ABC’s of Salesforce’s Apex Coding Language [Infographic]

Sep 14, 2016 By Paul Curran

With Salesforce’s giant annual conference, Dreamforce, fast approaching in early October, now’s the time to brush up on their proprietary programming language, Apex. As a strongly typed, object-oriented programming language, Apex allows developers to execute flow and transaction control statements on the Force.com platform server while performing calls to the Force.com API.

Apex Coding Language [Infographic]


From Visually.


More about the Apex Language:

Apex is Salesforce’s proprietary programming language used to build applications to manage data and processes on the Force.com framework. Apex is the world’s first “on-demand programming language,” enabling thousands of Salesforce customers, partners, and Salesforce’s in-house developers to develop applications that add business logic to system events and Visualforce pages. For the 2,500+ applications living on the AppExchange, the thousands of organizations using their services, and the countless organizations developing in Apex code for internal facing applications, application security is a major concern. Apex applications face potential threats from cross site scripting (XSS), SOQL and SOSL injections, frame spoofing and more.

For organizations using Apex in their Force.com applications, application security needs to be a high priority as the data contained within these internal applications is often their most sensitive. This information can include client information, purchase and financial information, emails, and more which could lead to disastrous consequences if exploited. Additionally, applications coded with Apex may contain JavaScript which introduces its own set of security vulnerabilities. These potential threats include cross-site request forgery (CSRF) and client-server trust relationships, which further increase the need for organizations to secure their Apex code from the earliest stage in the software development life cycle (SDLC).

jumping 1

Is your Apex code secure? Read more about the threats facing Apex apps here.

The following two tabs change content below.

Paul Curran

Content Specialist at Checkmarx
With a background in mobile applications, Paul brings a passion for creativity reporting on application security trends, news and security issues facing developers, organizations and end users to Checkmarx's content.

Latest posts by Paul Curran (see all)

Stay Connected

Sign up today & never miss an update from the Checkmarx blog

Get a Checkmarx Free Demo Now

Interested in trying CxSAST on your own code? You can now use Checkmarx's solution to scan uncompiled / unbuilt source code in 18 coding and scripting languages and identify the vulnerable lines of code. CxSAST will even find the best-fix locations for you and suggest the best remediation techniques. Sign up for your FREE trial now.

Checkmarx is now offering you the opportunity to see how CxSAST identifies application-layer vulnerabilities in real-time. Our in-house security experts will run the scan and demonstrate how the solution's queries can be tweaked as per your specific needs and requirements. Fill in your details and we'll schedule a FREE live demo with you.