Yeah, it is not straight-forward at all. You need to always know where you are
getting your data from. If it is session based, you just set this up when the
session is created which simplified things somewhat. These EOF stacks need to
be strictly isolated, so getting a few of Foos across mult
Hi Chuck,
On 16 Dec 2017, at 6:17 am, Chuck Hill wrote:
> I think you can make it work, but it is going to need a database connection
> for each slave. And there can’t be relationships between slaves or between
> the master and the slave. And it is going to be susceptible to “bad
> assumpti
EOAdaptorChannel.Delegate.adaptorChannelShouldEvaluateExpression
boolean adaptorChannelShouldEvaluateExpression(EOAdaptorChannel channel,
EOSQLExpression expression)
Invoked from evaluateExpression to tell the delegate that the adaptor channel
object is sending expression to the database server.
Hi Leigh,
There is no build-in way to do this. For Direct Actions you have to do it on
your own. Component Actions are already somewhat safe due to the obscure
nature of the element ID on the URL. But if someone knows WO and is familiar
with the structure of your site there is still a window
Hello,
Just wondering if anyone has ever had to harden their WebObjects applications
against CSRF:
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet
Is there a way to have WebObjects do this automatically or do we need to
implement this on our own?
Thanks
I think you can make it work, but it is going to need a database connection for
each slave. And there can’t be relationships between slaves or between the
master and the slave. And it is going to be susceptible to “bad assumption”
errors in Wonder (I think that version of EOF is OK).
What you
Hi Paul,
Hm, then I will come back to my first idea, building EOModels
dynamically with
databaseContext.availableChannel().adaptorChannel().describeModelWithTableNames(namelist)
I hope, I can set full-qualified tablenames there. It is a very common
method in my business domain to have a mas
Hi André,
On 15 Dec 2017, at 6:33 pm, André Rothe wrote:
> But how does EOF differ the objects? They come from different tables (but
> with the same name, only the owners differ). The owner I would intercept and
> change in the SQL code. Can EOF track this without a model? Also the primary
>
Hi Markus,
But how does EOF differ the objects? They come from different tables
(but with the same name, only the owners differ). The owner I would
intercept and change in the SQL code. Can EOF track this without a
model? Also the primary keys could overlap, because the "slaves" use its
own s
