This article walks you through how to integrate Salesforce with Swyft AI, the permissions (scopes) required, and how Single Sign-On (SSO) works in this setup. You’ll also learn about how Swyft AI respects your existing Salesforce permissions and validation rules.
1. Overview
Swyft AI connects with Salesforce via OAuth, allowing our platform to read and update CRM data on your behalf. By granting Swyft AI the necessary permissions, you can ensure a smooth data flow—without the need for repetitive logins or manual processes.
Important: Swyft AI cannot perform any actions in Salesforce that you, as the user, don’t already have permission to do. We do not override your organization’s validation rules or security settings. All workflows run under your existing Salesforce permissions.
2. Required Scopes
When authorizing Swyft AI to connect to Salesforce, you will be prompted to grant two specific scopes:
Manage user data via APIs (
api)This permission lets Swyft AI read and write Salesforce data, such as creating or updating records based on your workflows.
Perform requests at any time (
refresh_token,offline_access)These permissions allow Swyft AI to maintain a connection to Salesforce without requiring you to log in repeatedly. For example, background processes like overnight syncs or automated workflow triggers can run seamlessly.
Why these scopes?
api: Enables Swyft AI to interact with your Salesforce data programmatically (e.g., creating records after a meeting or updating an opportunity field).refresh_token/offline_access: Ensures Swyft AI can keep the connection active even when you’re offline or not actively logged in. This is critical for background tasks and automated processes.
3. Single Sign-On (SSO) & Authentication
Salesforce SSO: If you use Salesforce as your identity provider, you can log in to Swyft AI using your Salesforce credentials. This maintains a single set of credentials and streamlines the sign-in experience.
Okta or Other OAuth Providers: If your organization uses an SSO solution like Okta, you can configure it so that logging into Salesforce also grants access to Swyft AI. This way, you won’t have to manage multiple authentication points.
Key Benefits of Using SSO
Simplifies user management and onboarding
Enforces consistent security policies across applications
Eliminates the need for separate usernames/passwords
4. Setting Up the Integration
Go to the Swyft AI Login Page and choose “Sign in with Salesforce.”
Admin Approval (If Needed): If prompted, a Salesforce Admin will need to grant one-time approval for Swyft AI to connect to your org.
Complete SSO Configuration (Optional): If your organization uses SSO (e.g., Okta, Salesforce SSO), follow your standard process.
You’re All Set: After approval, Swyft AI will automatically begin syncing data once your configured workflows are enabled on the Swyft AI platform.
Once these steps are completed, Swyft AI will begin syncing data based on the workflows and automations you’ve configured. Remember, Swyft AI will only perform actions within the bounds of your existing user permissions—we do not bypass any validation rules or security controls.
5. Respecting User Permissions & Validation Rules
User-Level Permissions: Swyft AI inherits your Salesforce permissions. If you don’t have permission to create or update a particular record type, Swyft AI cannot do it on your behalf.
Validation Rules: Any validation rule in your Salesforce org still applies to Swyft AI actions. If a workflow attempt violates a rule, it will fail just as if you were performing the action manually.
Security Settings: Swyft AI does not override any sharing settings, field-level security, or role hierarchies.
This ensures your Salesforce environment remains secure and compliant with your organization’s standards.
6. Troubleshooting & FAQs
Q: Why am I being asked for “api” and “refresh_token” scopes?
A: These are required to enable Swyft AI to read, write, and maintain a connection to your Salesforce data, even when you’re offline.Q: Can I use Okta to log in if I don’t use Salesforce SSO?
A: Yes, Swyft AI supports various OAuth providers. Check your Okta admin settings for the relevant configuration steps.Q: Do I need to re-authenticate periodically?
A: Swyft AI uses the refresh token to maintain an active connection. However, some organizations may require periodic re-authentication based on their security policies.Q: Will Swyft AI override any of my Salesforce validation rules?
A: No, Swyft AI can’t bypass or override any validation rules. If a workflow conflicts with a rule, it will fail in the same way a manual action would.
If you have any further questions about setting up or managing your Salesforce integration, please reach out to our support team at [email protected]. We’re here to help you get the most out of your Swyft AI experience!