OAuth and External Client App values required to connect WeGive to Salesforce NPSPSalesforce replaced Connected Apps with External Client Apps (ECAs) starting Spring ‘26. This page lists the ECA configuration values that authorize the WeGive NPSP integration. For the click-by-click walkthrough, see Setting Up the WeGive Salesforce Integration in the Knowledge Base.
Prerequisites
- System Administrator access in Salesforce
- WeGive Admin Permission Set assigned to the integration user
- A dedicated integration user is recommended over a personal admin account
External Client App Values
| Setting | Value |
|---|---|
| Name | WeGive |
| Enable OAuth Settings | Checked |
| Callback URL | https://api.wegive.com/api/oauth/npsp/callback [CONFIRM] |
OAuth Scopes
- Manage user data via APIs (
api) - Perform requests at any time (
refresh_token,offline_access)
Flow Enablement
| Flow | Enabled |
|---|---|
| Authorization Code and Credentials Flow | Yes |
| All other flows | No |
Security
| Setting | Value |
|---|---|
| Require Secret for Web Server Flow | Yes |
| Require Secret for Refresh Token Flow | Yes |
ECA Policies
| Policy | Value |
|---|---|
| IP Relaxation | Relax IP restrictions |
Remote Site Settings
| Setting | Value |
|---|---|
| Remote Site Name | wegive_api |
| Remote Site URL | https://api.wegive.com |
Credentials Used by WeGive
WeGive requires the Consumer Key and Consumer Secret from the ECA detail page, plus your Salesforce My Domain URL (e.g.https://yourorg.my.salesforce.com/). The connection uses an OAuth approval redirect to Salesforce rather than a stored username and password.
Note: A newly created ECA may take up to 10 minutes to become active. If you see an authorization error when connecting WeGive, wait a few minutes and retry.