Skip to content

Site Setup and Access Settings

Using the JustOn Self-Service Extension you set up a public web application based on Force.com Sites. This section describes how to set up the site and the required security settings.

Your business may require different feature scopes:

  • Self service without payment provider integration,
  • Complete self service, including payment provider integration,
  • Payment provider integration only.

Depending on the intended feature scope, the setup steps to take or their complexity may differ. This documentation indicates the scope-related specifics when applicable.

Info

Contact the JustOn support team to have the JustOn Self-Service Extension installed in your org.

Usually, the extension is installed using the security option Install for Admins Only. Depending on your business, this may require configuring additional user and object permissions after installation. For details, see Installing Packages in the Salesforce Help.

Site Setup

The extension is designed to use a Force.com site exclusively. JustOn recommends not to use it together with other Visualforce pages. You can reuse an existing Force.com site or create a new one.

Creating Site

Irrespective of the intended feature scope, you need a dedicated site.

  1. In Setup, open the Sites page.
    Type Sites in the Quick Find box, or navigate to User Interface > Sites and Domains > Sites.
  2. If necessary, register a domain name.
  3. Click New.
  4. Apply the following settings, then click Save to complete the site creation.
Field Value Notes
Site Label Self Service
Site Name Self_Service
Active
Active Site Home Page Login
Site Template empty
URL Rewriter Class URLRewriter Required for the proper functioning of the payment page.

For the proper functioning of the payment page, you must define the new site's URL as the Base URL.

  1. Copy your new site's URL.
  2. In Setup, open Custom Settings.
    In Salesforce Lightning, navigate to Custom Code > Custom Settings.
    In Salesforce Classic, navigate to Develop > Custom Settings.
  3. Click Manage in the row of Global Settings.
  4. Click Edit in the Default row.
  5. Paste the copied URL into the field Base URL.
    Make sure to end the Base URL entry with a trailing slash /.
  6. Click Save.

Assigning Pages

You must add a number of Visualforce pages to the new site.

  1. Open the Site Details of your site.
    In the Sites list, click the label of the site to open its details.
  2. In the Site Visualforce Pages section, click Edit.
    alt text
    Modifying Visualforce page assignments
  3. Remove the following pages.
    • ForgotPassword
    • ForgotPasswordConfirm
    • SiteLogin
    • SiteRegister
    • SiteRegisterConfirm
  4. Add the following pages.

    Page Self Service Payment Integration
    ONB2.InvoicePDF
    ONBSE1.AmazonLoginHandler
    ONBSE1.GoogleLoginHandler
    ONBSE1.Invoices
    ONBSE1.PaypalLoginHandler
    ONBSE1.Products
    ONBSE1.Profile
    ONBSE1.Subscriptions
    ONBSE1.Payment
    ONBSE1.PaypalBuyerReturn
    ONBSE1.PaypalIPN
    ONBSE1.CyberSourceBuyerReturn
    ONBSE1.CyberSourceNotification
  5. Leave the following default pages enabled.

    • BandwidthExceeded
    • Exception
    • FileNotFound
    • InMaintenance
    • Unauthorized
  6. Click Save.

Public Access Settings

The extension needs access to a number of standard objects and custom objects in order to work correctly. To this end, you must allow/restrict access both on object and field level.

Note

Make sure to grant the access rights as restrictive as possible to avoid inadvertent information disclosure or modification.

Configuring General Object Permissions

  1. Open the Site Details of your site.
    In the Sites list, click the label of the site to open its details.
  2. Click Public Access Settings to open the site profile.
  3. Click Edit.
  4. Apply the following object permission settings, then click Save.

Standard Object Permissions

Object Self Service Payment Integration Permissions Notes
Account Read
Create
For the payment integration, Read access is sufficient.
Contact Read
Create
Price Book Read Required when using master products.
Price Book Entry Read Required when using master products.
Product Read Required when using master products.

Custom Object Permissions

Object Self Service Payment Integration Permissions
Balance Read
Create
Edit
Invoice Read
Invoice Line Item Read
Item Read
Create
Number Range Read
Create
Edit
Payment Entry Read
Session Read
Create
Edit
Delete
View All
Modify All
Style Read
Subscription Read
Create
Template Read
Trigger Helper Read
Create
Edit
Delete
View All
Modify All

Note

All other objects must not be selected.

Configuring Field-Level Security

  1. Open the Site Details of your site.
    In the Sites list, click the label of the site to open its details.
  2. Click Public Access Settings to open the site profile.
  3. In the Field-Level Security section, click View next to the object you want to modify, and then click Edit.
    If you use the Enhanced Profile User Interface, click Object Settings > Object > Edit.
  4. Specify the required access levels.
  5. Click Save.

Field-Level Security for Standard Objects

Object Self Service Payment Integration Permissions
Account Self service: Edit access for Billing Address and all fields to be modified by users, no access for other fields
Payment integration: Read access for all fields
Contact Edit access for Account Name, Email, External User Id, Identity Provider, Phone and all fields to be modified by users, no access for other fields
Price Book Read access for all fields
Required when using master products.
Price Book Entry Read access for all fields
Required when using master products.
Product Read access for all fields
Required when using master products.

Field-Level Security for Custom Objects

Object Self Service Payment Integration Permissions
Balance Edit access for all fields
Invoice Controlled by the general object permissions
Invoice Line Item Controlled by the general object permissions
Item Controlled by the general object permissions
Number Range Controlled by the general object permissions
Payment Entry Controlled by the general object permissions
Session Controlled by the general object permissions
Style Controlled by the general object permissions
Subscription Controlled by the general object permissions
Template Controlled by the general object permissions
Tier Controlled by the general object permissions
Trigger Helper Controlled by the general object permissions

Configuring Additional Permissions for Payment Provider Integration

Info

To apply this configuration, your site must be set active.

To successfully finish a payment, the site guest user needs additional permissions for a number of objects and fields. The required permissions are bundled in the permission set PaymentGuest.

To assign the permissions to the site guest user:

  1. Open the Site Details of your site.
    In the Sites list, click the label of the site to open its details.
  2. Click Public Access Settings to open the site profile.
  3. Click View Users.
    If you use the Enhanced Profile User Interface, click Assigned Users.
  4. Open the details of the Site Guest User, and scroll to the Permission Set Assignments section.
  5. Click Edit Assignments.
  6. Select the permission set PaymentGuest, and click Add.
  7. Click Save.

Assigning JustOn License

The user of the Force.com site needs a JustOn license.

  1. Open the Site Details of your site.
    In the Sites list, click the label of the site to open its details.
  2. Click Public Access Settings to open the site profile.
  3. Click View Users.
    If you use the Enhanced Profile User Interface, click Assigned Users.
  4. Open the details of the Site Guest User, and scroll to the Managed Packages section.
  5. Click Assign Licenses.
  6. Select the JustOn package, and click Add.