Salesforce Oauth2 Keys
#
Description#
General- Documentation: https://developer.salesforce.com/docs/
- Summary: Salesforce provides customer relationship management services. Its APIs enables to add functionality with third party application. The OAuth credentials are used to get access tokens. These can in turn be used to authenticate with the APIs to make requests on behalf of the users. This detector finds these Oauth credentials.
- IPs allowlist: As of the time of writing this documentation, this feature is not yet supported.
- Scopes: Yes. Each APIs has its set of permissions.
#
Revoke the secretGo to the App Manager.
#
Check for suspicious activityAs of the time of writing this documentation, this feature is not yet supported.
Salesforce oauth2
#
Details for Family: Api
Category: CRM
Company: Salesforce
High recall: True
Validity check available: False
Minimum number of matches: 2
Occurrences found for one million commits: 7.91
Prefixed: True
PreValidators:
- type: ContentWhitelistPreValidator patterns: - 3mvg9
#
Examples- text: > salesforce CONSTANTS +// ---------------------------------------------------------- +const CONSUMER_KEY = "3MVG9fTLmJ60pJ5I6fu3pPjYrPcxc.hs9.5cx074wlhqP52juB8I1iQUTP5MHlqCY9uhwje09N3YCxBIGGxlI"; +const CONSUMER_SECRET = "3475296048548367986"; client_id: "3MVG9fTLmJ60pJ5I6fu3pPjYrPcxc.hs9.5cx074wlhqP52juB8I1iQUTP5MHlqCY9uhwje09N3YCxBIGGxlI" client_secret: "3475296048548367986"- text: > "Credentials": { "GrantType": "password", - "ClientId": "3MVG9eQyYZ1h89HeO90IR6o6pmKEiPS.YGCPDQq6sdSYKk9q3MsdvMph2bAelMAoWLFJ3XBX8twZosYU3hfhO", - "ClientSecret": "1433E5F4427CF5D111948B6C1318B746AAE93422628B4D445781468FCF0EDED5", client_id: 3MVG9eQyYZ1h89HeO90IR6o6pmKEiPS.YGCPDQq6sdSYKk9q3MsdvMph2bAelMAoWLFJ3XBX8twZosYU3hfhO client_secret: 1433E5F4427CF5D111948B6C1318B746AAE93422628B4D445781468FCF0EDED5