Streamline Connected App Integrations with OAuth 2.0 Endpoints (Generally Available)

An OAuth client, such as MuleSoft, can now send a request to the dynamic client registration endpoint to automatically register a new child OAuth 2.0 connected client app with Salesforce. With a successful registration, Salesforce returns a new client identifier and metadata about the newly registered child app. The OAuth 2.0 connected app can check the current state of its access and refresh tokens. The OAuth client can check the current state of access and refresh tokens for itself and its child apps. In addition, admins can authorize a single connected app to introspect all access and refresh tokens within the entire org.

Where: This change applies to Lightning Experience and Salesforce Classic in Enterprise, Performance, Unlimited, and Developer editions.

How: This solution follows the OAuth 2.0 Dynamic Client Registration Protocol and the OAuth 2.0 Token Introspection specification. Configure connected app integrations with OAuth 2.0 endpoints with these steps.

After creating a connected app, generate an initial access token and configure your new endpoints. And be sure to register your initial access token and integrate your OAuth 2.0 endpoints with your OAuth 2.0 client, such as MuleSoft.