Login flows acts as business process which you want to invoke for user after logging. Login flows are assigned at profile level.
How Login Flow works?
Hope this will help!!
How Login Flow works?
Custom 2 Factor Authentication
Login flows can be used to provide custom 2 factor authentication. Below is flow chart that I have prepared to implement this:
Different steps involved:
- Once user logged in, will be redirected to login flow.
- From login flow, call apex call which can either perform callout to external system which can send authentication code to user via SMS or email. You can use twilio app to send sms to users. You can store the auth code from callout response in salesforce(may be in some custom field on user object).
- If you don't want to use external app, then generate random code in apex and store it in custom field in user object and send email to user with code using apex email message methods.
- Once user receives the code will enter it in input text on login flow.
- If user entered code matches with code stored in user object custom field then allow user to navigate to Salesforce. As a best practice clear the code stored in user object once validation completed so that user can not reuse the same code again.
- If there is mismatch, you can deny user access.
Important considerations while using login flows
- Login flow can not be used to replace Salesforce authentication but can used as additional set of authentication.
- Login flow can be used to display some important messages to users once they login. Refer Login Flows to Display Important Messages to User After Login to learn about this in detail.
- Login flows are only applicable for UI login not for API login.
- Login flow can be used with SAML JIT. If user doesn't exist then during JIT, first user will be provisioned and then login flow will kick off. If user fails 2 factor authentication from login flow,then deactivate the user again in salesforce.
- When user login, user login date like type of device, IP address, session id, user agent etc are available in visual workflow designer. This can be used to provide different user experience to user based on login device.
- As a best practice, do not enable custom 2 factor authentication for system administrators.
Hope this will help!!
Interesting information and attractive.This blog is really rocking... Yes, the post is very interesting and I really like it.I never seen articles like this. I meant it's so knowledgeable, informative, and good looking site. I appreciate your hard work. Good job.
ReplyDeleteKindly visit us @
Sathya Online Shopping
Buy AC Online | AC Online Shopping | AC Price | Buy Air Conditioner Online
Inverter Split AC | Best Inverter AC | Split AC Price | Buy Split AC Online
Smart LED TV | Smart TV Price | LED TV Online | Buy LED TV Online
Laptop Online | Laptop Price | Buy Laptop Online | Best Laptop
Buy HD LED TV
Buy Ultra HD TV Online
Buy Mobile Online | Buy Smartphone Online in India
I’m really impressed with your article, such great & usefull knowledge you mentioned here. Thank you for sharing such a good and useful information here in the blog
ReplyDeleteKindly visit us @
SATHYA TECHNOSOFT (I) PVT LTD
Social Media Marketing Company | SMO Company India
Social Media Marketing Packages in India
PPC Campaign Price | Google Adwords Pricing in india
PPC Company in India | PPC Services India
Google Adwords company in India | Google Adwords Services in India
Best SEO Company in india | SEO Services in India
Bulk SMS Service India | Bulk SMS India
Nice post. Thank you for this wonderful sharing.
ReplyDeleteKindly visit us @
Sathya Park & Resorts
Hotels in Tuticorin
Best Hotels in Tuticorin
Hotel Rooms in Tuticorin
Online Hotel Booking in Tuticorin
Tuticorin Hotels Online Booking