🧩 How It Works Behind the Scenes
When you connect an account, Barndoor uses OAuth 2.0 to perform a secure handshake with the provider.- After you log in, the provider (e.g., Salesforce) sends Barndoor an access token.
- Barndoor securely stores this JWT token and uses it whenever an MCP server tool call needs to act on your behalf — for example, retrieving Salesforce data or updating records. The JWT token will live for 60 minutes and can always be refreshed.
- Tokens can be revoked at any time through your provider’s account settings or through our API/SDK.
Video Walkthrough
Step 1: Go to Your Connected Accounts
- Log in to your Barndoor Dashboard.
- Navigate to Settings → Accounts or go directly to
app.barndoor.ai/settings/accounts. - You’ll see three tabs:
- Available – services you can connect.
- All – the complete list of supported integrations.
- Connected – services already linked to your account.
This is entire web flow is also achievable via our Barndoor SDK and API’s.
🔗 Step 2: Choose a Service to Connect
- Under the Available tab, find the service you want to connect — for example, Salesforce.
- Click Connect.
- Barndoor will redirect you to the service’s authentication page (in this case, Salesforce).
🔐 Step 3: Authorize Access
- Sign in with your account credentials on the provider’s login page.
- Approve Barndoor’s request for access.
- This allows Barndoor to securely obtain an access token that it will store on your behalf.
- Barndoor never sees or stores your password — only the OAuth token returned from the provider.
🔍 Step 4: Verify the Connection
Once the authentication is complete:- You’ll be redirected back to Barndoor.
- The connected service (e.g., Salesforce) will now appear in your Connected Accounts tab.
- You can disconnect at any time from the same page.