Salesforce Certified Heroku Architecture Designer — Question 7

A web application on Heroku wants to surface Salesforce data. All users of the web application will:
1) Authenticate using SSO with Salesforce.
2) Have user records in Salesforce.
What architecture should be recommended in order to maintain the Salesforce security model already in place?

Answer options

• A. Use Heroku Connect to sync the Salesforce data and Salesforce security model to Heroku Postgres.
• B. Have the application query Salesforce data and the security model directly using a cached admin credential.
• C. Use Heroku Connect, with a per-user authentication model, to sync the Salesforce data to Heroku Postgres.
• D. Have the application query Salesforce data directly through the Salesforce APIs as the running user.

Correct answer: A

Explanation

The correct answer is A because using Heroku Connect allows for the synchronization of Salesforce data while preserving the existing Salesforce security model. Option B is incorrect as using cached admin credentials bypasses individual user security controls. Option C, while it mentions a per-user model, does not directly address syncing the security model to Postgres. Option D also fails to maintain the Salesforce security model properly as it directly queries the APIs without the necessary synchronization.