[XSL-LIST Mailing List Archive Home]
RE: [xsl] Document function handling POST instead of GET
Subject: RE: [xsl] Document function handling POST instead of GET|
From: Pieter Reint Siegers Kort <pieter.siegers@xxxxxxxxxxx>
Date: Fri, 21 Jan 2005 16:40:27 -0600
I wouldn't do that because of security issues. What's more, passing in a lot
of data through URLs is not very appropiate and can lead to broken URLs if
you don't code them well.
Anyway, it seems to me you're aiming at running queries, so maybe you want
to use something like SQLXML, and execute query templates? Just a guess...
In SQLXML, connectionstrings are defined in the administration of SQLXML,
and templates are saved in a file on disk. You run your queries by
requesting the URL pointing to the desired template, and SQL will return you
the XML source.
From: Antsnio Mota [mailto:amsmota@xxxxxxxxx]
Sent: Viernes, 21 de Enero de 2005 11:42 a.m.
Subject: Re: [xsl] Document function handling POST instead of GET
I want to use POST in a idempotent (how like that word!) way, thus i have no
side-efects here. The problem is i probably will have lots of data to pass,
longer than can fit in a URL. Specifically to my problem, i want to pass SQL
SELECT clauses tha can be somewhat big, and also connection strings.
Can there be a simpler solution?
On Fri, 21 Jan 2005 17:33:40 GMT, David Carlisle <davidc@xxxxxxxxx> wrote:
> > Can i use the same construct for a POST method?
> You would have to use an extension function, but even then doing an
> operation like POST from a side effect free language like XSLT is
> slightly problematic. You have no assurances about the chronological
> order in which any templates are evaluated, only that the results of
> evaluating the templates are assembled into the final tree in the
> correct place. So GET is relatively safe and made safer by the fact
> that XSLT specifies that if you get the same URI twice in one
> transform you must be returned the same representation (actually
> stronger the same
> node-set) but tying down the semantics of an update such as POST is
> rather trickier.
> __ This e-mail has been scanned for all viruses by Star. The service
> is powered by MessageLabs. For more information on a proactive
> anti-virus service working around the clock, around the globe, visit: