• 登入
sketchucation logo sketchucation
  • 登入
⚠️ Libfredo 15.4b | Minor release with bugfixes and improvements Update

Adding attributes help

已排程 已置頂 已鎖定 已移動 Developers' Forum
29 貼文 8 Posters 1.6k 瀏覽 8 Watching
正在載入更多貼文
  • 從舊到新
  • 從新到舊
  • 最多點贊
回覆
  • 在新貼文中回覆
登入後回覆
此主題已被刪除。只有擁有主題管理權限的使用者可以查看。
  • L 離線
    lothcat
    最後由 編輯 2011年2月22日 下午5:55

    OK, so, now that I have that figured out, I'd like to know if there's a way to tell if a face is vertical or horizontal. It seems like face.plane would do that, but I've found frustratingly little about how plane works.

    I'm not sure of the board etiquette. Should I post this question as a new topic, or is this OK?

    1 條回覆 最後回覆 回覆 引用 0
    • T 離線
      TIG Moderator
      最後由 編輯 2011年2月22日 下午7:39

      @lothcat said:

      OK, so, now that I have that figured out, I'd like to know if there's a way to tell if a face is vertical or horizontal. It seems like face.plane would do that, but I've found frustratingly little about how plane works.
      I'm not sure of the board etiquette. Should I post this question as a new topic, or is this OK?

      If it stops here no new topic needed... but if you want to talk about faces some more make a new topic...
      Rather than face.plane try face.normal - that's the vector perpendicular to a face.
      So if face.normal==Z_AXIS [or [0,0,1]] it's facing vertically up or face.normal==Z_AXIS.reverse [or [0,0,-1]] if facing straight down.
      To test it a face is 'vertical' try if face.normal.z==0 - that is true as the normal has no element in the vertical [z].
      With a bit of thought you can contrive other tests - e.g. if face.normal.y.abs != 1 is true if the normal doesn't face exactly in either of the Y/green axes direction - i.e. it faces in any direction except directly to the front or back...

      TIG

      1 條回覆 最後回覆 回覆 引用 0
      • L 離線
        lothcat
        最後由 編輯 2011年2月22日 下午7:47

        Thank you!

        1 條回覆 最後回覆 回覆 引用 0
        • E 離線
          eneroth3
          最後由 編輯 2015年3月7日 上午9:57

          @dan rathbun said:

          No don't do that [make a hash into an array], you lose your keys!
          Make your hashes into strings with hashstr = hash.inspect()
          Save the hashstr into the dictionary.
          To read, get the hashstr from the dictionary.
          Then hash = eval(hashstr) to convert it back.

          I really wouldn't save a ruby string as an attribute and later eval it. It opens up for code injection and lets people run whatever malicious code they want on someone else's computer just by sending them a model made to take advantage of this vulnerability and wait for the moment where eval is called.

          My website: http://julia-christina-eneroth.se/

          1 條回覆 最後回覆 回覆 引用 0
          • T 離線
            tt_su
            最後由 編輯 2015年3月11日 下午12:34

            @eneroth3 said:

            I really wouldn't save a ruby string as an attribute and later eval it. It opens up for code injection and lets people run whatever malicious code they want on someone else's computer just by sending them a model made to take advantage of this vulnerability and wait for the moment where eval is called.

            +1 eval = evil

            1 條回覆 最後回覆 回覆 引用 0
            • D 離線
              driven
              最後由 編輯 2015年3月11日 下午3:18

              @unknownuser said:

              'he's good bad', but he ain't evil!

              I tend to agree with this**[anchor= goto=http://www.infoq.com/articles/eval-options-in-ruby:2ingvk9h]article[/anchor:2ingvk9h]**...

              eval has it's uses, that's why it's there...
              john

              learn from the mistakes of others, you may not live long enough to make them all yourself...

              1 條回覆 最後回覆 回覆 引用 0
              • E 離線
                eneroth3
                最後由 編輯 2015年3月11日 下午10:29

                @driven said:

                @unknownuser said:

                'he's good bad', but he ain't evil!

                I tend to agree with this**[anchor= goto=http://www.infoq.com/articles/eval-options-in-ruby:13hbt2pf]article[/anchor:13hbt2pf]**...

                eval has it's uses, that's why it's there...
                john

                There are cases where it's fine to use. I use it myself in my attribute editor plugin for instance to let people assign things such as 1.m or Sketchup.active_model.selection.first.length to an attribute. However executing code saved in a model opens up for people to forge an evil model that causes the code to be executed without the user knowing about it.

                Also arrays are allowed and can be used instead of hashes when it comes to just serializing data.

                My website: http://julia-christina-eneroth.se/

                1 條回覆 最後回覆 回覆 引用 0
                • S 離線
                  slbaumgartner
                  最後由 編輯 2015年3月11日 下午11:31

                  I agree with Julia. Using eval is a bit like owning a pet tiger: you have to be careful what you put in the cage with it!

                  1 條回覆 最後回覆 回覆 引用 0
                  • T 離線
                    tt_su
                    最後由 編輯 2015年3月12日 上午9:43

                    Yea, like you wouldn't feed raw user data to your database, you don't want to feed user data to eval. (I consider anything read in from the system or file to be "user data"). Validate and sanitize - this is the stuff you want to find a library that has solved all the edge cases for you.

                    1 條回覆 最後回覆 回覆 引用 0
                    • 1
                    • 2
                    • 2 / 2
                    • 第一個貼文
                      最後的貼文
                    Buy SketchPlus
                    Buy SUbD
                    Buy WrapR
                    Buy eBook
                    Buy Modelur
                    Buy Vertex Tools
                    Buy SketchCuisine
                    Buy FormFonts

                    Advertisement