Anyone logged in to API can see the javascript code, your username and password - how to avoid this in Salesforce?

Tagged: AJAX Toolkit, Apex API, Global Variable, Javascript Code, Login, Password, Salesforce Security, Salesforce Visualforce Page, Session Variable, Username

Salesforce® Discussions

Anyone logged in to API can see the javascript code, your username and password - how to avoid this in Salesforce?

Posted by Aman on September 22, 2018 at 6:41 pm

In Ajax toolkit for custom Javascript button, you have to explicitly login to API because global Session variable is not available. In that case it is security vulnerable because anybody logged in can see the javascript code and your username and password. So is there any way to avoid this?

Parul replied 6 years, 5 months ago 3 Members · 2 Replies
2 Replies

shariq

Member
September 22, 2018 at 6:42 pm

We can create a visualforce page with output type as JavaScript. Global session variable is available in VF page. Initialize the global javascript variable in that VF page. include VF page as a javascript file and we are done!
Parul

Member
September 23, 2018 at 5:45 am

Global session variable is available in VF page so when we create a visualforce page with output type as JavaScript first initialize the global javascript variable in that VF page and then include VF page as a javascript file I think then it avoided.

Popular Salesforce Blogs

Understanding the Salesforce Data Import Tool

Blog in Salesforce Admin

Introduction Salesforce is a powerful customer relationship management (CRM) platform that helps organizations streamline their sales, service, and marketing processes. One of the key aspects…

#permissions, access, APIs, Backup, Batch Size Control

SF Sep 27, 2023

1,378 Views

Salesforce Sales Cloud - The Complete Guide

Blog in Sales, Salesforce Cloud Platform

Introduction As we already know Salesforce CRM helps every industry to win more deals, manage the business efficiently and to build strong relationships with customers.…

Benefits of Salesforce, Guide, Lightning, Sales Cloud, salescloud

Emorphis Aug 8, 2022

5,341 Views

Salesforce Essentials: What Is It and Why You Need It

Blog in Salesforce

Every industry needs software that established a continuous connection with the clients. This is the reason why Salesforce is emerging as a leader in the…

Accounting, AppExchange, Application Building, Business Data, Business Market

CRS Aug 27, 2020

2,636 Views

Salesforce Lightning Tutorial | Salesforce Developer Training for Beginners

Video in Lightning

This salesforce developer training for beginners video is a salesforce lightning tutorial where you will learn introduction to salesforce, salesforce components, salesforce lightning, lightning vs…

Salesforce Training, Salesforce Lightning, salesforce, Salesforce Developers, Salesforce Lightning Platform

Rupal Kakkar Apr 7, 2020

1,938 Views

Salesforce Lightning Design System (SLDS) and Components

Video in Lightning, Salesforce Training

The Salesforce Lightning Design System (SLDS) helps you build applications with the look and feel of Lightning Experience without writing a single line of CSS.…

Salesforce Development, Salesforce Lightning Components, Apex, Visualforce, Slds

Shiv Kumar Sharma Jan 11, 2018

2,530 Views

Can a Housewife Make Career in Salesforce?

Video in Salesforce Stories

Wondering if a Housewife can make a career in Salesforce Join this user group for Salesforce job & career info and learn all you need…

Salesforce Training, Salesforce Tutorial, Salesforce Video, Salesforce Career, Salesforce Learning

Intelogik Dec 5, 2022

1,230 Views

Anyone logged in to API can see the javascript code, your username and password - how to avoid this in Salesforce?

Popular Salesforce Blogs

Popular Salesforce Videos