Article David Crawford · Jul 31, 2019 2m read Anti CSRF Methods IRIS provides us with anti login CSRF attack mitigation, however this is not the same as a CSRF attack, as login attacks only occur on the login form. There are currently no built-in tools to mitigate CSRF attacks on api calls and other forms, so this is a step in mitigating these attacks.See the following link from OWASP for the definition of a CSRF attack:https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF) #CSP #JavaScript #REST API #Security #Frontend #Caché #InterSystems IRIS Open Exchange app 4 5 1 626
Article David Crawford · Jul 26, 2019 3m read Dynamic SQL to Dynamic Object Hello community! I have to work with queries using all kinds of methods like embedded sql and class queries. But my favorite is dynamic sql, simply because of how easy it is to manipulate them at runtime. The downside to writing a lot of these is the maintenance of the code and interacting with the output in a meaningful way. #Code Snippet #ObjectScript #SQL #Ensemble #InterSystems IRIS #Open Exchange Open Exchange app 7 7 1 901