You need to sign in to do that
Don't have an account?
Marek Kosar_
Use cases for JWT Bearer Token & SAML Bearer Assertion Authentication Flows
Hi,
can anyone briefly explain me on real use cases these 2 oAuth flows?
I'm struggling to find any useful information, about when to use them.
Thanks,
Marek
can anyone briefly explain me on real use cases these 2 oAuth flows?
I'm struggling to find any useful information, about when to use them.
Thanks,
Marek
Not sure if you are still in need for an answer but here is my understanding:
Both flows are very similar to the common goal of authenticating applications to another. I would use either flow when I need to connect, for example, a custom Java application that sits on a web server to Salesforce. The most important part is here that the application solely communicates via the API and no user is ever going to set the connection up and/or approves the access like you would do in a web server or user agent flow.
The main difference between the two flows is that one contains a Base64 encoded XML based assertion while the other flow creates a JSON based assertion.
Let me know if you had any other findings.