function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion

Mobile Application:Secure URL and AccessToken


I am new to Salesforce. I am developing a mobile application using jquery mobile. In my application, I am sending a url and access token to retrieve data from the salesforce. How do i protect this url and access token. How do people try to hack this url and access token during security review?

Best Answer chosen by Admin (Salesforce Developers) 
Tom GersicTom Gersic

There's nowhere in the webview layer that is secure enough to store the access token or refresh token, so I would strongly recommend starting with the Salesforce Mobile SDK, as it handles all of the auth stuff for you:


There's no real reason to worry about securiing the API URL's as they're all publicly documented.