Now this is something that should be really straightforward - but isn't. Really, you're limited to only the fields that are displayed on the applet - there are some tricks to get other fields (hidden columns, anyone?) but it always seemed that this should be easier. Then what if you want a field from a BC not on the applet?
This Framework offers a way to do this - and good news - it can be done in a line! (We'll, a line is added to your applet browser script, a few more lines of code get used)
Just for simplicity we'll display a personalised alert to the current user.
So we add the following line to the applet's browser script:
alert("Hello there " + top.oFramework.BusComp.getRecord("Employee.Employee", theApplication().LoginId(), ["Full Name"]).Full_Name);
And that's it.
This will do what it looks like -display a "Hello there" message to the current user (querying the Employee BC). This will run on any applet (in fact any browser script anywhere) and doesn't need to have the "Full Name" field shown. It doesn't even need to be anything to do with the Employee BC!
Ok - how does this work?
Well starting in the application browser script here a call to a business service is made (the browser script side of the framework, here. Now the method called, BuildBsFramework() is empty. The real work is done in the declarations section. There are two lines here:
ExtendJsObjects(); top.oFramework = new Class_Main();
These will be discussed in a later post, but in summary the first extends JS objects (currently String and Date) while the second instantiates a Class_Main object, and attaches to top, naming it "top.oFramework"
Within the Class_Main there is an object BusComp that encapsulates functionality relating to Business Components - in the case of the Browser Script version here all it does is expose several wrappers - so getRecord is one. Again, we'll discuss the methods (and their signatures in a later post) - for the moment let's look at what this does:
getRecord: function () { return this.methodWrapper("BusComp.getRecord", arguments); },
So this calls a second method; methodWrapper; with an argument "BusComp.getRecord", then the arguments array passed into it - so: "Employee.Employee", theApplication().LoginId(), ["Full Name"];
methodWrapper is shared by the various browser script objects:
function Method_Wrapper(sName, vArguments)
{
var oArguments =[];
oArguments[0] = sName;
for(var x=0;x<vArguments.length;x++)
{
oArguments[x+1] = vArguments[x];
}
return top.oFramework.callServerFramework(oArguments);
}
so this takes the two arguments it gets - the name and the arguments array and essentially joins them into one (arguments does not seem to be a "true" array object, so the above technique is used in place of using push() or concat() say.)
Now the callServerFramework method of the Framework object is used. Within this there is essentially a normal call using a business service (so don't forget to add its name to the config file, but worry not, this is the last time you'll ever have to do this!). There are a couple of interesting lines:
oInputs.SetProperty("Method", oArguments.shift());
So the first argument (which in this case is "BusComp.getRecord" is assigned to an input property called "Method"). The next line of interest is:
oInputs.SetProperty("Arguments", this.toSource(oArguments));
So this sets a second input property called "Arguments" to be the return of "toSource()" when passed the remainder of the arguments array (which in this case would be "Employee.Employee", theApplication().LoginId(), ["Full Name"])
Here is the source of toSource():
toSource: function (obj)
{
var sReturn = "";
if (typeof(obj)=="string") // strings - need to quote, also replace ' with \'
{
sReturn = "\"" + obj.replace(/\'/g,"\\\x27") + "\"";
}
else if (typeof(obj.shift)=="function") // arrays
{
sReturn += "[";
for (var i=0; i<obj.length; i++)
{
sReturn += this.toSource(obj[i]) + ", ";
}
sReturn = (sReturn.length==1) ? sReturn + "]" : sReturn.substr(0, sReturn.length-2) + "]";
}
else if (typeof(obj.getTime)=="function") // date
{
sReturn = "new Date(\"" + obj + "\")";
}
else if (typeof(obj)=="object") // objects - loop through properties
{
sReturn += "{";
for (var x in obj)
{
sReturn += (x.indexOf(" ")>-1) ? "\"" + x + "\":" : x + ":" ;
sReturn += this.toSource(obj[x]) + ", ";
}
sReturn = (sReturn.length==1) ? sReturn + "}" : sReturn.substr(0, sReturn.length-2) + "}";
}
else // number, boolen, function will be left
{
sReturn = "" + obj;
}
return sReturn;
}
What this does is take any JS object and convert it into its source: a String. (So an object that has a property called "Name" with a value of "Value" and a second property called "Array" that has the value of an array with 1,2 and 3 in can be represented as follows:
{Name:"Value", Array:[1,2,3]}
By representing an object in this manner it doesn't matter how complex the object is: it will be represented as a single string. This means that every call can ultimate share a common server side method - no matter what its input looks like, the input the server side method will always be a string representing the method name and a second representing the arguments.
On the server side the method RunFrameworkMethod the important logic is:
var sFrameworkMethod = Inputs.GetProperty("Method"); //Framework method to run
var sArguments = Inputs.GetProperty("Arguments"); //String of arguments
var oReturn; //Return value, may be object or string
//Strip [] from around arguments
sArguments = sArguments.substring(1, sArguments.length-1);
// clear stack
o_LocalFramework.clearStack();
//Build up command: oFramework.method(Arg1, Arg2,...);
var sCommand = "oReturn = o_LocalFramework." + sFrameworkMethod + "(" + sArguments + ");";
//Run command
eval(sCommand);
//If an object is returned, convert to string and set return type to Object
if(typeof(oReturn.shift) == "function" || typeof(oReturn) == "object")
{
Outputs.SetProperty("Return Type", "Object");
Outputs.SetProperty("Return Value", o_LocalFramework.toSource(oReturn));
}
//Otherwise return value and set return type to Primitive
else
{
Outputs.SetProperty("Return Type", "Primitive");
Outputs.SetProperty("Return Value", oReturn);
}
take a look at this line:
var sCommand = "oReturn = o_LocalFramework." + sFrameworkMethod + "(" + sArguments + ");";
so we've built a variable called sCommand that in this example case will be:
"oReturn = o_LocalFramework.BusComp.getRecord("Employee.Employee", theApplication().LoginId(), ["Full Name"]);"
The next line of interest is:
eval(sCommand);
So very, very, simple, yet very, very powerful - this runs our server side call for us.
Now while eval may well be "evil", and allows us run anything at all, we've kept some of the "evil" in check here in the way we have built the command we are running - it always starts with "o_LocalFramework." (rather than allowing the caller specify the full command, which adds some safety. So what we'll run will be some of the server side function.
So we have a variable, oReturn, which is the return from: o_LocalFramework.BusComp.getRecord(...) - so the server-side framework method. (Again, this will be discussed in a later post). getRecord returns a JS object. For the minute just assume one of the properties this object has contains the name of the Employee record queried; the property is called "Full Name" and the value "MattW".
The following will be run:
Outputs.SetProperty("Return Type", "Object");
Outputs.SetProperty("Return Value", o_LocalFramework.toSource(oReturn));
The first property indicates that the return has a complex type, the second is an echo of the browser-side toSource() from earlier - so the object is flattened into a single string. This allows us use the same method for calling any number of methods - we're not limited to a specific return type.
Back in callServerFramework() in the browser side Framework we're onto this:
return this.toObject(oOutputs.GetProperty("Return Value"));So the return property (a JS object in string form) is passed into a method called toObject. Again we're using the power of eval:
var oT = eval('(' + source + ')');What we have now is oT which will be a proper JS object, as if we'd built it here in browser script, so we can access its attributes in the usual way, so (remembering our assumption) our original line:
alert("Hello there " + top.oFramework.BusComp.getRecord("Employee.Employee", theApplication().LoginId(), ["Full Name"]).Full_Name);
is equivalent to:
alert("Hello there " + obj.Full_Name);which in this example will be:
alert("Hello there MattW");Great - from BS down, and all the way back.
(yes, yes, MattW isn't a *full name*, but this is an example!)
So hopefully that all makes sense. Next post I'll have a look at what in some of the server side logic - so BusComp.getRecord may be a good place to start.
Matt
'Now while eval may well be "evil", and allows us run anything at all, we've kept some of the "evil" in check here in the way we have built the command we are running - it always starts with "o_LocalFramework." (rather than allowing the caller specify the full command, which adds some safety. So what we'll run will be some of the server side function.'
ReplyDeleteThis is actually false. There is no safety. Imagine you send something like this:
sFrameworkMethod = "anything; unsafe_code; //"
Your script will build up command:
var sCommand = "oReturn = o_LocalFramework.anything; unsafe_code; //("+sArguments+")";
Puli,
ReplyDeleteYou're right - this does expose a problem - I played around a bit and got some "interesting" results - I think some are very unlikely, but obscurity isn't a great way to enforce security!
I'll post up some of the results I got, and I think I have a simple way to fix this...
Matt
Hi Matt - Great work on framework. I'm able to successfully run Server side but having issue on the browser side.
ReplyDeleteWhen i run following command
alert("Hello there " + top.oFramework.Lov.getDescription("ACCOUNT_TYPE","Business"));
getting this error...
Please help
ObjMgrBusServiceLog InvokeMethod 4 000000024d102708:0 2010-12-21 08:56:34 Begin: Business Service 'Web Engine Interface' invoke method: 'Request' at 7ea7420
ProcessRequest ProcessRequestDetail 4 000000024d102708:0 2010-12-21 08:56:34 SWE Command Processor - Handle user request: SWEActiveView=Account List View;SWEMethod=RunFrameworkMethod;SWECmd=InvokeMethod;SWEActiveApplet=Account List Applet;SWERPC=1;SWEService=MFramework;SWEC=4;SWEIPS=@0*0*2*0*0*3*0*6*Method18*Lov.getDescription9*Arguments28*["ACCOUNT_TYPE", "Business"];
ProcessRequest ProcessRequestDetail 4 000000024d102708:0 2010-12-21 08:56:34 SWE Command Processor - m_bRefresh: 0
ProcessRequest ProcessRequestDetail 4 000000024d102708:0 2010-12-21 08:56:34 SWE Command Processor - m_reqCount: 5
ProcessRequest ProcessRequestDetail 4 000000024d102708:0 2010-12-21 08:56:34 SWE Frame Manager - Invoke Service Method: service=MFramework; method=RunFrameworkMethod
GenericLog GenericError 1 000000024d102708:0 2010-12-21 08:56:34 Invocation of MFramework::RunFrameworkMethod is not allowed.
ObjMgrLog Error 1 000000024d102708:0 2010-12-21 08:56:34 (swefrmgr.cpp (3294)) SBL-UIF-00275: Cannot get service: MFramework
ObjMgrSRFLog Warning 2 000000024d102708:0 2010-12-21 08:56:34 (cdf.cpp (2614)) SBL-DAT-00144: Could not find 'View' named ''. This object is inactive or nonexistent.
ObjMgrBusServiceLog InvokeMethod 4 000000024d102708:0 2010-12-21 08:56:34 Business Service 'Web Engine Interface' invoke method 'Request' Execute Time: 0.002 seconds.