Make dojo.io.cookie.[set|get]ObjectCookie() work with nested objects

[wolfram@…]

I wanted to store nested objects into a cookie, i.e.

dojo.io.cookie.setObjectCookie("my_cookie", {window: {name: "debug", opened: true}}, 30);

Until now it only worked with one level of nesting, here is the update ...

[wolfram@…]

io.cookie.diff

[sjmiles]

If the idea is to serialize some object to place in cookie, shouldn't we use an existing serializer (e.g. JSON) rather than write a new one?

[wolfram.kriesing@…]

Using an existing parser might be a good idea. eval is just for security issues not really feasible, but a json parser written in js might help here, but then you also want to set certain limitations on the parser, ie. that it only parses simple types, such as string, number, boolean etc. otherwise you would have the same security problems as with eval. What i wrote up was just a simple serialization into a proprietary format. {x: {y: "z"}} is converted to x.y=z ... What way should be gone: JSON parser with configurable limitations or the proprietary format?

[sjmiles]

I'm not sure what we gain from proprietary format since JSON is simple and well-defined. There are existing implementations of 'safe' JSON decoders (Crockford has one).

Whether we write a custom safe-json decoder, use an existing implementation, or write some other transcode, it should be separate from the cookie code itself. In other words, the cookie code should invoke a serializer interface (decouple the implementation).

Thanks, hope this is clear.

[dylan]

any resolution on this one? moving to 0.5

[sjmiles]

Think its best not to build in serialization into cookie API. Client code can choose it's own serialization.