You need to sign in to do that
Don't have an account?
tggagne
How to authenticate a user without the user knowing
We're developing an application for a client where Salesforce is providing functionality to a web application--but the web application's users can't know Salesforce exists in the solution. We want each of the users to exist on both the web application AND Salesforce so Salesforce can maintain security.
So the challenge is, how can the web application login its users to Salesforce? The OAth seems to require a user's participation, but it looks like SAML might be able to swing it--but that requires the web application handle SAML requests.
Is there anything simpler that does not require usernames and passwords?
In a perfect world, the web application could create a session for a user knowing only the user's username (or federation id) on Salesforce, and perhaps a client id and secret.
So the challenge is, how can the web application login its users to Salesforce? The OAth seems to require a user's participation, but it looks like SAML might be able to swing it--but that requires the web application handle SAML requests.
Is there anything simpler that does not require usernames and passwords?
In a perfect world, the web application could create a session for a user knowing only the user's username (or federation id) on Salesforce, and perhaps a client id and secret.
does the user will login in any one system??
what kind a operation does the user needs to do in salesforce??.
Salesforce will perform some basic crud operations on a single object on the user's behalf and send some emails. The client will be getting lists of the objects, creating them, deleting them, etc., all through a REST interface.