Set up a Salesforce connection in Snoweaver
Prerequisites
Before continuing with this tutorial, ensure you have completed the following prerequisites:
Create an OAuth integration
Access the Admin Console with the owner role of Snoweaver or a custom role with the SNOWEAVER.APP_ADMIN application role.
Open the OAuth Integrations page.
Configure a new integration with the following settings:
Name: sfdc_learn_dev_oauth_client OAuth Client ID: <Consumer Key> OAuth Client Secret: <Consumer Secret> OAuth Token Endpoint: https://login.salesforce.com/services/oauth2/token OAuth Allowed Scopes: api id refresh_token OAuth Access Token Validity: 3600
Tip
Use the consumer key and secret generated by the Salesforce connected app from the previous tutorial.
Click Generate Script to create a SQL script for setting up the Snowflake OAuth Integration and granting Snoweaver access.
Run the generated script in a Snowflake worksheet. Ensure that the role executing the script has the CREATE INTEGRATION privilege, such as the AccountAdmin role.
Note
Currently, Snowflake restricts native applications from requesting privileges to create security integrations on consumer accounts. This limitation may be lifted in the future, which could allow for automation of this process.
Return to Snoweaver and register the new OAuth integration via the sidebar menu.
Create an OAuth secret
Open the Secrets page.
Configure a new secret with the following settings:
Name: sfdc_learn_dev_oauth_access_token Secreet Type: OAuth2 Refresh Token: <Refresh Token> OAuth Scopes: api id refresh_token OAuth API Integration: sfdc_learn_dev_oauth_client
Tip
Use the refresh token obtained from the previous tutorial.
Save the new secret.
Create a network rule
Create an external integration
Open the External Integrations page.
Configure a new integration with the following settings:
Name: sfdc_learn_dev_access_integration Allowed Secrets: sfdc_learn_dev_oauth_access_token Allowed Network Rules: sfdc_access_rule
Click Generate Script to create a SQL script for setting up the Snowflake External Access Integration and granting Snoweaver access.
Run the generated script in a Snowflake worksheet. Ensure that the role executing the script has the CREATE INTEGRATION privilege, such as the AccountAdmin role.
Note
Currently, Snowflake restricts native applications from requesting privileges to create security integrations on consumer accounts. This limitation may be lifted in the future, which could allow for automation of this process.
Return to Snoweaver and register the new External Access integration via the sidebar menu.
Update the project configuration
Create a project variable
Open the LEARN_DEV project from the top menu in Snoweaver with the LEARN_DEV_DEVELOPER role.
On the home page, create a new project variable with the following details:
Name: sfdc_account Type: Text Value: <Your Salesforce Org Account> e.g. snoweaver-dev-ed.develop
Click Save to update the project configurations.