What version of Skuid are you using? (See this announcement - Spring 20 also made changes that affect Skuid permission sets in versions before 12.2.9 and 11.2.28)
You said that the site Guest User has a license, will you double check that they are assigned the Skuid Page Viewer Permission set?
Hey thank you very much, Salesforce finally reached out last night and told me exactly those steps for disabling the modify all, it was sharing rules the issue that was not letting me uncheck that setting!
And thank you for Sharing rule of pages.
You are very knowledgable and thank you for sharing that knowledge!
Checklist for using Skuid’s file upload component in communities or sites where guest user secure record access is activated:
Does your version of Skuid include updated version of the file upload component? To use the file upload component with guest user secure record access activated, you need to be on 11.2.30 or later or 12.2.14 or later. Remember to always test new versions in a Sandbox environment before installing them in production; links available at skuid.com/releases.
Does the guest user have access to the record they need? Use sharing rules to grant read-only access to the Salesforce object & record, e.g. share all records where Created By Id is the site guest user’s Id.
Make sure the site has access to the UploadImage Visualforce page. If you are using the skuid:page component in your Visualforce or Lightning page, you must include the UploadImage Visualforce page in the list of pages your site has access to.
@Dave not sure if you have this all figured out in your org but I am still a bit confused and SalesForce keeps giving me different answers every day whether this disable sharing rules and site guest users can still edit. With that said, I wanted to share couple of links with you that SF shared with me and ask if you get any new info if you wouldn’t mind sharing it.
@tami I tried in sandbox with your suggestion of using modify all and it works fine.
But I had a case open with salesforce and cannot get a clear answer whether we will be able to give modify all in summer 20… So far you are the only one I’ve heard this from and so far it works.
I’ve been watching the community thread you mentionned above and from I see there: Guest cannot be granted ‘View All Data’ or ‘Modify All Data’ access on objects” security policy will be enforced in Summer’20 release across Salesforce sites
Salesforce has given our org until June 1st (or summer 20 release) to find a solution
The other solution would be to do it with Apex Code, but my Dev is not sure on how to write this apex code, as it’s skuid making the ‘changes’ to SF and skuid being a managed package cannot edit/view the classes he needs
Overall we are all just as confused if not more lol
@Dave thanks for making me feel like I am not going nuts with this.
Thanks for sharing that article, I have seen it before but we are not lightening enabled so it won’t work for us.
To add more complexity to this issue I talked to a SF Dev today that said that what we currently have in place for edit access won’t work after summer release (as you know) but an Apex class/trigger won’t give edit access to guest users after the summer release either.
So my question was how do I give them edit access, she said you won’t be able to after the summer release.
I asked if we will be able to disable “Secure Guest Access” flag after Summer release so that our guest users can have edit access. Her reply was they don’t know yet.
We have not moved to lightning yet either, but from what I Understood from my Dev is that:
Guest User will do the changes as usual on the public-facing skuid page, and then the apex will basically do the following:
1- ‘Capture all the changes of that session’ 2- Open a session under a SF user for authentication 3- this user will be the one ‘Updating record’ with all the changes guest user made
Dev told me it should be straightforward if i was using a VF page let’s say instead of Skuid
The issue with Skuid, is that he does not know how Skuid captures and sends the changes to SF, and not sure how he would be able to do step 1. As skuid is a managed package he cannot dig deeper or change any skuid classes.
@anna is there some documentation/ideas on how we would be able to do step 1? (capture all changes made on skuid page, and use apex to update record)
Hopefully that helps, especially if Skuid can help us with that step 1
We have not moved to lightning yet either, but from what I Understood from my Dev is that:
Guest User will do the changes as usual on the public-facing skuid page, and then the apex will basically do the following:
1- ‘Capture all the changes of that session’ 2- Open a session under a SF user for authentication 3- this user will be the one ‘Updating record’ with all the changes guest user made
Dev told me it should be straightforward if i was using a VF page let’s say instead of Skuid
The issue with Skuid, is that he does not know how Skuid captures and sends the changes to SF, and not sure how he would be able to do step 1. As skuid is a managed package he cannot dig deeper or change any skuid classes.
@anna is there some documentation/ideas on how we would be able to do step 1? (capture all changes made on skuid page, and use apex to update record)
Hopefully that helps, especially if Skuid can help us with that step 1
HELP. HELP. HELP. Did not pay attention to this issue until today when my site http://my.dorothy.com is receiving
“You’ve been INKED! (Something went wrong)
We were unable to find a Skuid Page named M1_Person. The Page is either inaccessible or does not exist. If you believe you should be able to view this Skuid Page, ask your System Administrator to check the Sharing Model for the Page object to ensure that you have access to this Skuid Page.”
From Setup, enter Sharing Settings in the Quick Find box.
Select Sharing Settings.
“Sharing settings” does not exist.
I went to renew my license this morning and happen to have a member call and say there was an issue.
Ben Marshall sent the following
Hi Bill,
Happy to help, but I am just outside of my depth on the technical aspects.
You might be able to see if Tami or Dave can answer your questions if you reply to that community thread. It seems like Tami worked on this with SF directly.
You have two options to get your external page working for your guest users. You either create a sharing rule for the Skuid page or disable “Secure guest user record access”
To add Skuid page to sharing rules
From Setup, enter "Sharing Settings" in the Quick Find box.
Select Sharing Settings. (Navigate to Administer-->Security Controls--> Sharing Settings)
Find the "Page Sharing Rules" section
Click [New]
Create a Label and Rule Name
Rule Type: "Guest user access, based on criteria"
Set up the criteria: Field: Page Name ; Operator: equals; Value "The name of the skuid page"
Share with: "Guest User"
To turn off “Secure guest user record access”
From Setup, enter "Sharing Settings" in the Quick Find box.
Select Sharing Settings. (Navigate to Administer-->Security Controls--> Sharing Settings)
Remove all sharing rules that are set up for each object.
Then Click "Edit" next to Organization-Wide Defaults
I had a similar issue as Bill Fox above. But not sure how or why a guest user is trying to access a skuid page. We do not allow any functionality to guest user. All they see is a login page. Any insights on why a skuid page would be exposed before logging in?
I figured out the issue. Salesforce apparently is checking if the Community Home page is accessible by the guest user even before logging in. In our case the Home Page is a visualforce page calling a skuid page hence the access was needed.