+ Start a Discussion
Just Code ItJust Code It 

OAuth flows

I need to make  REST API calls to Salesforce from an external web server. I'm new to OAuth (and REST). There are three OAuth flows (https://developer.salesforce.com/docs/atlas.en-us.api_rest.meta/api_rest/intro_understanding_authentication.htm), which one is suitable for this typical scenario, system to system integration (external web server to Salesforce). The first two flows seem to have user to provide user (human) name and password, on the other hand, the third flow (user name and password) not really a good fit, because I cannot expose user account's credential. Thanks in advance.
Best Answer chosen by Just Code It

I had posted a similar question on another thread and the reply I got from Pat Patterson (from Salesforce) is to use JWT Bearer Token Flow. You may want to checkout that thread at URL https://developer.salesforce.com/forums/ForumsMain?id=906F000000099xDIAQ

You may also want to refer to the URL https://developer.salesforce.com/page/Digging_Deeper_into_OAuth_2.0_on_Force.com for all OAuth Flows that Salesforce currently supports. It is not just the three flows.

Hope this helps.

Ashish (http://www.asagarwal.com)