Skip to main content
Contact Support

Reset OAuth Token

Ryan J.
Updated

The Reset OAuth Token feature in the Admin Settings > User Management tab allows administrators to revoke the current OAuth refresh token and generate a new one. This process ensures secure authentication and helps prepare your org for upcoming token retirement.

 

What happens when you reset the token?

  • The current refresh token is revoked.
  • A new token is automatically generated using the latest version of the Connected App.
  • All existing forms will continue to function.
  • If a form page was already open while the reset took place, users may need to refresh the page or clear the browser cache if the Salesforce session setting “Enable secure and persistent browser caching to improve performance” is enabled.
     

Why should I reset the token?

To maintain security and avoid disruptions, all OAuth refresh tokens must be rotated before March 31, 2026. After this date, any unrotated tokens will no longer work, and form submissions or other token-dependent processes may fail.

By resetting your token ahead of this deadline, you ensure a smooth transition and uninterrupted functionality.

 

How to reset the token

  1. Go to Admin Settings > User Management.
     
  2. Locate the Reset OAuth Token button.



 

  1. Click the button, then select Yes in the confirmation pop-up.
     
    • The pop-up will inform you that the old token will be revoked and a new one will be generated.



 

  1. Forms for Salesforce authorization request will be opened. Select Allow to reauthorize the app.


     

  2. You will see a success message confirming that the token has been refreshed.

     

  3. After successfully refreshing the token and receiving the confirmation message, log out of Salesforce and then log back in.

    Next, verify the Submission Dashboard and Admin Settings within the app to confirm that the new refresh token is active.

    Be sure to submit a test form to validate that everything is working correctly.

    If your org has the Enable secure and persistent browser caching to improve performance session setting enabled, refresh any active form pages or clear your browser’s cache to ensure everything functions properly.

    Note: If any issues persist after completing these steps, recheck your connected app permissions and token scopes in Salesforce to ensure they are configured correctly. You may also need to repeat the token refresh process if recent changes were made to the connected app or user credentials.

 

Best practices

  • Plan ahead: Schedule your token reset during low-traffic hours to minimize impact.
  • Test critical workflows: After resetting, verify that form submissions and other OAuth-dependent processes are functioning correctly.
  • Communicate with users: Inform your team about the reset to prevent confusion during the transition.

Related articles