Salesforce Certified Identity and Access Management Designer — Question 8
The CIO of Universal Containers (UC) wants to start taking advantage of the refresh token capability for the UC applications that utilize OAuth 2.0. UC has enlisted an Architect to analyze all of the applications that use OAuth flows to see where refresh tokens can be applied.
Which two OAuth flows should the Architect consider in their evaluation? (Choose two.)
Answer options
- A. JWT Bearer Token
- B. Web Server
- C. Username-Password
- D. User-Agent
Correct answer: B, D
Explanation
The Web Server flow (B) is appropriate for obtaining refresh tokens as it involves server-side applications where the client can securely store tokens. The User-Agent flow (D) is also suitable for refresh tokens as it is designed for client-side applications that interact with user agents. The JWT Bearer Token (A) and Username-Password (C) flows typically do not support refresh tokens, making them less relevant in this context.