Set up the Authorization Code flow for Salesforce

Refer to Salesforce public documentation for enabling the OAuth 2.0 Authorization Code flow.

To configure the connected app:

Activate the Enable OAuth Settings checkbox.
In the Callback URL text field, enter one or more redirect URLs for AWS Glue.

Redirect URLs have the following format:

https://region.console.aws.amazon.com/gluestudio/oauth

In this URL, region is the code for the AWS Region where you use AWS Glue to transfer data from Salesforce. For example, the code for the US East (N. Virginia) Region is us-east-1. For that Region, the URL is the following:

https://us-east-1.console.aws.amazon.com/gluestudio/oauth

For the AWS Regions that AWS Glue supports, and their codes, see AWS Glue endpoints and quotas in the AWS General Reference.
Activate the Require Secret for Web Server Flow checkbox.
In the Available OAuth Scopes list, add the following scopes:
- Manage user data via APIs (api)
- Access custom permissions (custom_permissions)
- Access the identity URL service (id, profile, email, address, phone)
- Access unique user identifiers (openid)
- Perform requests at any time (refresh_token, offline_access)
Set the refresh token policy for the connected app to Refresh token is valid until revoked. Otherwise, your jobs will fail when your refresh token expires. For more information on how to check and edit the refresh token policy, see Manage OAuth Access Policies for a Connected App in the Salesforce documentation.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Limitations for the Salesforce connector

Set up the JWT bearer OAuth flow for Salesforce