Re: dynamic list of form variables

This WebDNA talk-list message is from

2003

It keeps the original formatting. numero = 50321
interpreted = N
texte = Security warning...You describe the input as incoming form variables - you never want to use interpret around any incoming data unless you are absolutely positive about the source of the data and the safety of its contents. If, for example, one of the formvariables contained the value [deletefolder /], then interpreting that would cause WebDNA to gleefully execute that tag.- brianOn Monday, May 12, 2003, at 09:36 AM, Donovan wrote:> [interpret][[field]-[index]][/interpret]>> might be what you are looking for??> be wary of security using interpret>> Donovan>>> Dave Hurley wrote:>>> Is there a way to nest variables in the name of a variable so that, >> if the result is the name of a form variable, it is parsed as such? I >> have a bunch of incoming form variables, field-1, field-2, field-3 >> etc., and I would like to loop through them in order to update a >> database. When I use [field]-[index] inside a loop context I end up >> with the literal 'field-1' instead of the contents of the form >> variable named 'field-1'.>>>> If this makes sense and someone has a solution (arrays?) I'd love to >> hear about it.>>>> Thanks. And thank you to everyone who answered my last question >> regarding the updating of database files outside of an admin page - >> it makes sense now.>>>> Dave Hurley>> Biology Department>> University of Washington>>-- Brian Fries, BrainScan Software -- http://www.brainscansoftware.com ---------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: dynamic list of form variables (Dave Hurley 2003)
Re: dynamic list of form variables (Brian Fries 2003)
Re: dynamic list of form variables (Donovan 2003)
Re: dynamic list of form variables (WebCat @ Inkblot Media 2003)
Re: dynamic list of form variables (Laurent Bache 2003)
dynamic list of form variables (Dave Hurley 2003)

Security warning...You describe the input as incoming form variables - you never want to use interpret around any incoming data unless you are absolutely positive about the source of the data and the safety of its contents. If, for example, one of the formvariables contained the value [deletefolder /], then interpreting that would cause WebDNA to gleefully execute that tag.- brianOn Monday, May 12, 2003, at 09:36 AM, Donovan wrote:> [interpret][[field]-[index]][/interpret]>> might be what you are looking for??> be wary of security using interpret>> Donovan>>> Dave Hurley wrote:>>> Is there a way to nest variables in the name of a variable so that, >> if the result is the name of a form variable, it is parsed as such? I >> have a bunch of incoming form variables, field-1, field-2, field-3 >> etc., and I would like to loop through them in order to update a >> database. When I use [field]-[index] inside a loop context I end up >> with the literal 'field-1' instead of the contents of the form >> variable named 'field-1'.>>>> If this makes sense and someone has a solution (arrays?) I'd love to >> hear about it.>>>> Thanks. And thank you to everyone who answered my last question >> regarding the updating of database files outside of an admin page - >> it makes sense now.>>>> Dave Hurley>> Biology Department>> University of Washington>>-- Brian Fries, BrainScan Software -- http://www.brainscansoftware.com ---------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Brian Fries

DOWNLOAD WEBDNA NOW!

Re: dynamic list of form variables

2003

Top Articles:

Related Readings: