Add Metadata API support for Deterministic PLatform Encryption - Ideas - Salesforce Trailblazer Community

All Ideas

Idea Details

Post an Idea
60  Points
Open
Idea has been posted. Give it an upvote or downvote.

Add Metadata API support for Deterministic PLatform Encryption

Encryption

The V42 Metadata API provides no support for identifying a field as encrypted with Deterministic Platform Encryption. All that is available is a simple field "encrypted" that is either true or false.  Hence, distinguishing between probabilistic encryption and deterministic encryption is impossible. CI/CD scenarios break as the source org @ deterministic encryption deploys to target org as probabilistic encryption

Even if you manually set deterministic encryption in the target org, if you change some other aspect of metadata for a deterministically-encrypted field at some later point in time, and you deploy those changes via a CI/CD process, you will smash the deterministic encryption and reset back to (at best) probabilistic encryption. You may discover that encryption in the target org is turned off because the SFDC preconditions within your Apex/configuration for supporting deterministic encryption are looser than for supporting probabilistic encryption and, when the deployment is done, SFDC may be forced to automatically disable encryption.

Merge Idea · Flag

  • Upvotes
  • Downvotes

Ideas

Apps

from AppExchange

Questions

Help us to keep IdeaExchange clean by pointing out overlapping ideas. We'll investigate your suggestion and merge the ideas if it makes sense.



 

 

Thanks for your merge suggestion. We will review it shortly and merge the ideas if applicable.

Salesforce takes abuse situations very seriously. Examples of abuse include but are not limited to posting of offensive language or fraudulent statements. To help us process your request as quickly as possible, please fill out the form below describing the situation. For privacy and security reasons, the final outcome of an abuse case may not be revealed to the person who reported it.


 

Thank you for your feedback. We take abuse seriously and will investigate this issue and take appropriate action.