Certain apps like postman and some web-based apps may not have the ability to read an x509 cert or sign a request with it. This web app can be used to generate a JWT-based access token in such instances.

To run locally, clone this repo and run npm install && npm run. The app will be available at http://localhost:3000 once it starts.

Alternatively, you may deploy it to a PAAS provider of your choice, such as Heroku

The format of the request body is

  {
    "isTest": true, //false for prod, true for sandbox,
    "privateKey": <certificate private key copy pasted as is>,
    "username": <user being impersonated>,
    "clientId": <clientid of the connected app>

  }

Note: If you are using postman, it strips out newline characters from the private key. This application is capable of handling that.

Response format would be

  {
    "access_token": "<accessToken>",
    "scope": "api",
    "instance_url": "<instanceurl>"
    "id": "<baseurl>/<orgid>/<userid>",
    "token_type": "Bearer"

  }

This app is currently hosted at https://jwtsf.herokuapp.com/ if you want to try it out. I recommend you do so using Postman