function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Venkatramanan LakshmananVenkatramanan Lakshmanan 

OAuth 2.0 Web Server Authentication Flow

hi,

I am trying to connect to SF from external application using the OAuth 2.0 Web Server Authentication Flow and i read about this flow. Came across this URL

https://login.salesforce.com/services/oauth2/authorize?response_type=code&client_id=
3MVG9lKcPoNINVBIPJjdw1J9LLM82HnFVVX19KY1uA5mu0QqEWhqKpoW3svG3XHrXDiCQjK1mdgAvhCscA
9GE&redirect_uri=https%3A%2F%2Fwww.mysite.com%2Fcode_callback.jsp&state=mystate

where i could see URL with
response_type is passed as code,
client_id is the one we get once connected app is set in salesforce,
redirect_uri is URL to redirect once the authentication is done successfully and finally
state is specified as mystate

My question is, what should i give for the response_type and state ? for confirmation, redirect_uri is the URL which we have to redirect the user once the login is success, am i right? 

please advise.

Thanks
ShashForceShashForce
Hi,

response_type must always be "code" in this flow.

state is optional. more details here: https://www.salesforce.com/us/developer/docs/api_rest/Content/intro_understanding_web_server_oauth_flow.htm

Thanks,
Shashank