Salesforce SAPI
Security
Policies:
Client Id Enforcement
To consume the API, consumer must register its client application with in Anypoint exchange and get the Client ID and Client Secret. The Client ID (client-id) and Client Secret(client-secret) should be passed in http headers to get authorized.
- Client ID Expression[attributes.headers['client-id']]
- Client Secret Expression[attributes.headers['client-secret']]
| No. | Methods | Resource |
|---|---|---|
| 1. | GET | /status |
| 2. | POST | /endUserPersonAccounts |
| 3. | PUT | /endUserPersonAccounts |
| 4. | POST | /dataFeedExceptions |
| 5. | POST | /compositerequest |
Endpoints are secured using Client ID policies
Reference: Client Id Enforcement