Mercurial > urweb
view tests/lessSafeFfi.ur @ 2238:7f92d70a326e
Only use string (rather than numeric, etc.) primitives in parsed SQL statements.
author | Ziv Scully <ziv@mit.edu> |
---|---|
date | Mon, 06 Jul 2015 01:31:04 -0700 |
parents | 3d10ae22abd6 |
children |
line wrap: on
line source
ffi foo : int -> int ffi bar serverOnly benignEffectful : int -> transaction unit ffi baz : transaction int ffi adder : int -> int -> int ffi bup jsFunc "alert" : string -> transaction unit ffi alert : string -> transaction unit fun other () : transaction page = (*bar 17; q <- baz;*) return <xml><body> (*{[foo 42]}, {[q]}*) <button value="bup" onclick={fn _ => bup "asdf"}/> <button value="alert" onclick={fn _ => alert "qqqz"}/> </body></xml> fun main () = return <xml><body> <form> <submit action={other}/> </form> </body></xml>