This design decision protects developers using Xajax from JavaScript
Hijacking attacks.
SAJAX
Sajax (www.modernmethod.com/sajax/) is a server AJAX toolkit with support for
web applications written in a large number of languages. At time of writing, Sajax
supports ASP, Cold Fusion, PHP, Python, Ruby, as well as several others. Sajax functions
as a traditional proxy-style AJAX framework by allowing developers to define methods
from the web application to be exposed. Once the exposed methods are tagged,
developers then include JavaScript that is automatically dynamically generated by
Sajax into the HTML of the page.
Installation Procedures
The following steps are taken by the developer to install Sajax:
1. Download the Sajax framework from www.modernmethod.com/sajax/
download.phtml.
2. Make a few edits to the application to add Sajax functionality. First, include the
core Sajax library in the application. The name of this library varies depending
on the language in use. For example, the PHP library name is Sajax.php while
the Cold Fusion library name is Sajax.cfm.
3. Instantiate the Sajax object by calling the sajax_init() function. This object
will serve as the proxy between JavaScript on the client and the methods in the
web application on the server.
Pages:
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336