hardis:org:refresh:after-refresh
Description
Command Behavior
Restores all previously backed-up Connected Apps (including Consumer Secrets), certificates, custom settings, records and other metadata to a Salesforce org after a sandbox refresh.
This command is the second step in the sandbox refresh process. It scans the backup folder created before the refresh, allows interactive or flag-driven selection of items to restore, and automates cleanup and redeployment to the refreshed org while preserving credentials and configuration.
Key functionalities:
- Choose a backup to restore: Lets you pick the saved sandbox project that contains the artifacts to restore.
- Select which items to restore: Finds Connected App XMLs, certificates, custom settings and other artifacts and lets you pick what to restore (or restore all).
- Safety checks and validation: Confirms files exist and prompts before making changes to the target org.
- Prepare org for restore: Optionally cleans up existing Connected Apps so saved apps can be re-deployed without conflict.
- Redeploy saved artifacts: Restores Connected Apps (with saved secrets), certificates, SAML SSO configs, custom settings and other metadata.
- Handle SAML configs: Cleans and updates SAML XML files and helps you choose certificates to wire into restored configs.
- Restore records: Optionally runs data import from selected SFDMU workspaces to restore record data.
- Reporting & persistence: Sends restore reports and can update project config to record what was restored.
This command is part of sfdx-hardis Sandbox Refresh and is intended to be run after a sandbox refresh to re-apply saved metadata, credentials and data.
Technical explanations
- Backup Folder Handling: Reads the immediate subfolders of
scripts/sandbox-refresh/and validates the chosen project contains the expectedmanifest/andforce-applayout. - Metadata & Deployment APIs: Uses
sf project deploy start --manifestfor package-based deploys,sf project deploy start --metadata-dirfor MDAPI artifacts (certificates), and utility functions for Connected App deployment that preserve consumer secrets. - SAML Handling: Queries active certificates via tooling API, updates SAML XML files, and deploys using
sf project deploy start -m SamlSsoConfig. - Records Handling: Uses interactive selection of SFDMU workspaces and runs data import utilities to restore records.
- Error Handling & Summary: Aggregates results, logs success/warnings/errors, and returns a structured result indicating which items were restored and any failures.
Parameters
| Name | Type | Description | Default | Required | Options |
|---|---|---|---|---|---|
| all -a |
boolean | If set, all Connected Apps from the local repository will be processed. Takes precedence over --name if both are specified. | |||
| flags-dir | option | undefined | |||
| json | boolean | Format output as json. | |||
| name -n |
option | Connected App name(s) to process (bypasses selection prompt). For multiple apps, separate with commas (e.g., "App1,App2") | |||
| skipauth | boolean | Skip authentication check when a default username is required | |||
| target-org -o |
option | undefined | |||
| websocket | option | Websocket host:port for VsCode SFDX Hardis UI integration |
Examples
$ sf hardis:org:refresh:after-refresh
$ sf hardis:org:refresh:after-refresh --name "MyConnectedApp" // Process specific app, no selection prompt
$ sf hardis:org:refresh:after-refresh --name "App1,App2,App3" // Process multiple apps, no selection prompt
$ sf hardis:org:refresh:after-refresh --all // Process all apps, no selection prompt
$ sf hardis:org:refresh:after-refresh --target-org myDevOrg