SlideShare a Scribd company logo

Locker services and lightning components

Download as PPTX, PDF
Cloud Analogy
Cloud Analogy

LockerService brings multi-tenancy to the browsers. This is done by sandboxing of code and isolation of elements, thereby setting them apart from the rest of the system. Locker acts as a Virtual iframe that helps to bring all the security benefits - minus the drawbacks of UI for an iframe. LockerService for businesses are enabled for components with API version 39.0 and lower.

Technology
1 of 10
cloud.analogy info@cloudanalogy.com +1(415)830-3899
cloud.analogy info@cloudanalogy.com +1(415)830-3899 LockerService brings multi-tenancy to the browsers. This is done by sandboxing of code and isolation of elements, thereby setting them apart from the rest of the system. Locker acts as a Virtual iframe that helps to bring all the security benefits - minus the drawbacks of UI for an iframe. LockerService for businesses are enabled for components with API version 39.0 and lower. Consequently, the Locker issues may simply stop the components or the Lightning page - with Locker services enforced by Salesforce. Here is an use case on enforcement of LockerService on Lightning component. What is LockerService ?
cloud.analogy info@cloudanalogy.com +1(415)830-3899 What are the security benefits of Locker Services? ● Locker source is open-source Javascript files maintained by Salesforce. ● When Single Page Applications (SPAs) are built using Lightning components, then Security can be enforced by LockerServices. ● Locker makes use of Content Security Policy (CSP) of the browser. Next, we speak about Locker Compliance and reworking of LCs.
cloud.analogy info@cloudanalogy.com +1(415)830-3899 Locker Compliance and reworking of LCs. The Salesforce admin or the developer can enable the Locker services with critical updates and test the component/application - whether it is functional. Next we move to CSP Policy, that is implemented in the modern applications.
How to implement CSP in the modern applications ? CSP is supported by all the modern browsers - Firefox, Chrome, Safari and others. CSP can be enforced by an HTTP header, rule pattern and a name. A ruleset defined browser can be used for prevention webpage downloading of malicious content from unknown sources. The LC code can be broken under Locker, let us now find the causes for that. cloud.analogy info@cloudanalogy.com +1(415)830-3899 CSP is supported by all the modern browsers - Firefox, Chrome, Safari and others. CSP can be enforced by an HTTP header, rule pattern and a name. A ruleset defined browser can be used for prevention webpage downloading of malicious content from unknown sources. How to implement CSP in the modern applications ? The LC code can be broken under Locker, let us now find the causes for that.
cloud.analogy info@cloudanalogy.com +1(415)830-3899 What are the Causes for broken LC Code in Locker ? The causes for broken LC code are as follows: ● ESS Strict Mode Compliance of Javascript ● Third-party libraries not locker-compliant ● Loading Images or JS libraries from CDN or an external website.
cloud.analogy info@cloudanalogy.com +1(415)830-3899 You need to check with Javascript strict mode rules from: https://developer.mozilla.org/en- US/docs/Web/JavaScript/Reference/Strict_mod e ESS Strict Mode Compliance Of Javascript
cloud.analogy info@cloudanalogy.com +1(415)830-3899 Third-party libraries not locker- compliant One must ensure that any third-party libraries must be checked for working in Locker Service.
cloud.analogy info@cloudanalogy.com +1(415)830-3899 Loading Images or JS libraries from CDN or an external website The assets and images must be ensured to be loaded by loading from Salesforce Strict Resources only.
cloud.analogy info@cloudanalogy.com +1(415)830-3899 THANK YOU

Recommended

Csp july2015
Csp july2015Csp july2015
Csp july2015n|u - The Open Security Community
 
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp Vault
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp VaultCodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp Vault
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp VaultCodiLime
 
SSL Pinning and Bypasses: Android and iOS
SSL Pinning and Bypasses: Android and iOSSSL Pinning and Bypasses: Android and iOS
SSL Pinning and Bypasses: Android and iOSAnant Shrivastava
 
Flash Security
Flash SecurityFlash Security
Flash SecurityFerruh Mavituna
 
7 tips to make word press website secure in 2021
7 tips to make word press website secure in 20217 tips to make word press website secure in 2021
7 tips to make word press website secure in 2021WebConnect Pvt Ltd
 
Null bhopal Sep 2016: What it Takes to Secure a Web Application
Null bhopal Sep 2016: What it Takes to Secure a Web ApplicationNull bhopal Sep 2016: What it Takes to Secure a Web Application
Null bhopal Sep 2016: What it Takes to Secure a Web ApplicationAnant Shrivastava
 
Joomla spécialiste
Joomla spécialisteJoomla spécialiste
Joomla spécialisteRomain Caisse
 
Automating your AWS Security Operations
Automating your AWS Security OperationsAutomating your AWS Security Operations
Automating your AWS Security OperationsEvident.io
 

Recommended

Csp july2015
Csp july2015Csp july2015
Csp july2015n|u - The Open Security Community
 
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp Vault
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp VaultCodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp Vault
CodiLime Tech Talk - Michał Pawluk: Our deployment of HashiCorp VaultCodiLime
 
SSL Pinning and Bypasses: Android and iOS
SSL Pinning and Bypasses: Android and iOSSSL Pinning and Bypasses: Android and iOS
SSL Pinning and Bypasses: Android and iOSAnant Shrivastava
 
Flash Security
Flash SecurityFlash Security
Flash SecurityFerruh Mavituna
 
7 tips to make word press website secure in 2021
7 tips to make word press website secure in 20217 tips to make word press website secure in 2021
7 tips to make word press website secure in 2021WebConnect Pvt Ltd
 
Null bhopal Sep 2016: What it Takes to Secure a Web Application
Null bhopal Sep 2016: What it Takes to Secure a Web ApplicationNull bhopal Sep 2016: What it Takes to Secure a Web Application
Null bhopal Sep 2016: What it Takes to Secure a Web ApplicationAnant Shrivastava
 
Joomla spécialiste
Joomla spécialisteJoomla spécialiste
Joomla spécialisteRomain Caisse
 
Automating your AWS Security Operations
Automating your AWS Security OperationsAutomating your AWS Security Operations
Automating your AWS Security OperationsEvident.io
 
6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web components6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web componentsCloud Analogy
 
WordPress London Meetup January 2012
WordPress London Meetup January 2012WordPress London Meetup January 2012
WordPress London Meetup January 2012Cloudflare
 
Flex security
Flex securityFlex security
Flex securitychengalva
 
W3 conf hill-html5-security-realities
W3 conf hill-html5-security-realitiesW3 conf hill-html5-security-realities
W3 conf hill-html5-security-realitiesBrad Hill
 
Blackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browserBlackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browserShreeraj Shah
 
CamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF SecurityCamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF SecurityKenneth Peeples
 
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SFWebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SFFrank Greco
 
Introduction to lightning Web Component
Introduction to lightning Web ComponentIntroduction to lightning Web Component
Introduction to lightning Web ComponentMohith Shrivastava
 
Introduction to lightning web component
Introduction to lightning web component Introduction to lightning web component
Introduction to lightning web component Sudipta Deb ☁
 
Top security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid themTop security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid themElad Elrom
 
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...Divyanshu
 
Connecting All Abstractions with Istio
Connecting All Abstractions with IstioConnecting All Abstractions with Istio
Connecting All Abstractions with IstioVMware Tanzu
 
Securing Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid CloudsSecuring Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid CloudsRightScale
 
Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)ColdFusionConference
 
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...Amazon Web Services
 
Barracuda in Microsoft Azure
Barracuda in Microsoft AzureBarracuda in Microsoft Azure
Barracuda in Microsoft AzureresponsiveX
 
Dreamforce 2018 Locker Service
Dreamforce 2018 Locker ServiceDreamforce 2018 Locker Service
Dreamforce 2018 Locker ServiceRahul Malhotra
 
Python Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in PythonPython Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in Pythonabhishekdf3
 
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_awsOn demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_awsSumit Arora
 
Sam2
Sam2Sam2
Sam2sasanisiki
 
Zendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptxZendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptxCloud Analogy
 
Salesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptxSalesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptxCloud Analogy
 

More Related Content

Similar to Locker services and lightning components

6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web components6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web componentsCloud Analogy
 
WordPress London Meetup January 2012
WordPress London Meetup January 2012WordPress London Meetup January 2012
WordPress London Meetup January 2012Cloudflare
 
Flex security
Flex securityFlex security
Flex securitychengalva
 
W3 conf hill-html5-security-realities
W3 conf hill-html5-security-realitiesW3 conf hill-html5-security-realities
W3 conf hill-html5-security-realitiesBrad Hill
 
Blackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browserBlackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browserShreeraj Shah
 
CamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF SecurityCamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF SecurityKenneth Peeples
 
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SFWebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SFFrank Greco
 
Introduction to lightning Web Component
Introduction to lightning Web ComponentIntroduction to lightning Web Component
Introduction to lightning Web ComponentMohith Shrivastava
 
Introduction to lightning web component
Introduction to lightning web component Introduction to lightning web component
Introduction to lightning web component Sudipta Deb ☁
 
Top security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid themTop security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid themElad Elrom
 
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...Divyanshu
 
Connecting All Abstractions with Istio
Connecting All Abstractions with IstioConnecting All Abstractions with Istio
Connecting All Abstractions with IstioVMware Tanzu
 
Securing Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid CloudsSecuring Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid CloudsRightScale
 
Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)ColdFusionConference
 
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...Amazon Web Services
 
Barracuda in Microsoft Azure
Barracuda in Microsoft AzureBarracuda in Microsoft Azure
Barracuda in Microsoft AzureresponsiveX
 
Dreamforce 2018 Locker Service
Dreamforce 2018 Locker ServiceDreamforce 2018 Locker Service
Dreamforce 2018 Locker ServiceRahul Malhotra
 
Python Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in PythonPython Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in Pythonabhishekdf3
 
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_awsOn demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_awsSumit Arora
 

Similar to Locker services and lightning components (20)

6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web components6 reasons developers should consider salesforce lightning web components
6 reasons developers should consider salesforce lightning web components
 
WordPress London Meetup January 2012
WordPress London Meetup January 2012WordPress London Meetup January 2012
WordPress London Meetup January 2012
 
Flex security
Flex securityFlex security
Flex security
 
W3 conf hill-html5-security-realities
W3 conf hill-html5-security-realitiesW3 conf hill-html5-security-realities
W3 conf hill-html5-security-realities
 
Blackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browserBlackhat11 shreeraj reverse_engineering_browser
Blackhat11 shreeraj reverse_engineering_browser
 
CamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF SecurityCamelOne 2013 Karaf A-MQ Camel CXF Security
CamelOne 2013 Karaf A-MQ Camel CXF Security
 
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SFWebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
WebSocket Perspectives and Vision for the Future - HTML5DevConf Oct 2013 SF
 
Introduction to lightning Web Component
Introduction to lightning Web ComponentIntroduction to lightning Web Component
Introduction to lightning Web Component
 
Introduction to lightning web component
Introduction to lightning web component Introduction to lightning web component
Introduction to lightning web component
 
Top security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid themTop security threats to Flash/Flex applications and how to avoid them
Top security threats to Flash/Flex applications and how to avoid them
 
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
Browser Hacking For Fun and Profit | Null Bangalore Meetup 2019 | Divyanshu S...
 
Connecting All Abstractions with Istio
Connecting All Abstractions with IstioConnecting All Abstractions with Istio
Connecting All Abstractions with Istio
 
Securing Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid CloudsSecuring Servers in Public and Hybrid Clouds
Securing Servers in Public and Hybrid Clouds
 
Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)Java script and web cryptography (cf.objective)
Java script and web cryptography (cf.objective)
 
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
Layered Perimeter Protection for Apps Running on AWS (CTD201-R1) - AWS re:Inv...
 
Barracuda in Microsoft Azure
Barracuda in Microsoft AzureBarracuda in Microsoft Azure
Barracuda in Microsoft Azure
 
Dreamforce 2018 Locker Service
Dreamforce 2018 Locker ServiceDreamforce 2018 Locker Service
Dreamforce 2018 Locker Service
 
Python Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in PythonPython Web Framework – A Detailed List of Web Frameworks in Python
Python Web Framework – A Detailed List of Web Frameworks in Python
 
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_awsOn demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
On demand video_streaming_apps_and_its_server_side_cloud_infrastructure_at_aws
 
Sam2
Sam2Sam2
Sam2
 

More from Cloud Analogy

Zendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptxZendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptxCloud Analogy
 
Salesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptxSalesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptxCloud Analogy
 
Top Salesforce Integrations For Businesses In 2022
Top Salesforce Integrations For Businesses In 2022Top Salesforce Integrations For Businesses In 2022
Top Salesforce Integrations For Businesses In 2022Cloud Analogy
 
Top 5 Zoho Products And Their Features.pptx
Top 5 Zoho Products And Their Features.pptxTop 5 Zoho Products And Their Features.pptx
Top 5 Zoho Products And Their Features.pptxCloud Analogy
 
SAP vs Oracle: Which ERP System Should You Choose In 2022?
SAP vs Oracle: Which ERP System Should You Choose In 2022?SAP vs Oracle: Which ERP System Should You Choose In 2022?
SAP vs Oracle: Which ERP System Should You Choose In 2022?Cloud Analogy
 
5 Low-Code Tools To Increase Salesforce Admins Productivity
5 Low-Code Tools To Increase Salesforce Admins Productivity5 Low-Code Tools To Increase Salesforce Admins Productivity
5 Low-Code Tools To Increase Salesforce Admins ProductivityCloud Analogy
 
Tips To Make The Most Out Of Salesforce CRM
Tips To Make The Most Out Of Salesforce CRMTips To Make The Most Out Of Salesforce CRM
Tips To Make The Most Out Of Salesforce CRMCloud Analogy
 
5 Tips For Salesforce Admin In 2022
5 Tips For Salesforce Admin In 20225 Tips For Salesforce Admin In 2022
5 Tips For Salesforce Admin In 2022Cloud Analogy
 
Trailhead Badges To Earn In 2022
Trailhead Badges To Earn In 2022Trailhead Badges To Earn In 2022
Trailhead Badges To Earn In 2022Cloud Analogy
 
HubSpot And Slack Integration
HubSpot And Slack IntegrationHubSpot And Slack Integration
HubSpot And Slack IntegrationCloud Analogy
 
Multi-Factor Authentication In Salesforce
Multi-Factor Authentication In SalesforceMulti-Factor Authentication In Salesforce
Multi-Factor Authentication In SalesforceCloud Analogy
 
5 Myths About Salesforce CRM
5 Myths About Salesforce CRM5 Myths About Salesforce CRM
5 Myths About Salesforce CRMCloud Analogy
 
6 Sales Promotion Tips For Marketing Success
6 Sales Promotion Tips For Marketing Success6 Sales Promotion Tips For Marketing Success
6 Sales Promotion Tips For Marketing SuccessCloud Analogy
 
How Marketing Cloud Latest Features Can Improve Your Campaign Performance
How Marketing Cloud Latest Features Can Improve Your Campaign PerformanceHow Marketing Cloud Latest Features Can Improve Your Campaign Performance
How Marketing Cloud Latest Features Can Improve Your Campaign PerformanceCloud Analogy
 
Important Salesforce Trends to Watch Out for in 2022
Important Salesforce Trends to Watch Out for in 2022Important Salesforce Trends to Watch Out for in 2022
Important Salesforce Trends to Watch Out for in 2022Cloud Analogy
 
How To Build Your Sales Career In The Salesforce Ecosystem
How To Build Your Sales Career In The Salesforce EcosystemHow To Build Your Sales Career In The Salesforce Ecosystem
How To Build Your Sales Career In The Salesforce EcosystemCloud Analogy
 
Best Sales Metrics Every Sales Leader Should Know
Best Sales Metrics Every Sales Leader Should KnowBest Sales Metrics Every Sales Leader Should Know
Best Sales Metrics Every Sales Leader Should KnowCloud Analogy
 
Common Salesforce CPQ Implementation Challenges
Common Salesforce CPQ Implementation ChallengesCommon Salesforce CPQ Implementation Challenges
Common Salesforce CPQ Implementation ChallengesCloud Analogy
 
5 Accurate Sales Forecasting Strategies To Predict Your Revenue
5 Accurate Sales Forecasting Strategies To Predict Your Revenue5 Accurate Sales Forecasting Strategies To Predict Your Revenue
5 Accurate Sales Forecasting Strategies To Predict Your RevenueCloud Analogy
 
How To Utilize Slack As A Secret Weapon For Your Sales Team
How To Utilize Slack As A Secret Weapon For Your Sales TeamHow To Utilize Slack As A Secret Weapon For Your Sales Team
How To Utilize Slack As A Secret Weapon For Your Sales TeamCloud Analogy
 

More from Cloud Analogy (20)

Zendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptxZendesk Integration With Salesforce .pptx
Zendesk Integration With Salesforce .pptx
 
Salesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptxSalesforce Integration With Mailchimp (1).pptx
Salesforce Integration With Mailchimp (1).pptx
 
Top Salesforce Integrations For Businesses In 2022
Top Salesforce Integrations For Businesses In 2022Top Salesforce Integrations For Businesses In 2022
Top Salesforce Integrations For Businesses In 2022
 
Top 5 Zoho Products And Their Features.pptx
Top 5 Zoho Products And Their Features.pptxTop 5 Zoho Products And Their Features.pptx
Top 5 Zoho Products And Their Features.pptx
 
SAP vs Oracle: Which ERP System Should You Choose In 2022?
SAP vs Oracle: Which ERP System Should You Choose In 2022?SAP vs Oracle: Which ERP System Should You Choose In 2022?
SAP vs Oracle: Which ERP System Should You Choose In 2022?
 
5 Low-Code Tools To Increase Salesforce Admins Productivity
5 Low-Code Tools To Increase Salesforce Admins Productivity5 Low-Code Tools To Increase Salesforce Admins Productivity
5 Low-Code Tools To Increase Salesforce Admins Productivity
 
Tips To Make The Most Out Of Salesforce CRM
Tips To Make The Most Out Of Salesforce CRMTips To Make The Most Out Of Salesforce CRM
Tips To Make The Most Out Of Salesforce CRM
 
5 Tips For Salesforce Admin In 2022
5 Tips For Salesforce Admin In 20225 Tips For Salesforce Admin In 2022
5 Tips For Salesforce Admin In 2022
 
Trailhead Badges To Earn In 2022
Trailhead Badges To Earn In 2022Trailhead Badges To Earn In 2022
Trailhead Badges To Earn In 2022
 
HubSpot And Slack Integration
HubSpot And Slack IntegrationHubSpot And Slack Integration
HubSpot And Slack Integration
 
Multi-Factor Authentication In Salesforce
Multi-Factor Authentication In SalesforceMulti-Factor Authentication In Salesforce
Multi-Factor Authentication In Salesforce
 
5 Myths About Salesforce CRM
5 Myths About Salesforce CRM5 Myths About Salesforce CRM
5 Myths About Salesforce CRM
 
6 Sales Promotion Tips For Marketing Success
6 Sales Promotion Tips For Marketing Success6 Sales Promotion Tips For Marketing Success
6 Sales Promotion Tips For Marketing Success
 
How Marketing Cloud Latest Features Can Improve Your Campaign Performance
How Marketing Cloud Latest Features Can Improve Your Campaign PerformanceHow Marketing Cloud Latest Features Can Improve Your Campaign Performance
How Marketing Cloud Latest Features Can Improve Your Campaign Performance
 
Important Salesforce Trends to Watch Out for in 2022
Important Salesforce Trends to Watch Out for in 2022Important Salesforce Trends to Watch Out for in 2022
Important Salesforce Trends to Watch Out for in 2022
 
How To Build Your Sales Career In The Salesforce Ecosystem
How To Build Your Sales Career In The Salesforce EcosystemHow To Build Your Sales Career In The Salesforce Ecosystem
How To Build Your Sales Career In The Salesforce Ecosystem
 
Best Sales Metrics Every Sales Leader Should Know
Best Sales Metrics Every Sales Leader Should KnowBest Sales Metrics Every Sales Leader Should Know
Best Sales Metrics Every Sales Leader Should Know
 
Common Salesforce CPQ Implementation Challenges
Common Salesforce CPQ Implementation ChallengesCommon Salesforce CPQ Implementation Challenges
Common Salesforce CPQ Implementation Challenges
 
5 Accurate Sales Forecasting Strategies To Predict Your Revenue
5 Accurate Sales Forecasting Strategies To Predict Your Revenue5 Accurate Sales Forecasting Strategies To Predict Your Revenue
5 Accurate Sales Forecasting Strategies To Predict Your Revenue
 
How To Utilize Slack As A Secret Weapon For Your Sales Team
How To Utilize Slack As A Secret Weapon For Your Sales TeamHow To Utilize Slack As A Secret Weapon For Your Sales Team
How To Utilize Slack As A Secret Weapon For Your Sales Team
 

Recently uploaded

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 

Recently uploaded (20)

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 

Locker services and lightning components

  • 2. cloud.analogy info@cloudanalogy.com +1(415)830-3899 LockerService brings multi-tenancy to the browsers. This is done by sandboxing of code and isolation of elements, thereby setting them apart from the rest of the system. Locker acts as a Virtual iframe that helps to bring all the security benefits - minus the drawbacks of UI for an iframe. LockerService for businesses are enabled for components with API version 39.0 and lower. Consequently, the Locker issues may simply stop the components or the Lightning page - with Locker services enforced by Salesforce. Here is an use case on enforcement of LockerService on Lightning component. What is LockerService ?
  • 3. cloud.analogy info@cloudanalogy.com +1(415)830-3899 What are the security benefits of Locker Services? ● Locker source is open-source Javascript files maintained by Salesforce. ● When Single Page Applications (SPAs) are built using Lightning components, then Security can be enforced by LockerServices. ● Locker makes use of Content Security Policy (CSP) of the browser. Next, we speak about Locker Compliance and reworking of LCs.
  • 4. cloud.analogy info@cloudanalogy.com +1(415)830-3899 Locker Compliance and reworking of LCs. The Salesforce admin or the developer can enable the Locker services with critical updates and test the component/application - whether it is functional. Next we move to CSP Policy, that is implemented in the modern applications.
  • 5. How to implement CSP in the modern applications ? CSP is supported by all the modern browsers - Firefox, Chrome, Safari and others. CSP can be enforced by an HTTP header, rule pattern and a name. A ruleset defined browser can be used for prevention webpage downloading of malicious content from unknown sources. The LC code can be broken under Locker, let us now find the causes for that. cloud.analogy info@cloudanalogy.com +1(415)830-3899 CSP is supported by all the modern browsers - Firefox, Chrome, Safari and others. CSP can be enforced by an HTTP header, rule pattern and a name. A ruleset defined browser can be used for prevention webpage downloading of malicious content from unknown sources. How to implement CSP in the modern applications ? The LC code can be broken under Locker, let us now find the causes for that.
  • 6. cloud.analogy info@cloudanalogy.com +1(415)830-3899 What are the Causes for broken LC Code in Locker ? The causes for broken LC code are as follows: ● ESS Strict Mode Compliance of Javascript ● Third-party libraries not locker-compliant ● Loading Images or JS libraries from CDN or an external website.
  • 7. cloud.analogy info@cloudanalogy.com +1(415)830-3899 You need to check with Javascript strict mode rules from: https://developer.mozilla.org/en- US/docs/Web/JavaScript/Reference/Strict_mod e ESS Strict Mode Compliance Of Javascript
  • 8. cloud.analogy info@cloudanalogy.com +1(415)830-3899 Third-party libraries not locker- compliant One must ensure that any third-party libraries must be checked for working in Locker Service.
  • 9. cloud.analogy info@cloudanalogy.com +1(415)830-3899 Loading Images or JS libraries from CDN or an external website The assets and images must be ensured to be loaded by loading from Salesforce Strict Resources only.