Creating a Connected App
To connect Salesforce with StackOne, you need to create a Connected App in your Salesforce org to obtain OAuth credentials.
Sign in to Salesforce Setup
Sign in to your Salesforce account and click the Setup ⚙️ icon in the top-right menu.
Navigate to App Manager
In the left navigation under Platform Tools, expand Apps and click App Manager.
- Click the New External Client App button in the top-right corner
Configure OAuth Settings
Enable and configure OAuth settings for API access.
Enable OAuth Settings
Check the Enable OAuth Settings checkbox to expand the OAuth configuration section.
- In Callback URL, enter:
https://api.stackone.com/connect/oauth2/salesforce/callback
Select OAuth Scopes
Under Selected OAuth Scopes, add the following scopes.
- Manage user data via APIs (api)
- Perform requests at any time (refresh_token, offline_access)
- In Security, keep Require secret for Web Server Flow and Require secret for Refresh Token Flow checked (default)
- In Security, uncheck Require Proof Key for Code Exchange (PKCE) extension for Supported Authorization Flows (otherwise Salesforce returns
missing required code challenge)
Retrieve Consumer Credentials
Obtain the Client ID and Client Secret for StackOne configuration.
Access Consumer Details
In the left navigation under Platform Tools, expand Apps then External Client Apps and click External Client App Manager or OAuth Usage.
- Open the app you created (e.g., StackOne Integration)
- Go to Settings > OAuth Settings
- Click Consumer Key and Secret
- You may be prompted to verify your identity via email or authenticator
Selecting an Environment
Choose the appropriate environment based on your Salesforce org type.
Choose Your Environment
Select the environment that matches your Salesforce org.
- Production: Select this for your live Salesforce org with real data
- Sandbox: Select this for testing environments or developer orgs
- Sandbox environments are typically used for development and testing before deploying to production
Custom OAuth Scopes
If you need to customize the OAuth scopes, keep the following in mind.
Required Scopes for Token Refresh
When providing custom scopes, you must include at least one of refresh_token or offline_access to ensure the connection can refresh its access token.
- If the OAuth Scopes field is left blank, the default scopes (
api refresh_token offline_access) are used automatically - If you specify custom scopes, always include refresh_token or offline_access (e.g.,
api chatter_api content refresh_token offline_access) - Without a refresh scope, the connection will fail because Salesforce will not issue a refresh token
- Every custom scope you specify must also be added to the Connected App’s Selected OAuth Scopes, otherwise Salesforce returns an OAuth Error
Creating the StackOne Connector Profile
To create the Connector Profile in StackOne for Salesforce:Navigate to Connector Profiles
Create New Connector Profile
- Click + Connector Profile
- Search for and select Salesforce
- Select Type as OAuth 2.0
- Fill out the fields using details retrieved from your provider:
- Client ID (Consumer Key)
- Client Secret (Consumer Secret)
- OAuth Scopes (Optional)
- (Optional) Select Actions to be enabled for this Connector Profile
- Click Create profile