How to detect `eval` calls when addressing UI5 modules at runtime?
As part of the preparation for the "Asynchronous Module Loading" enablement in FLP, one of its prerequisites is making sure that no eval call is triggered due to the HTML document being served with the response header Content-Security-Policy and its directive script-src omitting unsafe-eval.
Is there a feature in UI5 that logs all eval calls during runtime triggered by incorrectly addressed modules?
Solution
Resolution
- Open the browser console (F12) and ensure that "Warnings" logs are visible.
- Start the app with the UI5 config URL parameter
sap-ui-xx-debugModuleLoading=trueand make sure that the debug mode is not unnecessarily enabled. - In the browser console, filter by "(using eval)".
Example
Given
sap.ui.define([
"sap/ui/core/mvc/Controller",
"sap/ui/comp/library",
], (Controller, sapUiCompLib) => {
// ...
const ValueHelpRangeOperation = sapUiCompLib.valuehelpdialog.ValueHelpRangeOperation; // enum from module "sap/ui/comp/library"
const ValueHelpDialog = sapUiCompLib.valuehelpdialog.ValueHelpDialog; // control from module "sap/ui/comp/valuehelpdialog/ValueHelpDialog"
return Controller.extend("my.controller.MyController", {
onSomething: function () {
const vhDialog = new ValueHelpDialog(/*...*/);
sap.ushell.Container/*...*/;
// ...
},
// ...
});
});
Logs
Solution
Declare the missing dependency to "sap/ui/comp/valuehelpdialog/ValueHelpDialog".
No need to declare transitive dependencies that were also logged ( : ...).
sap.ui.define([
"sap/ui/core/mvc/Controller",
"sap/ui/comp/library",
"sap/ui/comp/valuehelpdialog/ValueHelpDialog" // <-- Declare the module dependency
], (Controller, sapUiCompLib, ValueHelpDialog) => {
// ...
const ValueHelpRangeOperation = sapUiCompLib.valuehelpdialog.ValueHelpRangeOperation; // enum from module "sap/ui/comp/library"
// const ValueHelpDialog = sapUiCompLib.valuehelpdialog.ValueHelpDialog; <-- Remove
return Controller.extend("my.controller.MyController", {
onSomething: function () {
const vhDialog = new ValueHelpDialog(/*...*/);
sap.ui.require([
"sap/ushell/Container"
], Container => Container/*...*/);
// ...
},
// ...
});
});
Module name to declare as dependency can be seen in the UI5 API reference:
Other guidelines can be found in the UI5 documentation topic Best Practices for Developers.
- Define Color of ObjectStatus Text
- "Modules that use an anonymous define() call must be loaded with a require() call"
- Why Is My Main Controller Being Called Twice?
- ResourceBundle error: "value for parameter 'aArgs' is not of type array"
- Why does extending prototypes of OpenUI5 controls not work consistently?
- How to deploy UI5 app to ABAP Repository in SAP BAS?
- How can I get actual height of application after rendering?
- Negative Test in SAPUI5 Using OPA
- Methods assigned in XML fragment not triggered
- Linking multiple local projects via UI5 Tooling workspace fails
- How to extend a standard SAP Fiori freestyle application with VS code?
- Why are certain app extensions from standard app ignored by framework?
- Demo Kit provides samples for code. How to actually use those locally?
- Get filtered data only from SapUi 5 Table
- How to avoid "Synchronous XMLHttpRequest on the main thread" warning in UI5?
- How to find loading bottleneck of a slow-loading SAPUI5 app
- How to reduce sequential requests in SAPUI5?
- What is the "onUI5Init" global event?
- Global Model Not Accesible
- How to properly attach and detach event handler in UI5
- sap.ui.core.util.File.save file corrupted?
- How to add a line break to text in UI5?
- How to Fix "String as JavaScript" Errors in FLP? (Async Module Loading)
- Formatter not called despite passing the same binding path
- Change the Increment Value of a SapUI5 Input (type: Number)
- SAPUI5 OData V4 Read
- SAPUI5: FileUploader Not Working
- How to bind this using fomatter from the controller?
- How to import ES Module into UI5 controller
- Separate homeicons for android and ios using sap.m.Shell