ProfileShift – Salesforce Profile to Permission Set

Convert Salesforce Profile permissions into deployable Permission Set metadata. Privacy-first, client-side.

ProfileShift – Salesforce Profile to Permission Set Converter Modernize your Salesforce security architecture by converting legacy Profiles into clean, deployable Permission Sets — directly from your browser. ProfileShift is a developer-focused Chrome Extension that reads Salesforce Profile metadata and generates minimal Permission Set metadata that you can review, export, or deploy back to your org. The extension is designed for Salesforce Admins, Developers, and Consultants who are transitioning from profile-based security to permission-set-based architecture, which is now the recommended Salesforce best practice. ProfileShift works entirely inside your browser and communicates directly with your authenticated Salesforce org using official Salesforce APIs. No external servers are used. Why ProfileShift Exists Many Salesforce organizations still rely heavily on Profiles to control access to objects, fields, system permissions, and other components. However, modern Salesforce architecture encourages teams to: • Use minimal base profiles • Move access control to Permission Sets • Create modular permission structures • Reduce profile complexity Migrating from Profiles to Permission Sets manually is extremely time-consuming because Profiles contain many different permission sections including: • Object permissions • Field-level security • System permissions • Apex class access • Visualforce access • Tab visibility • Record type visibility • Custom permissions • Flow access • External integrations ProfileShift simplifies this process by automatically converting a Profile into a Permission Set structure that you can review and deploy. Key Features Convert Salesforce Profiles into Permission Sets ProfileShift reads Profile metadata directly from your Salesforce org using the Metadata API and converts it into a structured permission model. From there, the extension generates a Permission Set XML file that can be: • Downloaded locally • Deployed directly to your org • Used in SFDX projects • Committed to version control This helps teams modernize their permission model quickly and safely. Delta-Style Permission Set Generation ProfileShift generates minimal Permission Sets. Only enabled permissions are included in the generated metadata. This produces smaller, cleaner Permission Sets that are easier to manage and maintain compared to copying full Profile definitions. The generated metadata follows the official Salesforce Permission Set format and can be deployed using the Metadata API. Edit Permissions Before Export Instead of generating static metadata, ProfileShift allows you to review and edit permissions before creating the final Permission Set. Permissions are organized into clear sections so you can easily inspect and adjust them. Supported sections include: • Object permissions • Field-level security • System permissions • Apex class access • Visualforce page access • Tab settings • Record type visibility • Flow access • Custom permissions • External data source access • Named credential access This allows you to refine the Permission Set before exporting or deploying. Deploy Permission Sets Directly to Salesforce ProfileShift can optionally deploy the generated Permission Set directly to your Salesforce org. The extension packages the metadata and deploys it using the official Salesforce Metadata API. Deployment includes: • ZIP packaging • package.xml generation • Metadata API deploy request • Deploy status polling • Clear success and error messages You always review the metadata and confirm deployment before any changes are made. No automatic deployments occur. Optional Connected App Updates When required, ProfileShift can update Admin-approved Connected Apps so that the generated Permission Set is assigned correctly. These updates are clearly shown before deployment and only occur after explicit confirmation. Built for Salesforce Professionals ProfileShift is designed specifically for: • Salesforce Administrators • Salesforce Developers • Salesforce Architects • Salesforce Consultants • DevOps teams managing metadata The extension helps teams reduce profile complexity and move toward modern, modular permission structures. It also helps during: • Security refactoring projects • Org cleanups • Profile consolidation • Permission audits • Salesforce modernization initiatives Privacy and Security First ProfileShift is built with strict privacy and transparency principles. The extension does not collect, store, or transmit any personal or organizational data outside your Salesforce environment. All communication happens directly between your browser and Salesforce. ProfileShift does not: • Track user behavior • Collect analytics • Send metadata to external servers • Store Salesforce credentials • Store session IDs The extension simply uses your existing authenticated Salesforce session to communicate with Salesforce APIs. All processing occurs locally in your browser. Minimal Permissions ProfileShift only requests the minimum permissions required to function: tabs Used to detect an authenticated Salesforce tab. cookies Used only to read Salesforce session cookies required for API authentication. storage Used for non-sensitive UI preferences such as theme selection. Host permissions are limited to Salesforce domains: https://.salesforce.com https://.lightning.force.com The extension does not access other websites. Fully Client-Side Architecture ProfileShift operates entirely within the browser. The extension includes: • Metadata API reader • Permission model converter • Permission Set XML generator • ZIP packaging engine • Metadata deploy handler No backend infrastructure is required. This architecture improves privacy, transparency, and reliability. Open Source ProfileShift is an open-source project. The entire codebase can be inspected and audited by the community. Developers are welcome to contribute improvements, report issues, and suggest new features. Open source ensures transparency and allows teams to verify exactly how metadata is processed. Typical Use Cases Salesforce teams use ProfileShift for: • Converting legacy Profiles to Permission Sets • Simplifying permission management • Reducing Profile complexity • Preparing metadata for version control • Supporting Salesforce DevOps workflows • Accelerating security refactoring projects It saves significant time compared to manually recreating permissions. Important Notes ProfileShift does not replace Salesforce administrative tools. It is designed as a helper utility for developers and administrators who understand Salesforce metadata and security architecture. All metadata changes must be reviewed before deployment. Users remain responsible for validating changes in their Salesforce environment. Who Should Install ProfileShift Install this extension if you: • Work with Salesforce Profiles and Permission Sets • Need to modernize security architecture • Want faster Profile-to-Permission Set conversion • Use Salesforce Metadata API workflows • Maintain SFDX projects • Manage Salesforce org permissions ProfileShift is especially useful for developers, consultants, and architects working with complex Salesforce environments. Modernize Salesforce Security Profiles were never meant to scale to the level of complexity seen in many Salesforce orgs today. ProfileShift helps teams transition toward a modern, modular security architecture based on Permission Sets. Convert Profiles faster, generate clean metadata, and modernize your org safely. ProfileShift – Modernizing Salesforce security architecture from your browser. 🚀