This site was built to compliment the existing NetSuite Professionals Slack Community by adding a means for members to easily find answers to common questions and to create a searchable database of those questions and answers.

NetSuite Professionals

Hi, is there a way to do user input validation? Like, PHP has htmlspecialchars() to turn special characters into HTML entities. Are there similar functions in SS?

<https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/escape|escape> or <https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/encodeURIComponent|encodeURIComponent>

although to be honest, most of the time it doesnt matter, the characters are usually escaped when storing in fields

mostly because the html forms do that automatically

if you mean angle brackets, quotation marks, and ampersands., then ive lazily used  <https://system.netsuite.com/app/help/helpcenter.nl?fid=section_4392331185.html|xml.escape>

Oh that's a good point, well, I wonder if NetSuite does security handling of this in the backend by default?

I might ask NetSuite about that directly. I'm guessing it's a yes, since it's a cloud system etc...

Thanks for your two links by the way, very useful!