Presentation is loading. Please wait.

Presentation is loading. Please wait.

Unit 20 - Client Side Customisation of Web Pages

Published byNicholas Sherman Modified over 6 years ago

Similar presentations

Presentation on theme: "Unit 20 - Client Side Customisation of Web Pages"— Presentation transcript:

1 Unit 20 - Client Side Customisation of Web Pages
Week 4 – Lesson 9 Fundamentals of Scripting

2 Fundamentals of Scripting Languages
Introduction Characteristics Uses Scripting language constructs

3 Assignment 2 - Scripting Languages
What a scripting language is How it works What types are available The main features How does a scripting language improve functionality Explain in detail how a browser implements a scripting language

4 Results 22 submissions, 4 missed 7 passes 15 referrals 5 merits
3 distinctions 15 referrals

5 P2 Definitions (10) 10 topics to describe Some missing altogether
Some incomplete –do you proof-read? “…is shown in the image below.”

6 P2 Definitions (10) Should be original From a relevant source
quoted eg. “scripting languages are designed for gluing: they assume the existence of a set of powerful components and are intended primarily for connecting components together.” John K. Ousterhout IEEE Computer magazine, March 1998 topics Event-driven & object-orientated “scripting languages are designed for gluing: they assume the existence of a set of powerful components and are intended primarily for connecting components together.” John K. Ousterhout IEEE Computer magazine, March 1998

7 P2 Definitions (10) Should describe the feature – use an example where possible ‘more needed’ this is often why

8 Security Major issue is placing code to run on client’s machine
Cross-site scripting attacks XSS Vulnerability present in about 70% pf web applications (sources, Veracode, Acunetix)

9 Security

10 XSS Reflective XSS Malicious Javascript in , victim clicks link, Javascript sent to vulnerable website, reflected back and run on victim machine.

11 Persistent attack Attacker includes malicious script as part of user-name, other users view profile, code executes on other users machine

12 Constructs Need correct construction:
Syntax i.e. Grammar and order correct of words Dot operator allows an object to use a method Variable data stored as text or numbers Must have unique name within script Loops or iterations code which is executed repeatedly.

13 Objects A type of data which: Knows things about itself (properties)
Knows how to do things (methods) Many objects already exist Can create new ones

14 An example of ‘object’ code...
The ‘String’ object: <script> Hw=“Hello World” document.write(Hw.length) </script> The output on the screen would be ’11’ ; the string called hw is eleven characters long (10 letters and a space).

15 Methods Each object knows which methods it can carry out, eg (string object): <script> Hw=“Hello world” document.write(Hw.toUpperCase()) </Script> Copy this code and observe the screen output. The method UpperCase forces the whole phrase to upper case.

16 Loops for - loops through a block of code a specified number of times
while - loops through a block of code while a specified condition is true do...while - also loops through a block of code while a specified condition is true for...in - loops through the properties of an object

17 Event handling An event that triggers a piece of code
Some examples and further explanation are here:

18 M2 Client vs server is not needed
Compare examples of object-orientated and event-driven Explain how Javascript improves functionality: Drop-down menus Mouse-followers Image galleries Validation Browser detection Create cookies Read/write/modify HTML elements hiding or showing elements moving elements changing colors or fonts

19 D1 Understanding client-side scripting Sheryl Canter, April 2004

Download ppt "Unit 20 - Client Side Customisation of Web Pages"

Similar presentations

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.
MWD1001 Website Production Using JavaScript with Forms.

MWD1001 Website Production Using JavaScript with Forms.
Introducing JavaScript

Introducing JavaScript
JavaScript FaaDoOEngineers.com FaaDoOEngineers.com.

JavaScript FaaDoOEngineers.com FaaDoOEngineers.com.
JavaScript and the DOM Les Carr COMP3001 Les Carr COMP3001.

JavaScript and the DOM Les Carr COMP3001 Les Carr COMP3001.
1 CSC 551: Web Programming Spring 2004 client-side programming with JavaScript  scripts vs. programs  JavaScript vs. JScript vs. VBScript  common tasks.

1 CSC 551: Web Programming Spring 2004 client-side programming with JavaScript  scripts vs. programs  JavaScript vs. JScript vs. VBScript  common tasks.
HTML 5 and CSS 3, Illustrated Complete Unit L: Programming Web Pages with JavaScript.

HTML 5 and CSS 3, Illustrated Complete Unit L: Programming Web Pages with JavaScript.
Lesson 12- Unit L Programming Web Pages with JavaScript.

Lesson 12- Unit L Programming Web Pages with JavaScript.
The Web Warrior Guide to Web Design Technologies

The Web Warrior Guide to Web Design Technologies
By Philipp Vogt, Florian Nentwich, Nenad Jovanovic, Engin Kirda, Christopher Kruegel, and Giovanni Vigna Network and Distributed System Security(NDSS ‘07)

By Philipp Vogt, Florian Nentwich, Nenad Jovanovic, Engin Kirda, Christopher Kruegel, and Giovanni Vigna Network and Distributed System Security(NDSS ‘07)
MSc. Publishing on WWW JavaScript. What is JavaScript? A scripting language devised by Netscape Adds functionality to web pages by: Embedding code into.

MSc. Publishing on WWW JavaScript. What is JavaScript? A scripting language devised by Netscape Adds functionality to web pages by: Embedding code into.
Computer Science 103 Chapter 4 Advanced JavaScript.

Computer Science 103 Chapter 4 Advanced JavaScript.
CIS101 Introduction to Computing Week 09 Spring 2004.

CIS101 Introduction to Computing Week 09 Spring 2004.
CROSS SITE SCRIPTING..! (XSS). Overview What is XSS? Types of XSS Real world Example Impact of XSS How to protect against XSS?

CROSS SITE SCRIPTING..! (XSS). Overview What is XSS? Types of XSS Real world Example Impact of XSS How to protect against XSS?
Javascript and the Web Whys and Hows of Javascript.

Javascript and the Web Whys and Hows of Javascript.
INTRODUCTION TO DHTML. TOPICS TO BE DISCUSSED……….  Introduction Introduction  UsesUses  ComponentsComponents  Difference between HTML and DHTMLDifference.

INTRODUCTION TO DHTML. TOPICS TO BE DISCUSSED……….  Introduction Introduction  UsesUses  ComponentsComponents  Difference between HTML and DHTMLDifference.
4.1 JavaScript Introduction

4.1 JavaScript Introduction
Prevent Cross-Site Scripting (XSS) attack

Prevent Cross-Site Scripting (XSS) attack
SEG3210 DHTML Tutorial. DHTML DHTML is a combination of technologies used to create dynamic and interactive Web sites. –HTML - For creating text and image.

SEG3210 DHTML Tutorial. DHTML DHTML is a combination of technologies used to create dynamic and interactive Web sites. –HTML - For creating text and image.
Created by, Author Name, School Name—State FLUENCY WITH INFORMATION TECNOLOGY Skills, Concepts, and Capabilities.

Created by, Author Name, School Name—State FLUENCY WITH INFORMATION TECNOLOGY Skills, Concepts, and Capabilities.

Similar presentations

Ads by Google