Express middleware to handle OAuth dance initiation, callback, OpenID Connect id_token verification and Canvas signed_request verification.
OAuth dance initiation and callback is handled using the
oauthCallback methods. See the
oauth-test-app for an example of how to use.
To use a node.js app as a Salesforce Canvas application you configure a Connected App in Salesforce using the Canvas configuration section. The app works by Salesforce POSTing a
signed_request to the app and the app may verify the signed payload using the client secret from the Connected App. See the
canvas-test-app for an example.
Deploying the test applications to Heroku
There a few steps required to run the apps on Heroku.
- Edit the Procfile to indicate the app to run (i.e.
web: npm start --prefix canvas-test-appto run the canvas-test-app)
- Edit the package.json in the root directory to indicate the app to run in the postinstall script (i.e.
"postinstall": "npm install --prefix canvas-test-app"for the canvas-test-app)
- Commit and push to Heroku setting the required environment variables as well. Below is a complete example for the canvas-test-app.
$ heroku apps:create --region eu $ heroku config:set CANVAS_CLIENT_SECRET=1234567890 $ git push heroku master