Chapter 5: Authentication
1. The application uses the user’s username and password to request an access token. This is done via an out-of-band POST request to the appropriate Salesforce token request endpoint, such as https://login.salesforce.com/services/oauth2/token. The following request fields are required: Parameter
Description
grant_type
Must be password for this authentication flow.
client_id
The Consumer Key from the remote access application definition.
client_secret
The Consumer Secret from the remote access application definition.
username
End-user’s username. 51