Skip to Content

Archived discussions are read-only. Learn more about SAP Q&A

SQL Injection flaws via ODATA

Hi All,

I was reading through the below link:

» SAP HANA XS Interview Questions and Answers

This link quotes the below:

Qs. What is benefit of XOData compared to XSJS?

In HANA XSOData, there is a OData framework which provide many functionalities and we only need to provide details like data source, association etc. This is very helpful for developers as coding effort is almost zero. OData framework also takes care of security aspects like SQL injection, XSRF etc.

While in XSJS, we need to code everything our own. This results into more coding effort. We also need to take care of security aspects, performance etc.

Since this not an official SAP website, I would like some confirmation on whether the XSODATA indeed offers protection against SQL Injection flaws.

Let me know.

Thanks,

Shyam Uthaman

replied

TThe generic XSODATA, regardless of what was already posted incorrectly in this thread, does protect against SQL Injection.

0 View this answer in context
Not what you were looking for? View more on this topic or Ask a question