Validating data in client-side human services
Data in client-side human services must be secured using appropriate validation practices
to ensure that the data is not compromised.
About this task
- Problem
- Data in client-side human services can be compromised if appropriate validation practices are not used.
- Resolving the problem
- In your client-side human service data, apply appropriate validation practices by completing the
following instructions:
- In your process, add server-side validation immediately after the client-side human service
task. Say, for example, that in a process named Process1, you have a script
named validation script that immediately follows a client-side human service
task named CSHS task1.
The output of CSHS task1 is mapped to a temporary instance variable named
tw.local.tempDatain validation script. The script checks whether the data is valid. If the data is valid, the script populates the instance datatw.local.databased on the content oftw.local.tempData, and then clearstw.local.tempDatato prevent the execution context from unnecessarily getting larger. The task that follows validation script is User Task2, which obtains the data fromtw.local.dataand continues the process instance. - In your client-side human service task, ensure that your implementation supports validation. For example, in the CSHS1 client-side human service, the Client-Side Script validates the user input on the client side, and there is no extra server call before CSSH1 completes.
- In your process, add server-side validation immediately after the client-side human service
task. Say, for example, that in a process named Process1, you have a script
named validation script that immediately follows a client-side human service
task named CSHS task1.