Section A.7. 5: Using eval() with JSON

Previous page
Table of content
Next page

A.7. #5: Using eval() with JSON

In Chapter 7, you saw how you can use the eval() function to evaluate JSON returned from a server-side script:

 function updatePage() {   if (request.readyState == 4) {     if (request.status == 200) {         var jsonData = eval('(' + request.responseText + ')');        // Get the updated totals from the XML responseThe eval() function takes a JSON response, and converts it into a JavaScript object.        var totalBoards = jsonData.totals[0].boardsSold +                   jsonData.totals[1].boardsSold +                   jsonData.totals[2].boardsSold +                   jsonData.totals[3].boardsSold;

The problem with eval() is that it runs the JSON response from the server without any security checks... if some malicious organization was able to tamper with your server's response, you could end up running some harmful code in your JavaScript.



Previous page
Table of content
Next page
Head Rush Ajax
Head Rush Ajax (Head First)
ISBN: 0596102259
EAN: 2147483647
Year: 2004
Pages: 241
Authors: Brett McLaughlin, Brett McLaughlin
BUY ON AMAZON
Cisco IP Telephony (CIPT) (Authorized Self-Study) (2nd Edition)
Snort Cookbook
Cisco CallManager Fundamentals (2nd Edition)
Service-Oriented Architecture (SOA): Concepts, Technology, and Design
The Oracle Hackers Handbook: Hacking and Defending Oracle
DNS & BIND Cookbook
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy