Anyone logged in to API can see the javascript code, your username and password - how to avoid this in Salesforce?

Tagged: AJAX Toolkit, Apex API, Global Variable, Javascript Code, Login, Password, Salesforce Security, Salesforce Visualforce Page, Session Variable, Username

Salesforce® Discussions

Anyone logged in to API can see the javascript code, your username and password - how to avoid this in Salesforce?

Posted by Aman on September 22, 2018 at 6:41 pm

In Ajax toolkit for custom Javascript button, you have to explicitly login to API because global Session variable is not available. In that case it is security vulnerable because anybody logged in can see the javascript code and your username and password. So is there any way to avoid this?

Parul replied 6 years, 3 months ago 3 Members · 2 Replies
2 Replies

shariq

Member
September 22, 2018 at 6:42 pm

We can create a visualforce page with output type as JavaScript. Global session variable is available in VF page. Initialize the global javascript variable in that VF page. include VF page as a javascript file and we are done!
Parul

Member
September 23, 2018 at 5:45 am

Global session variable is available in VF page so when we create a visualforce page with output type as JavaScript first initialize the global javascript variable in that VF page and then include VF page as a javascript file I think then it avoided.

Popular Salesforce Blogs

Dreamforce 2022 Highlights - Everything You Need To Know

Blog in Salesforce, Salesforce Products

The Salesforce’s annual event, “Dreamforce” was held in San Francisco from September 21 to 23, completing their 20 years of magnificence. This year’s event was…

Advancements, Agility, AWS, Azure, Business

Melonleaf Oct 14, 2022

2,232 Views

Empowering Public Services with Salesforce Public Sector Cloud

Blog in Salesforce

Introduction In an era when efficiency, transparency, and user engagement are central to every move, delivering excellence in public sector organizations is daunting. The Salesforce…

Budget Considerations, Cloud Computing, CRM, Customizable Features, Data Metrics

TechForce Jul 19, 2024

386 Views

Comprehensive Guide on Salesforce Web-to-Case

Blog in Salesforce

For any organization or business, growth depends on how they provide service(s) to the customer. Getting comprehensive details of customers’ problems is one of the most…

Application, Business, Capture Cases, Case Object, Company Website

SP Apr 4, 2022

1,963 Views

14 Questions Asked in 95% Salesforce Interviews

Video in Salesforce Stories

In this video, Dan Croitor provides a list of 14 questions that are typically asked in Salesforce interviews. He goes over each question in detail,…

Salesforce Training, Salesforce Tutorial, Salesforce Jobs, salesforce, Salesforce Video

Rahul kapoor Oct 21, 2022

3,096 Views

Embedding Salesforce Einstein Predictions in Tableau with Tomasz Bacewicz

Video in Salesforce Einstein

Get the most out of Salesforce Einstein Discovery and Tableau by embedding Predictions directly in your Dashboards! Learn how from a pro. Watch this video…

Salesforce Training, Salesforce Einstein, Salesforce Einstein Discovery, Salesforce Video, Tableau

Abhishek Sep 3, 2020

1,651 Views

Salesforce Vaccine Cloud

Video in News, Salesforce Cloud Platform

Salesforce is launching Vaccine Cloud, a set of tools to enable government and healthcare organizations to manage and deploy COVID-19 vaccination programs. Vaccine management has…

salesforce, Salesforce Video, Salesforce Learning, Enterprise Software, Salesforce Vaccine Cloud