Skip to main content

How to fix invalid SESSION ID in SW Toolbox

When creating a rule and attempting to save it, you may have encountered an invalid SESSION ID error message. Follow these steps to fix it!

Pauline from SalesWings avatar
Written by Pauline from SalesWings
Updated over 2 months ago

This 4-step process enables SW Toolbox to used named credentials to access Salesforce’s own API and permit the SW Toolbox to work correctly when setting up rules.

When creating a rule and attempting to save it, you may encounter an error stating that Salesforce is unable to proceed due to using an invalid SESSION ID while accessing its own REST APIs. This issue occurs due to Salesforce policies preventing direct API calling in certain contexts.

To address this issue, we need to modify a few settings in Salesforce Setup.

Important: Such credentials will be used exclusively by the Toolbox application and in no way do they constitute a security concern, as they can’t be used in contexts outside of one’s Salesforce organization. This is the pattern Salesforce themselves indicate to adopt (see Making API Calls from Apex | Lightning Aura Components Developer Guide | Salesforce Developers).

Note: the {org_my_domain_url} can be found under Salesforce Setup > My Domain >Current My Domain URL.

Current My Domain URL

Step 1. App Manager

  • Head to Salesforce Setup > App Manager

  • Create a connect app

    • app name: SalesWings Loopback

    • api name: saleswings_loopback

    • enable oauth settings

    • callback url: https://{org_my_domain_url}/services/authcallback/saleswings_loopback

    • oauth scopes: api, refresh_token, offline_access

    • refresh token policy: refresh token is valid until revoked

IMPORTANT: Jot down the consumer key and consumer secret automatically generated with the app, as those information will be used in the following step.

SalesWings Loopback App

SalesWings Loopback App

Click on Manage Consumer Details for consumer key and secret

Step 2. Auth. Providers

  • Head to Salesforce Setup > Auth. Providers

  • Create a auth provider

    • provide type: Salesforce

    • name: SalesWings Loopback

    • url suffix: saleswings_loopback

    • consumer key: from the connected app created before

    • consumer secret: from the connected app created before

    • authorized endpoint: https://{org_my_domain_url}/services/oauth2/authorize

    • token endpoint: https://{org_my_domain_url}/services/oauth2/token

    • default scopes: refresh_token api

Auth. Provider

Step 3. Named Credentials

  • Head to Salesforce Setup > Named Credentials

  • Create a new LEGACY named credential

    • label: SalesWings Loopback

    • name: saleswings_loopback

    • url: https://{org_my_domain_url}

    • identity: named principal

    • authentication protocol: OAuth 2.0

    • provider: SalesWings Loopback

    • scope: refresh_token api

  • After creation, the authentication flow will be invoked and the user used to access Salesforce REST API will have to authenticate.

Named Credential

Step 4. Custom Settings

  • Head to Salesforce Setup > Custom Settings

  • Click Manage on SWT Settings

  • Fill out field Named Credentials with: saleswings_loopback

Custom Setting

After this last step no error should appear when saving Toolbox rules.


Still need help? Get in touch !

Schedule a support call

Related Articles
How to assign a SalesWings Studio and/or Toolbox licence to a Salesforce user
Did this answer your question?