force-dot-com-esapi - OWASP ESAPI implementation for Force.com

Project Information

Project feeds
Code license
New BSD License
Labels
Salesforce.com, Force.com, Security, OWASP, ESAPI, Apex, Salesforce

Members

apex.es...@gmail.com

1 contributor

Links

External links
Online Documentation

ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk applications. The ESAPI libraries are designed to make it easier for programmers to retrofit security into existing applications or build a solid foundation for new development.

The Force.com implementation of the ESAPI library is designed and customized for the security needs of the Force.com platform.

The modules currently implemented are:

Input Validation
Output Encoding
Access Control for Force.com objects (CRUD/FLS and Sharing)

As an open source project, we welcome any comments, contributions, and any other help in the development and maintenance of this project.

Contact Us:
For enhancement requests, bugs, and any other issue, please file an issue.
For other comments please email us at securecloud .at. salesforce.com or schedule office hours.