What is Salesforce Workbench
Salesforce Workbench is one of the essential and powerful tools that help Salesforce admins and developers to interact with Salesforce.com organizations. By leveraging Salesforce Workbench, Salesforce admins and developers can access data quickly, perform data insertion, updates, deletion, and export. It also aids in performing SOQL Query, SOSL Searches, testing, deployment, and application troubleshooting.
Salesforce Workbench Login
- To access the Workbench, go to https://workbench.developerforce.com/login.php
- The next step is to choose your environment (production or sandbox)
- Following which you must agree to the terms of service and click Login with Salesforce
- On clicking the Login button, you’ll be redirected to the Salesforce login page, where you need to enter your Salesforce credentials to connect with the Workbench.
Salesforce Workbench supports standard username and password login, Session ID login, or OAuth 2.0 Remote access login.
Salesforce Workbench Features
- Data Management Capabilities in Workbench
- Workbench Data Security Features
1. Data Management Capabilities in Workbench
Edit Records – Workbench allows you to view & edit single records just by clicking on their ID in query or search results. And if you know the ID already or it came from outside the Workbench environment, you can directly go to the operation you need to perform on the Data menu & paste in the ID into the single record field.
Creating the Zip file – With Workbench, you can upload a Zip file to insert, update, upsert or delete binary files like Content, Documents, and Attachments. For using this feature, you need to prepare a Zip file containing binary files and a CSV file called request.txt.
Smart Lookup – When using Insert, Update, or Upsert, Smart Lookup allows you to provide foreign external IDs or standard ID lookup fields to automatically find the relevant Salesforce IDs through related objects.
Delete and Purge – Delete functionality moves records to your Organization’s recycle bin and can be undeleted if the object has an undeletable attribute. Purge on the other hand permanently deletes items in the Organization’s recycle bin. However, some types of objects are deleted immediately from your org when they are deleted. You need to make sure that the record has the undeletable attribute before deleting records. You can check this using the Describe function, which contains the Attributes folder.
Hard Delete Records from Salesforce Org – Workbench allows you to skip the Recycle Bin and permanently hard delete records from Salesforce Org. For this, you need to delete the records as usual, except check the checkbox labeled “Permanently hard delete records” in the wizard.
2. Workbench Data Security Features
Configuring CSRF protection in Workbench – CSRF or Cross-Site Request Forgery is done by hackers to trick the users into inserting or manipulating data on their behalf through a trusted website of the user. To safeguard your data against these attacks, CSRF protection is integrated into your Salesforce Workbench, which relies on a “secret” stored on your Salesforce Workbench environment. We strongly recommend that you change the default secret to something that can be confidentially protected. For this, you need to go into config/overrides.php file, find “CSRF SECURITY SETTINGS” section and then change the default “CHANGE ME” and then uncomment the line by removing double backslashes.
Additionally, you can enable Login CSRF Protection to add another layer of protection to your Salesforce Workbench instance. This lets you block programmatic logins to Workbench, which could also be used by hackers to attack.
Require end-to-end SSL – Salesforce Workbench uses HTTPS (SSL) by default to connect to Salesforce. However, it is your server configuration that determines the connection between your computer and Workbench environment. To enable Salesforce Workbench to enforce end-to-end SSL, add the line below to config/overrides.php file
Block or allow only certain orgs to use your Workbench Instance
Salesforce Workbench allows you to perform this through its Blacklist and Whitelist features. For this, you need to find the “ORG ID WHITELIST / BLACKLIST” section in your config/overrides.php file and follow the instructions in order to add or remove Orgs.
A quick glimpse of Workbench Settings
Customize Workbench and provide SOAP Headers to Force.com API – To Change default values on Settings Menu and to toggle the ones that can be overridden by end users, the Salesforce Workbench admins can access the config.php file from the Web server directly and make the adjustments.
Disable Security Warning, Requested time or show SOAP Messages – To make global changes to these settings, you need to locate check SSL, DisplayRequestTime, debug properties in config.php file to make the necessary changes.
Check out the Salesforce Workbench Settings here
Talk to Us
DemandBlue is a Salesforce Certified Partner with longstanding years of experience in offering custom Salesforce solutions through our On-Demand Service model. And with our experience of having worked on diverse Salesforce projects, we’ve tremendously benefitted from Salesforce Workbench. Hence, we strongly suggest the Salesforce admins and developers take full advantage of this tool to manage data and metadata, review objects, run Apex and do plenty more.
To learn more about leveraging our custom Salesforce solutions and to maximize your business, talk to our experts!
Which other Salesforce Workbench techniques do you think would be most useful for the Admins and Developers? Please feel free to share your thoughts in the comments section below.