We have some React (https://reactjs.org/) Components we would like to embed as Lightning Web Components into a Retail Customer Community built on Salesforce Community Cloud in Experience Builder.

Does anyone have guidance or recommendations on best practices here?

Here's some links we've reviewed so far:

https://developer.salesforce.com/blogs/2018/12/introducing-lightning-web-components.html

https://developer.salesforce.com/docs/component-library/documentation/en/lwc/lwc.use_config_for_community_builder

https://developer.salesforce.com/docs/component-library/overview/components

https://trailhead.salesforce.com/en/content/learn/trails/build-lightning-web-components

https://medium.com/@johntucker_48673/exploring-salesforce-lightning-web-components-part-4-cb40dd8b02bc

Any links, information, etc. are appreciated.

Thank you!

Hi all,

We are working on building a custom carousel for one of the pages in our customer community.

We like the the lightning carousel, but need to customize it to add more than five images and remove the white box with black text at the bottom of each image.

https://developer.salesforce.com/docs/component-library/bundle/lightning-carousel/example

We would like our custom carousel to be a Lightning web component.

We found the HTML and CSS available as part of the Lightning Design System here.
https://lightningdesignsystem.com/components/carousel/

However, we couldn't find the JavaScript code for the carousel anywhere.

We searched pretty extensively in this repo:
https://github.com/salesforce/lwc

But that repo only seemed to be the compiler for Lightning Web Components. That repo does not seem to contain the HTML, CSS, and JS for any of the Base Lightning Web Components.

Are we understanding this correctly?
In other words, is the JS code for the lightning-carousel closed source even though the HTML and CSS has been released?

Thank you!
Jey

We recently had a security review of a Customer Community.

During the security review, the external security team identified that some cookies set during the community login process did not have the HttpOnly or Secure cookie attributes set.

The specific cookies in question were connect.sid and oinfo

How do we configure our Salesforce community to properly set the HttpOnly and Secure cookie attributes for these cookies?

We recently had a security review of a Customer Community.

During the security review, the external security team identified that some cookies set during the community login process did not have the HttpOnly or Secure cookie attributes set.

The specific cookies in question were connect.sid and oinfo

How do we configure our Salesforce community to properly set the HttpOnly and Secure cookie attributes for these cookies?

Hello,

We're planning to enable Azure AD single sign on for our domain, and before doing that I need to confirm some questions. Would you please help me with below questions?

1. How many different domains are supported for Salesforce SSO? 
2. If we enable SSO for our domain, will external domain users still be able to login using their external domain Email address? Can we create users from other domains for example test.com and they login without single sign on?
3.For SSO does it use the primary Email address or 365 login (UPN)? 
4. Will all the user profile settings\history remain there as long as 365 UPNs match the current users Email addresses in Salesforce? Technically our users won't lose anything, correct?
5.If a user Salesforce login doesn't match the Azure AD associated Email address, can we change the email first on Salesforce and then enable Single sign on? Will it keep all the history? 
6.Worst scenario if it doesn’t work, can we just remove the integration and user use their Broadvoice Email with their current salesforce password to login? 


Thanks in advance!