SRS Param
Optional XML element with command parameters
xpath = srs/def/itm[@model='param']
Attributes
Required:
name
Optional:
label
- nametitle
- placeholderscope
- command - parameter will be applied only to matching command (comma separated values available)value
null
- equals null
lg
- hide/show on desktopsm
- hide/show on mobiletype
- defaulttext
select
- dropdown type,!Always executed
- decimal:
number, integer, money, decimal
- numeric:
int, bigint, tinyint, smallint, integer
- uniqueidentifier:
uniqueidentifier
- date:
date, datetime, datetime2, smalldatetime, time
- float:
float
- other:
text, number, password, hidden, color, date, checkbox
- https://www.w3schools.com/tags/att_input_type.asp
opts
server
- server side parameter useful for predefined values cannot be overwritten by userjson-body
- entire body request as parameterjson-xml-root
- convert json to xml (root element created)json-xml
- convert json to xml (root element not created)req
- parameter required
Notes
Using proper data type is important for proper data validation
Parameters
Processing order:
- Server side parameters (cannot be overwritten by user)
- Query String
- Body Parameters
- SQL injections Using parameters is safe and recommended. To better understand what is SQL injection and why we do not allow processing commands read https://owasp.org/www-community/attacks/SQL_Injection
XML | |
---|---|
Server Side Variables
There are few predefined variables available.
[[kv.v. .....]]
all variables in kv.v. scope[[kv.v.owner.name]]
Owner Name, also in footer[[kv.v.owner.contact]]
Owner contact, also in footer[[kv.v.owner.footer]]
Footer additional text[[kv.v.owner.language]]
Default language[[kv.v.user.username]]
- username[[kv.v.user.userid]]
user id[[kv.v.user.currency]]
currency[[kv.v.user.teamid]]
teamid[[kv.v.user.app_name]]
user current applicaiton name[[kv.v.api.version]]
version[[app_name]]
[[apimethod]]
- GET/POST[[apipath]]
- example{{host}}/api/srs/xtet?param=param
[[userpermission]]
csv list[[basepath]]
- examplehttp://test.com
[[srs_name]]
- srs_name[[session_id]]
- Sql Server UUID, database friendly
Examples type="select"
Example type="checkbox"
XML | |
---|---|