Skip to main content

Litify

Connect Litify to Reflekt Legal with an OAuth app so your AI intake specialists can securely read and write data in Litify.

Litify is built on Salesforce, so the integration uses a Salesforce connected app configured for the OAuth 2.0 authorization code flow with PKCE (Proof Key for Code Exchange). PKCE adds an extra layer of protection to the login flow, and requesting offline access lets Reflekt Legal refresh its access without prompting you to log in again.

What the OAuth App Enables

The connected app you create grants Reflekt Legal permission to:

  • Access the Litify API — read and write intakes, matters, and related records through the Salesforce/Litify API.
  • Stay connected without re-authenticating — use a refresh token to maintain access in the background (offline access).
  • Authenticate securely — complete login using the authorization code flow with PKCE.

Prerequisites

Before you begin, make sure you have:

  • Administrator access to your Litify (Salesforce) org (you need rights to create and manage connected apps).
  • An active Reflekt Legal account.
  • The Reflekt Legal callback (redirect) URL:
http://us-app.reflektlegal.ai/projects/integration/leaddocket/callback

Step 1: Open Connected Apps in Setup

  1. Sign in to your Litify (Salesforce) org as an administrator.
  2. Click the gear icon in the top-right corner and select Setup.
  3. In the Quick Find box, type App Manager and select App Manager.
  4. Click New Connected App in the top-right corner.
note

Newer Salesforce orgs may prompt you to choose between a Connected App and an External Client App. Either works; if prompted, choose Connected App unless your org standardizes on External Client Apps. The OAuth settings below are equivalent in both.

Step 2: Enter the Basic App Details

Fill in the basic information for the app:

  • Connected App Name: Reflekt Legal
  • API Name: Reflekt_Legal (this usually auto-fills)
  • Contact Email: your administrator email address

Step 3: Enable OAuth Settings with PKCE

  1. Under API (Enable OAuth Settings), check Enable OAuth Settings.
  2. In Callback URL, paste the Reflekt Legal callback URL exactly:
http://us-app.reflektlegal.ai/projects/integration/leaddocket/callback
  1. Check Require Proof Key for Code Exchange (PKCE) Extension for Supported Authorization Flows.
  2. Make sure Require Secret for Web Server Flow and Require Secret for Refresh Token Flow are unchecked (PKCE is used in place of a client secret for this public-client flow).
caution

Enter the callback URL exactly as shown, with no trailing spaces. The redirect URI Reflekt Legal sends must match this value character-for-character or the login will fail.

Step 4: Select OAuth Scopes

Under Selected OAuth Scopes, add the following scopes so Reflekt Legal has API access and can refresh its connection:

  • Manage user data via APIs (api) — grants API access to your Litify data.
  • Perform requests at any time (refresh_token, offline_access) — issues a refresh token for offline access.

Move both scopes from Available OAuth Scopes to Selected OAuth Scopes.

tip

Add only the api and refresh_token (offline access) scopes. Granting the minimum scopes Reflekt Legal needs keeps the integration easy to audit and review later.

Step 5: Save and Generate Credentials

  1. Click Save, then Continue. Salesforce may take a few minutes to register the new app.
  2. Open the app again from App Manager (use the dropdown on the right and choose View or Manage).
  3. Under API (Enable OAuth Settings), locate the Consumer Key (Client ID). With PKCE enabled you typically do not need a consumer secret, but copy it as well if your setup requires one.
caution

Treat the consumer key and secret like a password. Store them securely and only share them through Reflekt Legal's connection flow.

To avoid login failures from the integration:

  1. From the app's detail page, click Manage, then Edit Policies.
  2. Set Permitted Users to Admin approved users are pre-authorized (and assign the appropriate profile or permission set), or All users may self-authorize, depending on your firm's policy.
  3. Set IP Relaxation to Relax IP restrictions so the integration can connect from Reflekt Legal's servers.
  4. Save your changes.
note

Setup labels and available options can vary by Salesforce/Litify edition. If an exact label is missing, choose the closest equivalent, or contact your Salesforce administrator to confirm the right setting.

  1. Log in to your Reflekt Legal account.
  2. Navigate to Integrations.
  3. Search for Litify.
  4. Click Connect and, when prompted, enter the Consumer Key (and secret if required) from the connected app.
  5. Complete the Litify (Salesforce) login and approve the requested access to finish linking your org.

Step 8: Verify

Confirm the OAuth app has the access Reflekt Legal needs:

  1. Complete the connection flow in Reflekt Legal and confirm it reports a successful, authorized connection.
  2. Confirm Reflekt Legal can read or create a test record in Litify.
  3. Confirm the connection stays active after the initial access token would expire (this verifies the refresh token / offline access is working).

If the connection fails, recheck the callback URL in Step 3, the scopes in Step 4, and the policies in Step 6.

Resources

If you need help validating your setup, contact [email protected].