XML Editor - Download a Free Trial >
See What's New >
Buy Now >

[XSL-LIST Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message]

[no subject]

Play the video
[no subject]
This is in contradiction with the first quotation above, according to
which the document() function is one of the "deliberately-excluded
XSLT-defined functions" mentioned above, and isn't allowed to be
called inside a dynamically-evaluated XPath expression.

My questions:
===========

   1. Which of the two contradicting texts quoted above is right and
which is wrong?

   2. Why function calls to doc()/document() referring to non-local
store is not mentioned as a security risk? What about sending any data
to the remote host, as part of the query component of an URI?


And it certainly will be good to remove this contradiction from the
next version of the XSLT 3.0 specification.

-- 
Cheers,
Dimitre Novatchev
Current Thread
<- PreviousIndexNext ->
XSLT 3.0: Dynamic Evaluation , Dimitre Novatchev dn Thread normalize-space() except ..., dvint@xxxxxxxxx
XSLT 3.0: Dynamic Evaluation , Dimitre Novatchev dn Date normalize-space() except ..., dvint@xxxxxxxxx
Month

PURCHASE STYLUS STUDIO ONLINE TODAY!

Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced!

Buy Stylus Studio Now

Download The World's Best XML IDE!

Accelerate XML development with our award-winning XML IDE - Download a free trial today!

Don't miss another message! Subscribe to this list today.
Email
First Name
Last Name
Company
Subscribe in XML format
RSS 2.0
Atom 0.3
XML Editor - Download a 15 Day Free Trial Now >
See What's New in Stylus Studio >
Buy Stylus Studio - XML Editor - Now >
Site Map | Privacy Policy | Terms of Use | Trademarks
Free Stylus Studio XML Training:
W3C Member
Stylus Studio® and DataDirect XQuery ™are products from DataDirect Technologies, is a registered trademark of Progress Software Corporation, in the U.S. and other countries. © 2004-2013 All Rights Reserved.