Best Practices for Implementing Plug-in Workflows

The following practices are recommended to assure that your plug-in provides stability and performance to users.

• If you need to temporarily store files, use the browser cache or your own back-end server.
• Do not send calls to the topmost browser window, window.top, or to the parent object of your current window, window.parent.
• To increase the security of your extensions, limit the access to your plug-ins to specific users and control the user access to your extensions based on their privileges. For example, you can make your extensions available only to users who have privileges to create or delete Datastore objects. For more information, see Dynamic Extension Use Cases.