As part of our continued efforts to improve security we’ve made some changes to the Salesforce package to eliminate the access needed by users to certain sensitive fields.
- The Litmos Login Access permission set no longer includes access to the API Key field on the Configuration record
- The Dashboard Visualforce and Lightning pages used for SSO no longer requires access to the API key field
We recommend immediately upgrading to the new version of the package to receive such changes as it will eliminate the risk of users manipulating requests to access the API key.
For more information, click here.