Create an external client app

  • Published on Jan 23, 2026
  • 1 minute(s) read
  • CC
  • TS
 Prev Next

When you newly provision a tenant, you must add Fullcast to Salesforce as an external client app to import and export data between your Fullcast instance and Salesforce.

Note

  • This feature will be available on the following dates:

    • Preproduction: 26 January 2026

    • Production (General Availability): 06 February 2026

  • Connections after release:

    • For all new connections—the external client app is required. Connected app will no longer be supported for new connections.

    • Existing connections with the connected app will continue to be supported, however it is recommended to migrate to the external client app as soon as possible.

    • If an existing connection is broken for reasons like sandbox refresh or credential changes, you will be required to migrate to the external client app.

Enable OAuth settings

Note

Only complete the fields and options indicated. Any fields or options that are not listed, do not change.

  1. In Salesforce, click the Setup menu and select Setup.

    Setup menu location.

  2. Go to Apps > External Client Apps > External Client App Manager.

  3. Click New External Client App.

  4. Under the Basic Information section, complete the following fields:

    Field

    Action

    External Client App Name

    Type Fullcast.

    API Name

    Click the field to auto-populate Fullcast.

    Contact Email

    Type your email address.

    Distribution State

    From the dropdown select Local.

  5. Under the OAuth Settings section, select the Enable OAuth checkbox.

  6. In the App Settings, complete the following fields:

    Field / Section

    Action

    Callback URL

    Copy and paste all three URLs based on the instance you are using:

    Note

    The start of each URL should match the Fullcast instance URL you will authenticate.

    Production site URLs:

    https://app.fullcast.io/app/motion/segments

    https://app.fullcast.io/app/admin/motion

    https://app.fullcast.io/app/admin/export-import

    Pre-production site URLs:

    https://sandbox.fullcast.io/app/motion/segments

    https://sandbox.fullcast.io/app/admin/motion

    https://sandbox.fullcast.io/app/admin/export-import

    OAuth Scopes

    Move the following options from Available OAuth Scopes to Selected OAuth Scopes:

    • Access the identity URL service (id, profile, email, address, phone)

    • Full access (full)

    • Manage user data via APIs (api)

    • Manage user data via Web browsers (web)

    • Perform requests at any time (refresh_token, offline_access)

    • Access unique user identifiers (openid)

    Enable Authorization Code and Credentials Flow

    Select the checkbox to enable.

    Require secret for Web Server Flow

    Select the checkbox to enable.

    Require secret for Web Server Flow option checked under the Security section.

    Require secret for Refresh Token Flow

    Select the checkbox to enable.

    Require secret for Refresh Token Flow option checked under the Security section.

    Require Proof Key for Code Exchange (PKCE) extension for Supported Authorization Flows

    Select the checkbox to enable.

    Require Proof Key for Code Exchange (PKCE) extension for Supported Authorization Flows option checked under the Security section.

  7. Click Save.

  8. Click Continue.

Update OAuth policies

  1. Go to Apps > External Client Apps > External Client App Manager.

  2. Find and select Fullcast.

  3. Select the Policies tab.

  4. Click Edit.

  5. From the Start Page dropdown, select None.

  6. Under the OAuth Policies section, complete the following fields:

    Field / Section

    Action

    Permitted Users

    Select All users may self-authorize.

    IP Relaxation

    Select Enforce IP restrictions, but relax for refresh tokens.

    Refresh Token Policy

    Select Refresh token is valid until revoked.

  7. Do not change any other fields or options.

  8. Click Save.