I am interested in if and how other customers might include a design and/or security review in their change management process? As a Admin/Developer, I would not expect all of our admins to always know or be able to followbest practice design principles, or be completely aware of the security implications of all development they do, so I think it would be beneficial to include these review steps in the process. Anyone have any tips or recommendations?
thanks!
John
답변 1개
Do you mean Apex developer when you say developer? For previous clients when they have needed more robust security validation and code review I've implemented FishEye & Crucible (http://www.atlassian.com/software/crucible/). But this doesn't just need to be for Apex/visual force code but also for tracking the Salesforce "meta data" to review changes to profiles, emails etc.
If you wanted to review changes to sharing rules theoretically you could do a regular data export of the sharing rules and then use something like Beyond Compare (http://www.scootersoftware.com/) to review the changes to the sharing rules over time and if they check back to your requested changes.
