Skip to Content
Practical Salesforce Architecture
book

Practical Salesforce Architecture

by Paul McCollum
October 2023
Intermediate to advanced
183 pages
5h 17m
English
O'Reilly Media, Inc.
Content preview from Practical Salesforce Architecture

Chapter 7. Security

Working in a very complex cloud environment with a very flexible platform requires a lot of focus on security design and maintenance. Much of Salesforce’s success is based on how easy it is to share information with teammates and coworkers. The myriad ways you can configure permissions provide lots of utility for users and developers. However, there are at least three different areas you should continuously monitor to guard against oversharing and unnecessary exposure. We’re going to cover three security paradigms here, with the important observation that these three patterns interact and that “effective” permissions are the sum of the permissions the same user or role has on each system. We’ll also be discussing the internal mechanisms for handling permissions in Salesforce, and some common misconceptions that arise from not fully appreciating some of the ways permissions work.

Warning

Salesforce security concept #1: Just because you cannot see a piece of data does not mean you cannot access it. There are native web services and pages that exist by default that can show you any data that you have been granted access to. It is a common security hole that objects and data are created and manipulated by automation in a way that is not intended to be seen by the user. A common misstep is to overshare data when trying to enable anonymous (unauthenticated) access on Experience Cloud sites (Communities). Flows and other visual tools that require read access to a ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

Mastering API Architecture

Mastering API Architecture

James Gough, Daniel Bryant, Matthew Auburn

Publisher Resources

ISBN: 9781098138271Errata Page