Salesforce-Platform-Identity-and-Access-Management-Architect Practice Test
Salesforce Spring 25 Release 255 Questions
Universal Containers (UC) uses a home-grown Employee portal for their employees to collaborate. UC decides to use Salesforce Ideas to allow employees to post Ideas from the Employee portal. When users click on some of the links in the Employee portal, the users should be redirected to Salesforce, authenticated, and presented with the relevant pages. What OAuth flow is best suited for this scenario?
A. Web Application flow
B. SAML Bearer Assertion flow
C. User-Agent flow
D. Web Server flow
D. Web Server flow
Explanation:
In this scenario, Universal Containers (UC) wants users of their internal employee portal to be redirected to Salesforce, authenticated, and then shown the appropriate Salesforce page (e.g., an Ideas page). This requires an OAuth flow that supports:
Secure user authentication
Redirecting users via browser
Server-side handling of tokens for secure access
The Web Server Flow (also known as the Authorization Code Flow) is best suited for this use case. It allows the employee portal to redirect the user to Salesforce for login, and after authentication, Salesforce returns an authorization code to the portal server, which then exchanges it for an access token. This keeps the access token secure (handled server-side), and allows the portal to redirect users to specific Salesforce UI pages.