Certified Integration Architect Exam QuestionsBrowse all questions from this exam
Go to Exam

Certified Integration Architect Exam - Question 36

An integration architect has designed a mobile application for Salesforce users to get data while on the road using a custom user interface (UI). The application is secured with OAuth and is currently functioning well. There is a new requirement where the mobile application needs to obtain the GPS coordinates and store them on a custom geolocation field.

The geolocation field is secured with field-level security, so users can view the value without changing it.

What should be done to meet the requirement?

Show Answer
Correct Answer: A,B

To meet the requirement of capturing the GPS coordinates and storing them in a custom geolocation field while respecting the field-level security (FLS) settings, the mobile device should make a REST Apex inbound call. This approach leverages custom Apex REST endpoints, allowing the code to run in the system context, which means it can perform updates on the field regardless of the user's field-level security permissions. This ensures that the necessary data can be stored securely and appropriately without users needing direct write access to the geolocation field.

Discussion

3 comments
Sign in to comment
AbulzOption: B
Dec 29, 2023

Current Answer is B Rest API respects FLS, Rest APEX allows you to bypass the FLS

Paul421Option: B
Jun 3, 2024

to bypass security - with a connected app with higher priveleges

SS1121Option: B
Jul 17, 2024

REST Apex Inbound Call: This allows the mobile application to make a call to a custom Apex REST endpoint. The Apex code can run in the system context, which means it has the necessary permissions to update the field even if the user does not have write access to the geolocation field.