-
What security benefits does Lightning LockerService provide in Salesforce?
What security benefits does Lightning LockerService provide in Salesforce?
-
2 Replies
-
Hi Anjali,
Lightning LockerService enforces security into Single Page Applications built using Lightning components. Locker uses browser CSP (Content Security Policy) to prevent a web page against cross-site scripting (XSS), clickjacking and other code injection attacks resulting from execution of malicious content in the trusted web page context.
In addition to prevention against vulnerabilities, Locker provides two key functions: namespacing your components (similar to Apex namespacing) and isolating component Javascript to only interact with your own component. This allows the secure co-existence of components from multiple vendors on the same web page and ISV’s to build components to publish on the AppExchange.
Thanks.
-
At a high level, Lightning Locker uses various technologies and techniques that are intended to do the following:
Prevent:
Components from causing XSS and similar security issues
Components from reading other component’s rendered data without any restrictions
Components from calling undocumented/private APIs
Enable:Cool new features like client-side API versioning similar to REST API versioning*
Faster security review
Better and more secure JS development practices
Running 3rd party JS frameworks like React, Angular and so on*
Easily adding or removing new security features and policies
Log In to reply.
Popular Salesforce Blogs
Enhance Your Business With The Mighty Collaboration of Slack and Salesforce
The all-new Salesforce and Slack's inbuilt features unite teams and organize workflows built around CRM data, giving them a single source of truth for their…
Implementation of Conga Composer in Salesforce
Conga Composer is a document generation tool and more than that. Conga Composer makes it easy to create and deliver sophisticated documents, presentations, and reports…
How Salesforce Can Drive Consumer Engagement?
With the rise in popularity of digital ecosystems, communication channels have drastically evolved, and along with it, customer expectations have significantly changed as well. This…
Popular Salesforce Videos
Salesforce Service Cloud: Upload Files During a Live Chat
Chatbots are incredible automation tools that can streamline a variety of business processes. Still, regardless of how much they can accomplish, there are situations where…
How Cyntexa Helped Diet Meal And Food Ordering Service Providers Offer Their Users The Ability To Order Online | Salesforce
It is important to keep your business at the top with the latest technical advancements. Presenting you a case study showcasing how Cyntexa Helped Diet…
Salesforce Interview Questions and Answers - For Freshers and Experienced Candidates
Learn most important Salesforce Interview Questions and Answers, asked at every interview. These Interview questions will be useful to all entry-level candidates, beginners, interns, and…