+ Start a Discussion
Surender reddy SalukutiSurender reddy Salukuti 

Lightning component we are giving access="Global" but for salesforce security review is not allowing how can we solve this issue ?

Hi All,

 

Salesforce Lightning component we are using 
<aura:component access="Global"  implements="force:lightningQuickActionWithoutHeader,flexipage:availableForAllPageTypes,forceCommunity:availableForAllPageTypes,force:hasRecordId" >

we are using like above but salesforce security report we got result 

Issue Description
Events sent across namespace boundaries that include sensitive data not intended for consumption by another namespace. Unintentional leak of data across namespace boundary via improper configuration of events. Use properly scoped LWC custom events.
Finding 1 of 1
File
aura/FT_AccountabilityPreviewAction/FT_AccountabilityPreviewAction.cmp
Code
<aura:component implements="force:LightningQuickAction,forceCommunity:availableForAllPageTypes" access="Global">
Notes
Access attribute with value "global" allows your resource to be accessed outside your org. There are similar instances throughout the application, please fix it in all places.

we are getting this issue in How we can over come to these problems

 please support if any one know 

Thank you 

Surender Reddy 

 

 

Caleb Kuester 35Caleb Kuester 35

Can you set it to access = "Public?"

It's possible that this link may have some useful information for you:

https://salesforce.stackexchange.com/questions/176948/when-to-set-lightning-access-global-in-managed-packages/176989

In there, there's a quote:

Global: Any component can access the value of this attribute.
Public: Only components in the same namespace can set the value of this attribute.
Private: Only this component can set the value of this attribute.

I think it would be worth testing to see if it works under Public.