What is a Client App in Salesforce?

Client Apps are external applications (mobile, desktop, web, server-side) that connect to Salesforce APIs through a Connected App and OAuth.

What protocol does a Client App use to authenticate to Salesforce?

Client Apps authenticate via OAuth 2.0 using their Connected App configuration.

What is a common Client App scenario?

Client Apps cover a wide range of scenarios where external software needs to read or modify Salesforce data.

Client App

Development🔴 Advanced

Definition

A Client App in Salesforce refers to an external application that connects to and interacts with Salesforce through APIs using a Connected App configuration. The client app authenticates via OAuth 2.0 and then uses Salesforce APIs (REST, SOAP, Bulk, etc.) to read or modify data. Examples include mobile apps, desktop applications, and web applications that integrate with Salesforce.

Real-World Example

Consider a scenario where a senior developer at TerraForm Tech is working with Client App to solve a complex business requirement that cannot be addressed with declarative tools alone. They implement Client App with proper error handling, write 98% test coverage, and document the solution for future maintainers. The code passes security review on the first attempt.

Why Client App Matters

A Client App in Salesforce terminology is any external application (mobile, desktop, web, server-side) that connects to Salesforce through APIs. Client Apps authenticate via OAuth 2.0 using a Connected App configuration, which is the metadata in Salesforce that defines the app's identity, permissions, and OAuth settings. Once authenticated, the Client App receives an access token and can make API calls (REST, SOAP, Bulk, Streaming) to read or modify Salesforce data within the scope of its OAuth grants.

Common Client App scenarios include mobile apps that surface Salesforce data in a custom mobile experience, desktop tools like Workbench or Data Loader, web applications that integrate Salesforce as a backend, and server-side integrations between Salesforce and other enterprise systems. The Connected App pattern is fundamental to how Salesforce extends beyond the standard UI: nearly every modern integration with external systems uses a Connected App and OAuth as the authentication layer. Building a Client App requires understanding OAuth flows, API endpoints, and Salesforce's session and rate-limit behavior.

How Organizations Use Client App

•TerraForm Tech — Built a custom mobile app for field technicians as a Client App that authenticates through OAuth Web Server flow. The app reads and writes Work Orders through the Salesforce REST API and feels native on mobile devices.
•CodeBridge — Connected their internal data warehouse to Salesforce as a server-to-server Client App using OAuth JWT Bearer flow. The integration runs nightly without any user interaction, pulling Salesforce data into the warehouse for analytics.
•Quantum Labs — Built a Slack bot as a Client App that lets engineers query Cases and Opportunities from Slack channels. The bot uses OAuth User Agent flow to authenticate the requesting user and respect their record access permissions.