Afternoon all, I am currently looking at implementing a company wide OAuth server. We use salesforce as a backing store for nearly everything we do now and it contains all our user information. Unfortunately, the force.com API wont let me arbitrarily validate user credentials (which is understandable) and we don't want to enable API access for all the users in our system, so that leave me with finding another option.
Salesforce do however support OAuth and I was playing with the idea of my OAuth server, being an OAuth client of salesforce. I would have to get users to activate with salesforce the first time they came through the company OAuth server, but still, what are the general thoughts on this? It feels a bit hacky, but is it technically a sensible/feasible idea given the circumstance? Cheers, Tim -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.