Does anyone know of any helpful resources for securing an external Suitelet?
b
battk
04/29/2022, 9:05 PM
depends on what kind of security you are looking for
battk
04/29/2022, 9:05 PM
its not very hard to implement basic authentication
battk
04/29/2022, 9:06 PM
or at least something that is partially basic authentication, you would have problems implementing something that actually follows the spec and returns the proper challenge/response
e
Eric B
04/29/2022, 9:55 PM
you can also limit access by validating the ip address for the inbound request before any code gets executed and require an "api key" of sorts that can get validated by the suitelet code.