cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Did you know you can set a signature that will be added to all your posts? Set it here! X

Expression and the keywords

Go to solution
drichter
14-Alexandrite
14-Alexandrite
‎Mar 26, 2018 03:38 AM
‎Mar 26, 2018 03:38 AM

Expression and the keywords

Hi,

 

the expression widget has a big problem with everything that as the word "alert" in it. I will use an expression for change the color of a panel dependent on an alert. I use the hasAlert-Service to get the alert state for a property. I bind this state to the expression parameter "hasAlert". If I write the expression

Output = hasAlert? "AlertRed" : "OkGreen";

I get the error message "You cannot use the alert function".

 

In the ide.js of the expression widget I saw this:

if (expression.indexOf('alert') >= 0) {
  return TW.IDE.I18NController.translate('tw.expression-ide.warnings.cannot-use-alert');
}

I think there a better ways to prevent of using the javascript alert.

0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
CarlesColl
18-Opal
18-Opal
(To:posipova)
‎Apr 06, 2018 10:19 AM
‎Apr 06, 2018 10:19 AM

Well on your exact expression you can do a simple trick:

Output = hasAlert? "AlertRed" : "OkGreen";

To ( of course you have to rename you expression parameter from hasAlert to hasAl or whatever parameter name without Alert text )

Output = (hasAl? ("Al"+"ertRed") : "OkGreen";

And yes, this javascript check it annoying and totally unusefull, neither it secures anything, should be totally removed.

 

View solution in original post

0 Kudos
Notify Moderator
4 REPLIES 4
AdamR
12-Amethyst
12-Amethyst
(To:drichter)
‎Apr 05, 2018 10:19 AM
‎Apr 05, 2018 10:19 AM

I agree with that assessment.  I believe there are more specific checks that can be done to eliminate improper use of JavaScript key words.  This was, as you noted, the reason behind the check.  For others who may see this the other key word checks are...

eval

alert

for

document

window

parent

this

while

 

I will bring this to the attention of the Thingworx team to see what can be updated to improve these checks.

 

Thank you for the post!

 

Adam

Notify Moderator
posipova
20-Turquoise
20-Turquoise
(To:AdamR)
‎Apr 05, 2018 10:33 AM
‎Apr 05, 2018 10:33 AM

You cannot put an "Alert" directly into the expression, however you may create a parameter of the base type string and use it in the expression. An example would be to have a textarea feeding string values into the Expression widget parameter, and then displaying it. 

0 Kudos
Notify Moderator
CarlesColl
18-Opal
18-Opal
(To:posipova)
‎Apr 06, 2018 10:19 AM
‎Apr 06, 2018 10:19 AM

Well on your exact expression you can do a simple trick:

Output = hasAlert? "AlertRed" : "OkGreen";

To ( of course you have to rename you expression parameter from hasAlert to hasAl or whatever parameter name without Alert text )

Output = (hasAl? ("Al"+"ertRed") : "OkGreen";

And yes, this javascript check it annoying and totally unusefull, neither it secures anything, should be totally removed.

 

0 Kudos
Notify Moderator
drichter
14-Alexandrite
14-Alexandrite
(To:CarlesColl)
‎Apr 09, 2018 02:11 AM
‎Apr 09, 2018 02:11 AM

This is a nice workarounds. I hope in future I don't need workarounds in twx :D

0 Kudos
Notify Moderator
Top Tags