US English (US)
ES Spanish

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Please fill out the contact form below and we will reply as soon as possible.

  • Log in
English (US)
US English (US)
ES Spanish
  • Home
  • About Us
  • Who is RIO Education?

RIO Education AppExchange Listing

The Appexchange listing process ensures our customers are delivered a scalable, secure solution.

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Please fill out the contact form below and we will reply as soon as possible.

  • RIO Certification
    RIO Certification Program RIO Academy RIO Challenge RIO Recipe Training
  • Releases
    Release Notes
  • Help & Support
    Install RIO Education RIO Insights RIO Recipe Support
  • About Us
    Who is RIO Education? Start Your RIO Journey Housekeeping
  • Experience RIO in action
+ More

Table of Contents

Design and Development Automated Scanning Tool Security Review AppExchange New Release

RIO Education is a native Salesforce Student Information System (SIS, SMS, SRS) listed on the AppExchange. See it here.

To be listed on the AppExchange, RIO Education has to pass the Salesforce's security review process. The security review ensures that RIO Education is ready to run on the world's leading platform, Salesforce.

This article outlines the steps that our RIO Education development team steps through to ensure we can be  publicly listed as a solution in the AppExchange.

Design and Development

The following guides are used to develop, test and list RIO Education on the Salesforce Appexchange:

  • Security Guidelines for Apex and VisualForce Development.
  • Apex & VisualForce Security Tips.
  • Lightning Aura Components Developer Guide.
  • Secure Coding Guide.
  • B2C Commerce Security Best Practices for Developers.
  • AppExchange Security Requirement Checklist (requires a Salesforce login to view).  


Throughout the development lifecycle, an automated scanning tool is used to test/check the RIO codeto ensure it complies with Salesforce quality and security standards. 

Automated Scanning Tool

Source Code Scanner, which is also referred to as the Checkmarx scanner, is used to scan and detect for any possible quality and security issues in the solution. 

The scanner ensures:

  • Quality profile - detecting common Apex coding and design issues e.g. DML statements inside loops, SOQL/SOSL inside loops etc. (please read more in the link below). 
  • Security profile - detecting security vulnerabilities e.g. Cross Site Scripting (reflected, stored, and DOM based), SOQL/SOSL Injection etc. (please read more in the link below).

For more information on the scanner, please click here.

Security Review

Only when the scanned results are clean, we proceeded to the next stage; the AppExchange security review.

In order to continue with the security review, the RIO Education solution is packaged as a managed package and installed into a Salesforce test environment. 

The test environment is then handed over to the Salesforce Security Review team for reviewing/checking/testing.

Any security vulnerabilities reported are attended/fixed and resubmitted for follow-up review. This process continues until there were no further actions required and the solution has fully passed the review/test.

For more information, please click here.

AppExchange

When the solution passed the security review, only then it could be publicly listed in the AppExchange.

New Release

Any new releases have and will go through the same process as above.




is rio education listed on the appexchange rio education salesforce/appexchange security review

Was this article helpful?

Yes
No
Give feedback about this article

Related Articles

  • RIO Education Features Detail
  • Faculty using Lightning Platform Starter & Cases
RIO Education

RIO Education, a WDCi Company. This information is proprietary, confidential and protected by copyright ©2024.

CONTACT

Get in touch

  • Privacy
  • Terms of service

Knowledge Base Software powered by Helpjuice

Definition by Author

0
0
Expand