You are here:
Omnistudio Data Mapper and Integration Procedure Security Settings (Managed Package)
For the managed package runtime, these settings affect Data Mapper and Integration Procedure security.
This information is for Omnistudio for Managed Packages. For Omnistudio on standard runtime, see Omnistudio Help.
Setting |
Description |
Data Type |
Default Value |
|---|---|---|---|
Specifies the default value for the Required Permission setting, which determines which users can run Data Mappers and Integration Procedures. The Required Permission setting, which you can optionally specify when creating a Data Mapper or Integration Procedure, overrides this setting. If this setting is absent or blank, all users can run any Data Mappers or Integration Procedures that don't have Required Permission values. The syntax for this setting matches the Required Permission syntax. Specify a comma-separated list of custom permission names. For this setting to work in Omnistudio releases before Spring '22 and in all Omnistudio for Managed Packages releases, the VlocityRequiredPermissionCheck class must be implemented. |
String |
(none) |
|
CheckCachedMetadataRecordSecurity |
By default, cached metadata is not secured when Salesforce Sharing Settings or Sharing Sets are used to control access. This setting is disabled by default. If set to true, this setting performs a record-level security check for cached metadata. This check lessens the performance benefit of metadata caching slightly. This setting isn't needed if you use Custom Permissions to secure access. |
True or False |
False |
| ObjectAccessCheck | By default, users can create or update objects in their org through a Data Mapper Load, even if they haven't been granted the create and update permissions for that specific object. To prevent this, set the value of this setting to true. This setting enforces an internal check on the user's object-level permissions and prevents them from creating or updating a record through a Data Mapper Load if they don't have explicit access to an object. | String | False |
EnforceDMFLSAndDataEncryption |
To automatically enforce field-level security for all Data Mappers, enable EnforceDMFLSAndDataEncryption in the Omni Interaction Configuration. See Security for Omnistudio Data Mappers and Integration Procedures. |
True or False |
(none) |
AdvancedOmnistudioAccessCheck |
Validates object-level access, field-level security, and Apex class permissions for all users, including guest, authenticated, and non-authenticated users, across Omnistudio components. See Advanced Security Checks for Omnistudio for Managed Packages. |
True or False |
|
ApexClassCheck |
Makes sure that users have explicit Apex class access for any remote actions called from Omniscripts or Flexcards. See Add an Apex Class Permissions Checker. |
True or False |
|
ApexClassCheckForIP |
In Vlocity Industries managed package orgs, Apex class validation during direct Integration Procedure execution is enforced through the ApexClassCheckForIP flag, as this scenario is not covered by the ApexClassCheck flag alone. This behaviour applies to Insurance (INS), Communications, Media, and Energy (CME), and Financial Services Cloud – Insurance (FSC-INS). See Advanced Apex Class Check for Integration Procedures in Omnistudio for Managed Packages. |
True or False |
|
EnableQueryWithFLS |
Enforces FLS for all Salesforce Object Search Language (SOSL) and Salesforce Object Query Language (SOQL) queries within Flexcards and Data Mappers, ensuring data visibility respects user permissions. See Set Up a Data Source on a Flexcard. |
True or False |
