Question 6 - Salesforce Sharing and Visibility Architect Real Exam Questions [Feb 2026 Update]

Q: 6

Universal Containers requested to leverage Lightning Web Components (LWC) to improve support reps’ user experience. LWC will be used as view layer, and Apex classes will have the business logic. Which attention points should the development team consider when implementing this solution?

Options

Discussion

QuinnN Feb 15, 2026 7:01 am

Option A

Casey Feb 11, 2026 12:30 am

Ben D. Feb 22, 2026 7:13 pm

Probably A. Apex runs in system mode so extra care for record-level visibility. Unless you enforce sharing, users might see too much.

Morgan F. Feb 7, 2026 11:04 am

Its C for me, since checking isShareable and isEditable covers the field security aspect that LWC might expose. Not totally sure though.

Jamie Feb 12, 2026 12:33 pm

C tbh, since exposing fields in LWC often leads to FLS issues if you forget those is* checks. I know record-level sharing is a problem but field security gets overlooked with all those UI components. Might be missing something subtle here.

Nora I. Feb 9, 2026 2:43 am

Not B here. Test classes with runAs set user context but don't actually enforce sharing-it just lets you run as another user for testing. The real concern is system mode in Apex behind LWC, so enforcing record visibility (A) is what devs need to watch for. C looks tempting but that's field-level, not record-level. Anyone see it differently?

Owen L. Feb 8, 2026 3:43 am

Test classes with runAs actually don't enforce sharing, only user context. So A is the right call here.

Ajay E. Feb 17, 2026 10:48 pm

Seriously, why does Salesforce keep tossing these System Mode vs. FLS scenarios at us? A imo

Adam Feb 10, 2026 8:24 am

I’d go with C on this one. Field-level permissions should always be checked in Apex too, especially since LWC might display fields a user isn’t allowed to see or edit. I think both record and field security matter, but C calls out those FLS checks. Anyone disagree?

Jason O. Feb 23, 2026 5:04 am

Man, Salesforce always makes these sharing vs. FLS questions confusing. I'm picking C because 'isSharable', 'isEditable', and 'isCreatable' definitely check for field-level permissions, which is a big deal when you're exposing data through LWC. I know record visibility matters too but I thought field security trips folks up more often. Anyone else read it the same way, or am I missing something?

Be respectful. No spam.

Correct Answer:

Explanation

Apex classes, when invoked from a Lightning Web Component, run in system mode but default to a without sharing context. This means that by default, they do not enforce the running user's record-level sharing settings, potentially exposing data the user should not see. Therefore, a primary consideration for the development team is to explicitly enforce record visibility. This is achieved by declaring the Apex class with the with sharing or inherited sharing keyword, which ensures that all SOQL queries and DML operations respect the user's sharing rules and permissions.

Why Incorrect

B. Create test classes including runAs to test different users accessing the data.

This is a best practice for validating the sharing implementation, not the primary implementation consideration itself. The core task is to first write the code to enforce sharing (Option A).

C. Use isSharesble, isEditable, and isCreatable to enforce field permissions.

This option lists incorrect method names (isUpdateable, not isEditable) and misapplies isShareable. These methods check Field-Level Security (FLS) and object properties, not enforce record-level visibility.

References

1. Salesforce Apex Developer Guide, "Using the with sharing, without sharing, and inherited sharing Keywords":

"An Apex class with the @AuraEnabled annotation that is called from a Lightning component (Aura or LWC) defaults to without sharing." This statement confirms that developers must take explicit action to enforce sharing for LWC controllers.

2. Salesforce Secure Coding Guide, "Enforcing Sharing Rules":

"By default, Apex code runs in system context... The only exceptions to this rule are Apex code that is executed with the executeAnonymous call and Chatter in Apex. To enforce sharing rules, you must declare the class with the with sharing keyword." This highlights the developer's responsibility to enforce sharing.

3. Salesforce Apex Developer Guide, "Enforcing Object and Field Permissions":

This section details the use of Schema Describe methods like isAccessible(), isCreateable(), and isUpdateable() to verify a user's access to objects and fields (FLS), which is distinct from the record-level sharing enforced by the with sharing keyword. This clarifies the inaccuracy of option C.

4. Salesforce Apex Developer Guide, "Testing with runAs":

"The runAs method enables you to write test methods that change the user context to an existing user or a new user so that the user’s record sharing is enforced." This confirms that runAs is a testing tool used to verify sharing behavior.

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE