Starting November 20, the site will be set to read-only.
On December 4, 2023,
Apex Code Development (90768)
General Development (55146)
Visualforce Development (37251)
Lightning (18265)
APIs and Integration (17146)
Trailhead (11680)
Formulas & Validation Rules Discussion (11337)
Other Salesforce Applications (8116)
Jobs Board (6655)
Force.com Sites & Site.com (4842)
Mobile (2694)
You need to sign in to do that
Don't have an account?
Jiten Shah Hello. In the User-Agent OAuth flow --> a access token and refresh token are returned . How can I store refresh token in a secure fashion (I mean if the phone is rooted then the attacker can keep on using refresh token to gain unlimited access).
https://developer.salesforce.com/docs/atlas.en-us.api_rest.meta/api_rest/intro_understanding_user_agent_oauth_flow.htm
May I suggest you please refer the below link for reference.
- https://stackoverflow.com/questions/31346644/android-refresh-token
- https://security.stackexchange.com/questions/113273/how-does-a-refresh-token-help
Best RegardsRahul Kumar