Feeds

Beyond CRM

Salesforce.com mashes it up on the AppExchange

Securing Web Applications Made Simple and Scalable

If Web 2.0 mashups are the future of the internet, what will the enterprise application look like? The folk at Salesforce.com think they have the answer, in the shape of the winter 06 release of their web application platform – and the introduction of a web service and application directory, the AppExchange.

Salesforce.com has come a long way since it began life as a web-hosted CRM package. Initially giving small and medium sized businesses access to the capabilities of tools like Siebel, but without the cost, it quickly became an enterprise tool. Now quick to customise, and able to link into public web services with a web services API that lets you build it into your own applications, Salesforce.com can be used for more than just CRM.

With its winter release you can build three types of application – pure Salesforce.com applications; composite web applications that mix site code with your own and third-party applications; and client applications that use the Salesforce.com service as a backend.

It's often hard to develop applications running on hosted services. Capacity varies from test to development systems, and test code is often forced to run with limited permissions and a subset of the working data. Salesforce.com now has a developer sandbox, where developers can work with a copy of their existing applications – and even a copy of the corporate data - without affecting live code. Staged releases allow services to be updated in a controlled way, and separate URLs allow new applications to be tested before release. Setting up a sandbox is easy enough. Log on, and set up the site with a couple of mouse clicks. Then just reply to the activation emails.

You can use the sandbox to build your own mashups with services from the AppExchange directory. You can also take advantage of the built-in JavaScript access to web services to quickly add code to include third-party applications. If you're working on applications that need to access internal services, you can work with containers that embed existing code (whether it's ASP, JSP, Cold Fusion or just plain CGI) and even whole sites. As the Salesforce.com libraries handle the containers, you can preserve session IDs and work inside its security model, even though you're using external data and services.

Salesforce.com takes a metadata-driven approach to application development, a familiar approach if you've worked with tools like Access or FileMaker. Tim Knight, who is Salesforce.com's EMEA technical director for AppExchange, points out that such kinds of application are ideal for Salesforce.com - not only are they often critical parts of a business process, they're hard to manage and keep updated. You could, for example, mashup Google Maps with your contacts database.

Screenshot showing a mashup of Google Maps and a contacts database

You start building applications by adding objects to a tab. Each tab is a component in the overall application, and can pass information to and from other tabs. A tab can be a container in its own right, with callbacks to handle display information, giving tabs a common look and feel. Ajax components can work with back-end services without reloading pages.

Once you've completed an application, and want to share it with customers, or even sell it to the rest of the Salesforce.com user community, a few clicks packages up your code and delivers it to the AppExchange directory. You can version your code, add it to a public directory, or only expose it to people who know the auto-generated URL. System integrators can use this approach to deliver quick-starts to customers, getting them up and running with an industry vertical application, before customising it in the Salesforce.com sandbox.

This certainly isn't application development as we know it, Jim. But it works. Metadata-driven development isn't new, but Salesforce.com opens it to a wider audience, and a range of APIs let you make it part of your business process - working just the way you want it to.®

Bridging the IT gap between rising business demands and ageing tools

More from The Register

next story
NO MORE ALL CAPS and other pleasures of Visual Studio 14
Unpicking a packed preview that breaks down ASP.NET
DARPA-derived secure microkernel goes open source tomorrow
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Cheer up, Nokia fans. It can start making mobes again in 18 months
The real winner of the Nokia sale is *drumroll* ... Nokia
Put down that Oracle database patch: It could cost $23,000 per CPU
On-by-default INMEMORY tech a boon for developers ... as long as they can afford it
Google shows off new Chrome OS look
Athena springs full-grown from Chromium project's head
Apple: We'll unleash OS X Yosemite beta on the MASSES on 24 July
Starting today, regular fanbois will be guinea pigs, it tells Reg
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.