37 Improvements in Summer ’24 Release Notes which catched my attention

Salesforce •   0
Summer '24 Release Notes Logo

The Summer ’24 release is here, I’m in a train to Berlin = great time to read the release notes and see what useful is there and what mandatory changes we need to implement. I’m offline so cannot test things out, but let’s see what I need to test and what is just good to know about.

  1. Verify default no-reply address – I hate these no-reply addresses but you have one in SF and from Winter it has to be verified, otherwise SF will not send any emails from the instance;
  2. the „Create a new record“ functionality in lookup fields now use dynamic forms (if set up) instead of page layouts;
  3. new domain for setup – if you have some restrictions on which sites you can access on the internet, add salesforce-setup.com into the list;
  4. with the cookies blocking on the horizont there is a new setting in My Domain to use first-party cookies;
  5. in-app reminders for SF admins if MFA is switched off – well, why not;
  6. the SLDS (Salesforce Lightning Design System) has been updated for bigger contrast in focus state (when button is selected) and you cannot turn it off;
  7. Search Manager, which is finally generally available, looks like a great thing – you can set which objects should be always searched (not just those which the user is typically using), looks like you can limit in which fields in will search (that would be interesting if the user can access it but it won’t search there) and much more. Surprisingly you can set it up on a per profile basis, where is the move to permission sets?
  8. looks like the new Analytics app, which has been introduce a while back, will allow you to create a collection of reports and dashboards and then insert them as a group to Lightning page;
  9. better reporting on Data Cloud records;
  10. if you have the edition with Generative AI you can create a summary and row-level formulas with simple language and it’ll generate the formula for you;
  11. User Access Summary looks like a great page, where you see what specific user can do in  a glance. Ditto for where public group is used. Or what is enabled in Permission Set or Permission Set Group without clicking through all those screens;
User Access Summary
  1. User Access Policies will simplify the creation of new users (or change of their position) as you can specify the rules (up to 200) based on which they will get assigned permission sets, package licenses or public groups. One task less for the admin (I hope);
  2. blank spaces on Dynamic Forms plus conditional visibility of tabs (finally!);
  3. looks like everyone will get Einstein to explain and fix syntax errors when creating formulas (in fields and validation rules);
  4. Apex Cursors (in beta) looks like something which can make developers excited when working with large data volumes;
  5. REST API, external Id and ability to only update records (previously it was always upsert);
  6. users are automatically freezed in a sandbox, if they didn’t logged in within 60 days of its creation – I mean they still have .invalid email anyway, so cannot get in unless you update it, right?
  7. flow and checking for existing record before creating a new one – I would expect that I can just trust the duplication and matching rules but it looks like you need to specify it in the flow;
  8. keep important appointments scheduled in Field Service – previously you could manually pin them, now you can specify criteria (beta);
  9. add buffer for time travel estimates (beta), surprisingly it is a single number only, not percentage;
  10. link assets to multiple accounts and contacts – one of the popular scenario during CTA, curious to see it in real life;
  11. NFC support in Field Service mobile app, ability to create an LWC which will capture the layout of space (on iOS only using the lidar) or measuring things;
  12. check-in/check-out times via the geolocation;
  13. create quotes directly from the Field Service mobile app, no need for the standard Salesforce app for that;
  14. Buyer Relationship Map which will visualize the org structure, just enable it. And it can help you find detractor on your opportunities, which are blocking them;
  15. Autocreation of contacts via Einstein Activity Capture with their contact details prefilled from their email signature. And you can specify when it should be create – immediately or after specific number of interactions;
  16. personal labels – not sure I get the extra benefits compared to Topics plus they look completely different and takes more screen space. But hey, users can specify them only for them and not to mix with others;
  17. Conversation Insights looks super interesting to monitor when is in the communication on higher level and aggregate it;
Conversation Insights
  1. Sales Planning looks like a feature which will allow you to easily integrate data from additional sources (paid);
  2. disabled fields in screen flows, when you just need to show the value;
  3. less „Next“ in flows as you can have actions on screen which will update the screen with additional details;
  4. when debugging scheduled flows you can set on which record it will run!
  5. only active subflows will be run, not the latest version (that was a big surprise time to time);
  6. Automation Lightning App – something I need to try as it should show flows in a better way. Plus it will allow you to organize them based on category and subcategory, naming was probably not enough;
  7. limit who receives notification about certificate expiration – it isn’t connected to other permissions but has a separated permission. Yes, I do have one client, where it spams the whole company once a year and sadly they had to have this permission;
  8. Einstein Studio Insights (paid) which will help service agents predict how quickly they will be able to save case;
  9. Threading tokens were always used only for cases but now you can use them in Apex Email Services for any object that supports activity tracking;

Not bad. Not as many as I hoped, but still some interesting things (in a bold) which I will communicate to my customers.

What is your top new feature? And did you check what others found?

Napiš komentář, díky!

Securing Salesforce Digital Experiences, Matt Meyers

Salesforce •   0
Securing Salesforce Digital Experiences, Matt Meyers

Surprising how a book can scare me. As a Salesforce CTA I obviously know everything about the platform and its security, still Matt was able to scare me in a few first pages.

… presenting at local Salesforce Dreamin’ events, informing people about my story and showing them how a hacker performed this attack. During each session, I polled the audience to better understand their awareness of Salesforce security in general. To my surprise, I found most people were overconfident about the security of their Salesforce implementations, and only a select few even knew about this type of attack.


When a few releases back Salesforce started to limit the guest user capabilities I wasn’t happy, as probably a lot of people. We probably overused it on a few projects as a way to give unauthenticated users an extra set of functionality, starting it with ability to add and later update records in SF or just query some extra records, where the full authentication wasn’t really considered as a must and worth the money.

Blocking API access, closely monitoring which objects we giving the access to and we felt save. Untill I read this book.

Additionally, there is an option on the user profile called “API Enabled” that, when disabled, blocks all external access to these APIs. This is what we did in our case. We had “API Enabled” turned off, so as far as we knew, no one could access the data via any APIs.

Salesforce Lightning Experience, which is the user interface that powered our Salesforce Digital Experience portal, used a significant number of microservice application programming interfaces, or APIs,  to display the data and user interface layouts. Salesforce did not document these APIs, as they were not designed for use directly by Salesforce’s customers.

Undocumented API, which works even when the API access is disabled? AuraEnabled classes, which means that anyone can freely call them? Grouping methods in a classes in a functional way instead of which persona should be able to use them – maybe that’s another reason why Salesforce restricted guest user to access classes unless specifically given permission.

The book is short but intense, the intro chapter lying out the story of data leak is scary, the solution looks surprisingly short and easy even though I understand it had to be a long and intense week to fix things up. And a tons of bonuses including video how you can test your site or description of all relevant settings you might want to consider when setting up the Experience Cloud.

Overall recommended reading which you can buy from Matt directly. And the related article at the Cactusforce is great read as well.

Napiš komentář, díky!

What do you know about security and SF features?

Salesforce •   0

Another user group meeting done, this time AutoRABIT hosted us and they were generous! Chlebicky, wine, beer, juices, sweets, plates full of food.

Two speakers, which has interesting history as originaly we promoted the meeting as everything about DevOps, because what else to expect from Andrew Davis, our first confirmed speaker. Just later we found out he will be speaking about shared responsibility to security.

What Alča found out about the topic she pushed back with – you know what, last time it was MuleSoft, it is probably getting to heavy for the regular user/admin, what about something easier, specifically about the presentation you had at PolishDreamin. She was right, so I became the second speakers.

Great attendance at the end we had exactly 60 registered people and around 40 of them made it to the event, improving our KPIs for attendence rate. People I never saw or saw a long time ago, was great to catch up even though I again didn’t have time to speak with all I wanted to. Never mind, next time.

Room full of attendees

My presentation went well, longer than anticipated, the feedback I got at the end was – actually it wasn’t about features you have in Salesforce and can use but rather why not to use them. Not the intended outcome, but they were right, I was sometimes probably too negative.

Andrew spoke about the security and how we have a feeling that Salesforce will handle it because it is SaaS, where the provider is responsible. But at the end Salesforce is rather PaaS, platform on which you can build things and you will find out that more responsibility is on your side. Combined with the career changes and how hairddresser can now be Salesforce consultant it makes everything even more tricky.

Shared Responsibility

We spoke about Security Posture Management and plenty of modules related to security, which are available on Trailhead. Also about his new book about flow engineering, which does NOT stand for Salesforce flow.

All in all it was such a great evening and we definitely missed you. Check the presentations and a few photos and hope to see you next time – aiming with BBQ for mid June.

Napiš komentář, díky!

Tableau breakfast

Salesforce •   0

Organizing events should be a piece of cake for me, after all those years of user groups, CzechDreamins, fun runs and much more. Well, organizing this customers facing breakfast was another level to achieve, but fantastic experience overall.

At first we aimed on January, which feels strange with knowing the end of fiscal for Salesforce. Naturally we quickly reschedule to March, but with all the invites and approvals it was pretty to close after the end of fiscal as well, so one more slip and we finished in April, the week after Eastern.

Understand the data is key!

Three speakers at the end, almost 50 registered attendees, about 50 % of them – as expected – made it to the event, and almost three hours later we can claim it a success. As we all agreed, one event won’t make it a success, we should repeat with other topic and again and again and eventually the market would be mature enough to get the message. That’s why we tentatively scheduled our next Actum’s breakfast to the beginning of June and the topic should be Slack the way you didn’t know it.

Michal Mravinac and the pyramid of decisions

Anyway, this breakfast was about Tableau, about the power of AI which came with the Tableau Pulse, about visualisation as it is half of the success, about the practical findings during implementation at P3 Logistic Parks. It was about comparing but also looking back to the history as Michal mentioned during his „you are 60 % below your numbers from last year“ which did hit him quite hard before he realized that last year there was one big deal.

Petr Korinek and how is Tableau helping them

We spoke about the comparison between Salesforce operational reporting and Tableau’s drill down possibilities, about maps, dynamic filters and much more.

Would that be something of interest for you? Let me know and happy to introduce you to our great data team.

Napiš komentář, díky!

CzechDreamin is around the corner – do you have your ticket?

Salesforce •   0

The situation begin to be hectic as we are getting closer to the event. We sorted out the speakers (check the whole agenda on our website), still playing around whom will be the keynote speaker (finger crossed), looking for additional sponsors to help us cover the costs (can you be one of them?) but mainly looking for attendees at the moment, which means YOU!

A few things we did for the first time ever, the promotional video below is one of them. We had fun, so hopefully you’ll appreciate it as well.

There will be some relaxing activities as well, obviously coffee and tea. Especially the tea stand was a success every year so we will repeat it this time as well.

Speaking about the agenda I have no clue what to see myself again. This we were able to squeze in some „softer“ presentations – 7 deadly sins of project management, powerful start to any project, secret sause for success, equality, Figma training or how to overcome disengagement, disorientation, and distraction.

We didn’t skip the heavier topics – Data Cloud data modeling (sounds almost weird sentence with so many „data“ in), intricacies of data access, data security with Event monitoring, publicly available flows and why screen flows are the hero of Salesforce.

Admins will find somethings as well – basics of SOQL, how to hire the right person (or rather what is usually behind the scene), how to measure adoption (and improve it), how is CPQ different to standard Sales Cloud and when you need it, backups and why they aren’t the same, AI or usability.

We also have plenty for marketers. Tips for SSJS development, great browser extensions, AMPScript (a session from Salesforce Instructor!), cookies, Pardot aka Account Engagement.

All in all, there is something for everyone. Obviously meeting people from all over the world is already included, you just need to find the time during the day to do so. And something optional is getting ready for the Saturday as well, so when planning your trip don’t leave too soon.

Get your tickets while they last and see you at Prague! May 17th is the date this year.

Napiš komentář, díky!