Perform requests on your behalf at any time (refresh_token, offline_access)

Note: If you enable Authorization Data without adding the above Scope, users will be blocked from logging in by Salesforce.

Step 9

Step 10

Click Save.


Step 11

Take note of the Consumer Key and Consumer Secret for the LogonLabs setup below.


Step 12

(Optional) If you intend to enable Authorization Data to use Access Tokens and Refresh Tokens, please follow these steps to ensure that the Refresh Token settings are correct:

  • In the left menu, go to Apps > Connected Apps > Manage Connected Apps.
  • Click Edit for your App.
  • Ensure that Refresh Token Policy is not set to expire immediately. Instead set to Refresh Token is valid until revoked, or one of the other expiry time periods, depending on your internal policies.
Step 12

Step 13

LogonLabs Setup:

  1. Go to logonlabs.com
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Default Rules (or Domain Rules and open/create a domain module).
  4. Click on the Salesforce Social Provider icon.
  5. Click Create New to start creating your custom Salesforce provider.
  6. Enter a custom name and description.
  7. Enter the Consumer Key from the Salesforce setup steps above.
  8. Enter the Consumer Secret from the Salesforce setup steps above.
  9. Click Add.
  10. Click the checkbox next to your new Salesforce provider to enable it.