Universal Containers is developing a new application that has a lightweight Node.js front end. They will also be using a Java-based API, which combines data with Salesforce customer data. All of the data, and the API, is highly confidential. What should an Architect suggest to enforce security?
- Deploy the apps into either Heroku runtime. Force the Java app to use a CDN, and point the Node.js app to its appname.herokuapp.com domain.
- Deploy all of the apps to the Common Runtime. Force the Java app to use SSI/TLS sessions, and point the Node.js app to its appname.herokuapp.com domain.
- Deploy all of the apps to a Heroku Private Space. Force the Java app to use SSI/TLS sessions, and point the Node.js app to its appname.herokuapp.corn domain.
- Deploy all of the apps to a Heroku Private Space. Deploy the Java app with Internal Routing enabled. Deploy the Node.js app without Internal Routing enabled.
Reveal Solution
Next Question