Book Image

Easy Web Development with WaveMaker

By : Edward Callahan
Book Image

Easy Web Development with WaveMaker

By: Edward Callahan

Overview of this book

Developers of all levels can now easily develop custom, responsive, and rich web application clients with secure, scalable servers utilizing relational databases and RESTful services using WaveMaker Studio. Whether you need a departmental business application or a form application for your weekend club, this book will show you how to design, develop, and deploy professional grade web applications with WaveMaker. Easy Web Development with WaveMaker will help you use WaveMaker to design, develop, and deploy rich, responsive web applications, even if you are not a programmer. If you need to build a data-driven web application, but you only know ‘enough to be dangerous,' you need this book. This book examines every angle of using WaveMaker to build applications, from dissecting examples to customizing, deploying, and debugging your own applications. This book enables the non-professional programmer to become comfortable not only with using WaveMaker Studio itself, but also with the artefacts produced by the studio as well as the runtime and services provided by the WaveMaker framework. You will learn everything, from how customize the user experience with JavaScript and CSS to integrating with custom Java services and the Spring Framework server-side. Easy Web Development with WaveMaker 6.5 is packed with examples, code samples, screenshots, and links to equip you to be successful with WaveMaker Studio.

Related Content you might be interested in

Current Title:

Small book image
Easy Web Development with WaveMaker
Edward Callahan
Jul, 2013 | 306 pages
No titles found
Table of Contents (23 chapters)
Easy Web Development with WaveMaker
Easy Web Development with WaveMaker
Credits
Credits
About the Author
About the Author
Acknowledgement
Acknowledgement
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Getting Started with WaveMaker
Getting Started with WaveMaker
Setting up your workspace
Introducing CRM Simple
Summary
2
Digging into the Architecture
Digging into the Architecture
The big picture
Getting comfortable with the JavaScript client
Springing into the server side
Client and server communication
Types
Studio is also an application
Summary
3
Using Studio
Using Studio
Welcome to projects
Hello WaveyWeb
Adding services
Inserting components
The canvas
Working on the canvas
Source editors
The palette
The Properties panel
Binding dialog
Using revision control software
Summary
4
Designing a Well-Performing Application
Designing a Well-Performing Application
Begin with the end in mind
Leveraging layouts
Screen-sizing strategies
Going faster
Optimizing the use of data and service calls
Summary
5
Navigating towards Reusability
Navigating towards Reusability
Navigation, layers, and page containers
Simple notifications
6
Styling the Application
Styling the Application
7
Working with Databases
Working with Databases
8
Utilizing Web Services
Utilizing Web Services
9
Custom Java Services
Custom Java Services
Java or web service
Adding a custom service
Dissecting the template class
The classpath
Using an external editor
RuntimeAccess
Dependency injection
Logging
Summary
10
Customizing the User Interface with JavaScript
Customizing the User Interface with JavaScript
Important warning for browser-executed code
Events
Binding expressions
Setting and getting values
Filters
Resources
Summary
11
Mastering Client Customization
Mastering Client Customization
Formatters
DojoGrid
Custom columns
LiveForm
Dynamic page content
Custom components
Summary
12
Securing Applications
Securing Applications
Security in WaveMaker
Configuring security
Widget RBAC
Multitenancy
The security service
Customizing the configuration
Securing runtime service
Troubleshooting
Summary
13
Deploying Applications
Deploying Applications
Deployment requirements
Preparing for deployment
The deployment dialog
WAR/EAR
Tomcat
Cloud deployment
Summary
14
Mobile Deployment
Mobile Deployment
The mobile hybrid
Before you begin
Cordova API
PhoneGap build
Uploading the ZIP
Customizing the ZIP file
Summary
15
Debugging
Debugging
General troubleshooting
Watching the network
Client
Server
Summary
Index
Index

Securing runtime service

WaveMaker's use of service variables insulates applications from SQL injection types of attack (http://owasp.com/index.php/SQL_Injection). However, use of the runtime service exposes a insert(), update(), read(), and delete() method for every imported table. This can create a significant vulnerability, including exposing the user login table when using database security.

For example, using curl (http://curl.haxx.se/), a command-line tool for making HTTP requests, we could perform an update of the customer table by POST'ing directly to the runtime service URL. Here, we update the customer record with customer ID 3 with bogus data

> curl -H "Content-type: application/json" -d '{"params":["custpurchaseDB", "com.custpurchasedb.data.Customer", {"address":"12 Chump Lane", "city" : "Hackville", "company": "Fools R Us", "custid" : 3, "imageurl" : "", "state" : "TX", "twitter" : "ivebeenpawnd", "zip": "3333"}],"method":"update","id":1}' -X POST http://127.0.0.1:8094/SecureDbAccess...
Previous Section
End of Section 8
Next Section