Hi Tim,
In an n-tiers app logic build on top of LC-server, the best is to
1.- use a script.lc to bind the web UI+forms to the backend where the
script.lc is just a couple of lines :
?lc
try
start using stack server_lib.livecode
get yourapplogics_code()
catch tErr
-conseil.com
Objet : Rép : On-Rev mySQL security issues? -- or use an LC stack for the DB?
Hi Tim,
In an n-tiers app logic build on top of LC-server, the best is to
1.- use a script.lc to bind the web UI+forms to the backend where the
script.lc is just a couple of lines :
?lc
try
Hi Pierre,
It took me a couple readings to follow your email (I'm a newbie!)
but I think I get it... especially the point about not using a
flat database, but letting the various parts of the system work
in parallel. I hadn't thought about the performance hit if there
are many, many users
On Mon, Nov 28, 2011 at 11:55 AM, Tim Selander selan...@tkf.att.ne.jpwrote:
Any thoughts on validation needs for lookups only? And on using a stack or
text file for the data? (Hmmm... how does the LC server handle variables -
limit on size?)
Tim,
again I'm no expert here (on anything, LC,
Thanks for the input, Jim.
You're the second person to recommend RevIgniter. Sivakatirswami
also highly praises the product and even sent me a bunch of code
off-list to help with my project!
At this point, I'm a little fuzzy on what a framework even is,
let alone how to use it. (I'm a TV
comprehensive list:
https://www.owasp.org/index.php/Top_10_2010-Main
the top two entries should be understood at least on a basic level:
http://en.wikipedia.org/wiki/SQL_injection
http://en.wikipedia.org/wiki/Cross-site_scripting
Obviously some things do not apply to Rev-based code, but for
Hi Tim,
Sounds like you and me are on the same par, so appreciate that I am no
expert in this field, but I was able to achieve something similar to what
you are doing through a lot of help from those on this List, either
directly from posts or indirectly from their websites.
My project involved
Hi Kay,
Appreciate the input... I've wondered about mySQL's license, too.
Here is additional info. My catalog is an archive of the radio
and TV programs we've aired. We will create the database and add
to it bit by bit behind the scenes. No data will be input through
the web/browser --
Hi,
I'm beginning to learn how to use ?rev scripts to access mysql
databases on my on-rev.com account.
I am going to allow users to search a catalog, but no uploading
and no data entry or data editing...
What, if any, security problems do I need to consider? mySQL
newbie...
Thanks,
Tim