Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

SOAP

  • XML

  • Standards based

  • WSDL (a package to define all the methods) needs to be downloaded and saved to the server

  • System to system

  • State maintained

  • Built in security

    • OAuth or Session ID (OLD)

  • Can build Custom SOAP Web Services

  • Standard Salesforce WSDL

  • SOA (Service Oriented Architecture) Callout (eg bring data into external systems)

    • Synchronous

  • Web Service API

    • Anything referring to Web Service relates to SOAP.

  • Custom Web Service is inbound

Enterprise WSDL

  • Strongly Typed

  • For a specific org - has all of the customisations in that org

  • Changes if the org changes (eg custom fields added)

Partner WSDL

  • Loosely typed

  • Can be used against any org (eg used by partners)

  • Static - only changes based on API version?

REST

Synchronous vs Asynchronous

  • Sync

    • Eg a transaction

    • Wait for a reply

    • Within the Salesforce limits

  • Async

    • Check back later if it’s done

Callouts

Security

  • Secure Transport over HTTP (HTTPS)

    • Implemented at the Application Layer

    • Network Segments are encrypted end-to-end in the transport layer (TLS)

  • One way SSL is enabled by default.

  • Two way SSL needs self-signed or CA-signed certificates

  • For the exam only, not reality now with many different options available…

    • Apex code ignores profile based security.

    • Can respect or ignore record level security.

TLS

  • Transport Layer Security

  • You upload your certificate to Salesforce

  • You can download salesforce client certificate to authenticate on your web server.

  • No labels