Sharing-and-Visibility-Designer Salesforce Exam Questions and Free Practice Test

Question 43

Which two are potential vulnerabilities in the following code snippet?
public class SOQLController { public String name { get { return name;} set {name=value;} } public PageReference query() { String qryString='SELECT Id FROM Contact WHERE '+ '(IsDeleted = false and Name like '%' + name + '%'}'; queryResult = Database.query(qryString); retunr null; } } Choose 2 answers

A. FLS check

B. SOQL Injection

C. Data Access Control

D. Arbitrary Redirects

Correct Answer:BC

Question 44

Which two reasons should the Architect consider regarding the use of Apex Sharing Reasons? Choose 2 answers

A. Ensuring the developer can more easily troubleshoot programmatic sharing.

B. Ensuring the Share record is not deleted upon ownership change.

C. Ensuring the Share record is deleted upon ownership change.

D. Ensuring there is additional criteria available for Criteria-Based Sharing.

Correct Answer:AB

Question 45

Universal Containers wants to create a way to store sensitive Invoice Data in Salesforce. A User who owns an Account should not see every Invoice, but only invoices that they or their subordinates own. Which two features should be considered during this solution implementation?
Choose 2 answers.

A. Deploy the Relationship between Accounts and the Invoices Object as Master-Detail.

B. Ensure that the Organization-Wide Default sharing for Invoices is set to Private.

C. Create a Workflow that populates the Invoice sharing object upon Insert.

D. Deploy the Relationship between Accounts and the Invoices Object as Lookup.

Correct Answer:AB

Question 46

User A at Universal Containers is in the default account team for User B. User B owns the ACME account and changed User A's team member access to the account. What is the impact of this change?

A. Changes affect the default Opportunity team.

B. Changes affect only the ACME Account

C. Changes affect the default Account team.

D. Changes affect all child ACME Accounts.

Correct Answer:B

Question 47

Universal Containers would like to create a custom team solution that can be used on a custom Loan object. The following requirements must be met:
The Loan custom object should be set to Private in the Org-Wide Defaults.
Any user added to the Custom Team object should have Read Only access to the corresponding Loan record. If the Custom Team record is marked as "Primary" then the corresponding user should have Read/Edit access to the corresponding Loan record.
Which two methods will allow the Architect to meet the requirements? Choose 2 answers.

A. Create a custom trigger on the Custom Team object that inserts or updates records in the Loan_share object.

B. Create a criteria-based sharing rule on the Loan object that will share the Loan record with the appropriate user in the Custom Team object.

C. Create Apex Sharing Reasons on the Loan object to identify the reason the Loan record was share.

D. Create an owner-based sharing rule on the Custom Team object that will share the Loan record to the owner of the Custom Team record.

Correct Answer:BD

Question 48

Universal Containers would like to restrict users' access to export reports What option supports this requirement?