View categories

Categories

Heroku Architecture
- Compute (Dynos)
  - Dyno Management
  - Dyno Concepts
  - Dyno Behavior
  - Dyno Reference
  - Dyno Troubleshooting
- Stacks (operating system images)
- Networking & DNS
- Platform Policies
- Platform Principles

Command Line

Deployment
- Deploying with Git
- Deploying with Docker
- Deployment Integrations

Continuous Delivery & Integration
- Continuous Integration

Language Support
- Node.js
- Ruby
  - Working with Bundler
  - Rails Support
- Python
  - Working with Django
  - Background Jobs in Python
- Java
  - Working with Maven
  - Java Database Operations
  - Working with Spring Boot
  - Java Advanced Topics
- PHP
- Go
  - Go Dependency Management
- Scala
- Clojure

Databases & Data Management
- Heroku Postgres
  - Postgres Basics
  - Postgres Getting Started
  - Postgres Performance
  - Postgres Data Transfer & Preservation
  - Postgres Availability
  - Postgres Special Topics
- Heroku Key-Value Store
- Apache Kafka on Heroku
- Other Data Stores

Monitoring & Metrics
- Logging

App Performance

Add-ons
- All Add-ons

Collaboration

Security
- App Security
- Identities & Authentication
  - Single Sign-on (SSO)
- Compliance

Heroku Enterprise
- Private Spaces
  - Infrastructure Networking
- Enterprise Accounts
- Enterprise Teams
- Heroku Connect (Salesforce sync)
  - Heroku Connect Administration
  - Heroku Connect Reference
  - Heroku Connect Troubleshooting

Patterns & Best Practices

Extending Heroku
- Platform API
- App Webhooks
- Heroku Labs
- Building Add-ons
  - Add-on Development Tasks
  - Add-on APIs
  - Add-on Guidelines & Requirements
- Building CLI Plugins
- Developing Buildpacks
- Dev Center

Accounts & Billing

Troubleshooting & Support

Integrating with Salesforce

Security and Heroku/Salesforce Integrations

Last updated April 20, 2022

When using Heroku and Salesforce together, particularly in the calling the Salesforce REST API, Salesforce Platform Events and Apex HTTP callouts scenarios, security posture may be improved with an exclusive trust relationship, preventing undesired traffic from the public internet.

In particular, if your Heroku application runs in a Private Space, you can:

Ensure that the app is not available on the public internet, and only available from your Salesforce org (Salesforce → Heroku)
Ensure that your Salesforce org has appropriate IP restrictions to prevent public access, and prevent public OAuth endpoint access (Heroku → Salesforce)

See Establishing a Trusted Connection Between Private Spaces and Salesforce for more details.

Keep reading

Integrating with Salesforce

Feedback

Log in to submit feedback.

Using the Salesforce REST API with Heroku Using the Salesforce REST API with Heroku