function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Sourav HazraSourav Hazra 

Masking of URL

We have a requirement to integration salesforce.com with OBIEE through middleware. The webservice is exposed from middleware and that being invoked from Salesforce.com and getting an URL back as response. The URL consists of different parameter values and OBI credentials. But there is no issue in the integration and reports are also coming properly. 

The issue is whenever report is opening in a new window (thats the requirement), the exact URL is being shown in the browser address bar. Since the url consists of parameters and credentials, it is a security threat. Can there be any easy way to mask the url/hide the address URL, so that the URL will not be exposed to end users?
pconpcon
No, there's not a way to remove that url, and as long as you are making the call with the credentials via the client's browser anyone could always use the developer tools to see what the calls being made "behind the scenes" were anyway.
Sourav HazraSourav Hazra
following up on this one after a month - if this is not at all possible and this will be visible in the developer tool, then there should be some way out to handle this type of situation. Web service currently returning URL. Are you saying the WS code needs to be modified and should take some alternate approch by restricting URL as the return parameter?