In this APEX Instant Tip episode, Hayden introduces the !RAW notation for substitution strings, and discusses a use case for when it could be appropriate (end users needing to use HTML to format text).
Insum’s own APEX security guru Anton Nielsen addresses the risks this poses, and provides a strategy to safeguard against XSS and other dangers using the recently added apex_escape.html_allowlist.
Also, the solution to last week’s puzzler is revealed!
View Past Episodes
Full episode list on YouTube here.
Past Episodes
APEX Instant Tips #43:Flashback Data Archive
On the subject of auditing tables, Anton presents Flashback Data Archive with special guest and fellow...
Read more
APEX Instant Tips #42: Cleaner code with APEX_STRING.FORMAT
Today's tip is focused on improving the readability of your code using APEX_STRING.FORMAT during a code...
Read more
APEX Instant Tips #41: How to secure a RESTful API with ORDS and OAuth2
Hayden and Anton's special guest Plamen Mushkov shows how to secure a REST API he built...
Read more
APEX Instant Tips #40: “Instantly” add full table audit capability to your applications
Oracle SQL developer can quickly provide you with full table auditing, within just a few clicks....
Read more
APEX Instant Tips #39: Using the apex.debug javascript API
In this APEX Instant Tip, Hayden introduces Anton and the audience to the apex_debug JavaScript API....
Read more
APEX Instant Tips #38: Cloning APEX Sessions (to fully support opening multiple tabs)
Anton and his daughter Maja present a tip on cloning APEX sessions to support opening multiple...
Read more
APEX Instant Tips #37: Page 0 (Global Page) and Page 0 items
Anton discusses some of the benefits of Page 0 (Global Page), including using Page 0 items...
Read more
APEX Instant Tips #36: Methods on Tables
Hayden and Anton explore how the Methods on Tables utility can assist with the challenge of...
Read more