use the encrypt module when storing the consumer_key / consumer_secret / refresh_token (when enabled)

I don't have any objections to this. I would need to check but I think it would be fairly straightforward to support either.

This won't be done in 7.x-2.x. I don't think 7.x-3.x will utilize either AES or Encrypt.

I've created a patch to use the encrypt module when storing the consumer_key / consumer_secret / refresh_token (only if it is installed, it is not a dependency). When adding encrypt module later, it's is necessary to enter the consumer_key and consumer_secret of the application again (since they need to be encrypted).

Would you consider adding this?

This looks good, and could be helpful for saving token data in features, so that's great.

Side note that this will require us to be disciplined with our use of new Salesforce() in the future. We should always be using salesforce_get_api() anyway, as that will be easier for writing tests.

We'll try to get this into the next release, which should be out soon. Marking as RTBC for now.

Encrypt has a D8 release. Determine if we want to patch this to the D8 version.

Sweet! Thnx!

To explain the issue:
The salesforce module uses salesforce_get_api() and getRefreshToken() in some access callbacks. If the data is not encrypted in the DB yet, this could cause every page to return an error. Which makes it hard to fix it, since you can't access the form to store your key and secret.

The encrypt module throws an error if the decrypt fails (not ecrypted yet, wrong key or something like that). There are different reasons decryption could fail. The try/catch from the patch in issue https://www.drupal.org/node/2773237 could solve this. I guess the alternative would be to also save a 'encrypt' flag for the module. We could use that to check if we need to decrypt. This will only solve the error 'not ecrypted yet', but I guess other errors are not a problem that should be handled by the salesforce module (probably Encrypt config errors).

A patch is attached for the new approach using a flag. Please review!

Something to consider:
The module could still cause a problem on every pageload because of the access check, making the site unusable. So that could be a reason to still go for the try/catch approach. Input would be welcome.

One little extra change, we probably need to use 2 flags (1 for the key/secret and 1 for the refreshtoken), since they are both set at different times. I think the flag also removes the need to save the key/secret again after installing the encrypt module.

Here is a new patch fixing a authorization issue in last patch (key/token got encrypted before sending when saving the form). I think this should be it!

Hi everyone,

Sorry for the delay in reviewing this. I think the patch here is likely pretty sound, but, even though it's the idea I suggested, the variable to see if encrypt is implemented, plus the "if"s to check for the encrypt module isn't a terribly clean solution.

There's now a new issue: #2808033: Allow custom modules to manage salesforce keys that I believe could be used to accomplish what's desired here in a much cleaner way. Anyone want to take a look at that issue and see if you agree? If so, let's work on getting that one reviewed and committed.