Certified Integration Architect Exam

Exam Certified Integration Architect All QuestionsBrowse all questions from this exam

Question 36

An integration architect has designed a mobile application for Salesforce users to get data while on the road using a custom user interface (UI). The application is secured with OAuth and is currently functioning well. There is a new requirement where the mobile application needs to obtain the GPS coordinates and store them on a custom geolocation field.

The geolocation field is secured with field-level security, so users can view the value without changing it.

What should be done to meet the requirement?

The mobile device makes a REST API Inbound call.

The mobile device makes a REST Apex inbound call.

The mobile device makes a SOAP API inbound call.

The mobile device receives a REST Apex callout call.

Correct Answer: B

To meet the requirement of capturing the GPS coordinates and storing them in a custom geolocation field while respecting the field-level security (FLS) settings, the mobile device should make a REST Apex inbound call. This approach leverages custom Apex REST endpoints, allowing the code to run in the system context, which means it can perform updates on the field regardless of the user's field-level security permissions. This ensures that the necessary data can be stored securely and appropriately without users needing direct write access to the geolocation field.

Discussion

AbulzOption: B

Current Answer is B Rest API respects FLS, Rest APEX allows you to bypass the FLS

SS1121Option: B

REST Apex Inbound Call: This allows the mobile application to make a call to a custom Apex REST endpoint. The Apex code can run in the system context, which means it has the necessary permissions to update the field even if the user does not have write access to the geolocation field.

Paul421Option: B

to bypass security - with a connected app with higher priveleges