Starting November 20, the site will be set to read-only.
On December 4, 2023,
Apex Code Development (90768)
General Development (55146)
Visualforce Development (37251)
Lightning (18265)
APIs and Integration (17146)
Trailhead (11680)
Formulas & Validation Rules Discussion (11337)
Other Salesforce Applications (8116)
Jobs Board (6655)
Force.com Sites & Site.com (4842)
Mobile (2694)
You need to sign in to do that
Don't have an account?
raj345 Hi,
I am new to Salesforce. I am developing a mobile application using jquery mobile. In my application, I am sending a url and access token to retrieve data from the salesforce. How do i protect this url and access token. How do people try to hack this url and access token during security review?
There's nowhere in the webview layer that is secure enough to store the access token or refresh token, so I would strongly recommend starting with the Salesforce Mobile SDK, as it handles all of the auth stuff for you:
http://wiki.developerforce.com/page/Mobile_SDK
There's no real reason to worry about securiing the API URL's as they're all publicly documented.