API User Setup - Used by Internal Team

Create a New User with the Correct Permissions/License

1. Acquire a Salesforce license for a new user.

   1. API (or limited) license (lower cost)

   2. A Standard Salesforce license is not required (more expensive)

2. Create a new User.

3. Name the user as api.[edi software provider name]@[client's domain]

   1. Example: api.trinity@beyondbetterfoods.com.uat

4. User License must be Standard Platform.

5. Profile must be Standard Platform User.

6. Assign GFERP Extension App and GFERP Standard ERP Users

7. If in a Production Environment, assign a GFERP license.

8. Reset the new user's password.

The configuration must be completed in the UAT instance first, followed by the PROD instance. Use an internal support email as the email address.

Retrieve a Security Token

1. Log in as the API user.

2. Click My Setting > Reset My Security Token.

3. A new security token will be sent to the registered email address.

Create an API App

1. In Setup, click Apps → App Manager and click New Connected App to define a connected app.

   

2. Enter the name of your application, for example, Infoconn EDI.

3. Enter the contact email address and other relevant details for your application.
   Use the Goldfinch support email address as support@goldfinchcloudsolutions.com

4. Before the Go-Live, update the email address to the email address of the EDI partner.

   1. Integral: goldfinch_api@integralgroup.ca

   2. Infoconn: support@infoconn.com

5. Make sure Enable OAuth Settings is checked.

   

6. Enter a Callback URL of http://localhost.
   Depending on the OAuth flow you use, the user browser redirects to this URL after successful authentication. This URL must use secure HTTP (HTTPS) or a custom URI scheme, as it is used for OAuth flows to pass an access token.

   If testing with Postman, enter https://www.getpostman.com/oauth2/callback. The third-party application must provide the callback URL if it uses a callback.

7. Add Full Access, as supported OAuth scopes to Selected OAuth Scopes.
   These scopes refer to permissions provided by the user executing the connected app.

8. Click Save.
   The Consumer Key is created and displayed, and the Consumer Secret is created (click the link to view it).

9. Note
   down the Consumer Key and Consumer Secret.
   You will not be able to retrieve them after closing the page.

Test the Login Credentials

1. Download and install Postman API client API Client for REST, SOAP, & GraphQL Queries | Postman.

   

2. Change to Post.

3. Copy and paste https://test.salesforce.com/services/oauth2/token

   1. (do not use client's actual URL, such as https://belgianboys--uat.my.salesforce.com/ )

4. For live instance, use https://login.salesforce.com/services/oauth2/token

   1. (do not use the client's actual URL Login | Salesforce )

5. In the Authorization tab, select oAuth 2.0. Do not change other parameters.

6. In the Body tab, select form-data.

7. Provide the parameters in Key and Value. The value in Key must be in lowercase.

   

8. Password must be the password followed by the security token (do not provide any spaces in between).

9. Click Send.

10. If successful, you will receive an access token.

OAuth and OpenID Connect Settings

OAuth and OpenID Connect Settings Should be enabled

Credentials to share with the External Partner

Provide the following parameters to the EDI partner in addition to the success message screenshot using Postman, for the UAT and PROD environments.

• Consumer Key

• Consumer Secret

• Username

• Password

• Security Token

Additional Support Documentation

Salesforce supports both SOAP and REST.

Salesforce API governor limits - Salesforce Developers

Salesforce API documentation links - https://trailhead.salesforce.com/en/content/learn/modules/api_basics/api_basics_rest

Article API-User-Setup---Used-by-Internal-Team  ·  Last updated November 12, 2025 · GoldFinch ERP Help Center