function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Vyacheslav Ramazanov 6Vyacheslav Ramazanov 6 

Control external services rest access.

Hi all. Sorry for a dummy question :)
I am looking for possibility to control access to organization http ports (rest api).

Suppose I set a new app named "test_app", enable Oauth2 and pass the web server authentication flow (tokens). Now I can only add/remove oauth scopes. I wonder, but when I change it to the most strict (access basic information), test_app can still create objects.

The goal I wish to get is my org has a number of /services/arexrest/[port]'s to which I grand an access for external services. So how It can became real?

I will glad to see any answers and advises.

 

Sumitkumar_ShingaviSumitkumar_Shingavi
Salesforce is a cloud and it will not allowed you to control it's infrastructure from Apex or external servers.
Vyacheslav Ramazanov 6Vyacheslav Ramazanov 6
Sumitkumar_Shingavi so what is the purpose of oauth scopes?
Sumitkumar_ShingaviSumitkumar_Shingavi
They will just authenticate your request against environment from third party servers.
Vyacheslav Ramazanov 6Vyacheslav Ramazanov 6

Sumitkumar_Shingavi thank you for answer.

As I understand any connected service has full access to organization data and metadata. Right?

Sumitkumar_ShingaviSumitkumar_Shingavi
No there are separate WSDL for atcual data and metadat. You use MetaData APIs of Salesforce to play with metadata and Partner/Enterprise WSDL for playing with data based on your requirements.