Salesforce is requiring connected app and AppExchange partners, including iDialogue, to apply enhanced security updates. To help keep your existing iDialogue connection active, Salesforce Admins should plan a quick one-time reauthorization in Salesforce after Friday, May 1, 2026.
Most admins should be able to complete this in about 5 minutes from the Quick Start tab.
FAQ
What is happening?
Salesforce is requiring connected app and AppExchange partners, including iDialogue, to apply enhanced OAuth security updates to better protect customer connections and align with updated platform requirements.
Why do I need to take action?
To help keep your existing iDialogue connection active, you should complete a quick one-time reauthorization after the updated security settings are enabled.
What do I need to do?
Open the iDialogue Admin app in Salesforce, go to the Quick Start tab, and click Connect to iDialogue. This reauthorizes and validates your connection under the updated security policy.
When should I do it?
We recommend completing the reauthorization within 72 hours of the Friday, May 1, 2026 enablement. The preferred window is Friday, May 1 through Sunday, May 3.
How long will it take?
Most Salesforce Admins should be able to complete the reauthorization in about 5 minutes.
What happens if I wait too long?
If the connection is not reauthorized during the recommended window, some customers may begin to see connection issues by the start of business on Monday, May 4, 2026.
Do I need a package upgrade?
No. A package upgrade is not required for this update.
Timeline
Friday April 24, 2026
iDialogue enabled background security controls related to Salesforce's updated connected app requirements. No customer action is required for this step.
Friday May 1, 2026 at 12:00 PM PT
iDialogue plans to enable the next security update for connected app authentication.
Friday May 1 through Sunday May 3, 2026
Salesforce Admins should complete a one-time reauthorization from the Quick Start tab in Salesforce. This is the recommended 72-hour action window.
Monday May 4, 2026
Customers who have not completed the reauthorization by then may begin to see connection issues as Salesforce applies the updated security policy to existing connections.
Reauthorize Your Connection
- Open the iDialogue Admin app in Salesforce
- Navigate to the Quick Start tab
- Click Connect to iDialogue
- Confirm the connection is active
Most admins should be able to complete this in about 5 minutes.
Expected Impact
- No package upgrade is required
- Most customers can complete the update in a few minutes
- Customers who reauthorize during the recommended window should avoid start-of-week disruption
- Salesforce is applying these connected app security requirements broadly across partners
Technical Security Details
Salesforce's updated connected app security program includes several OAuth-related controls that partners like iDialogue are implementing ahead of Salesforce's broader Monday, May 11, 2026 deadline.
Friday April 24, 2026 --- Background Security Controls
- Refresh Token Rotation (RTR) was enabled at 12:00 PM PT
- Static IP enforcement of the originating connection was enabled
- A 30-day timeout for unused refresh tokens was enabled
- No customer action was required for this step
Because iDialogue implements a daily heartbeat service to maintain active connections, we do not anticipate customer connections timing out due to non-use.
Friday May 1, 2026 --- Enhanced Authorization Controls
- Planned enablement at 12:00 PM PT
- This phase includes PKCE and related OAuth authorization protections
- All customers should complete a one-time reauthorization through the iDialogue Quick Start tab
Security Terms Referenced On This Page
- PKCE (Proof Key for Code Exchange) adds additional protection to the OAuth authorization step
- Refresh Token Rotation (RTR) helps reduce refresh-token replay risk
Why Timing Can Vary By Org
Salesforce connections refresh on different schedules. After the May 1 enablement, existing connections may transition at different times depending on when the next token refresh occurs.
- Existing connections do not all transition at once
- The next refresh may occur anywhere between 1 hour and ~1400 hours (≈60 days)
- At that point, Salesforce may require the connection to be re-established under the updated security policy
Package Upgrade
No package upgrade is required for this change.
iDialogue is also using this security work to accelerate its 1GP to 2GP package migration, along with a new External Client App (ECA) for more granular configuration and control. That broader launch is planned for Q3 2026 and is separate from the reauthorization step described above.
Support
If you experience issues reauthorizing:
Dates, rollout sequencing, and recommended customer actions reflect our current implementation plan and may change as Salesforce publishes additional guidance. This page will be updated as that guidance becomes available.