Is your feature request related to a problem? Please describe.
Currently, the same token syntax is used on both client and server sides (via {{{xxx}}} markup).
In server side query templates, the :xxx tokens are available when leveraging the Database.queryWithBinds() method.
In order to enhance security (and avoid bypassing escaping on the queries), it would be great to support the native
SOQL token merge capability.
Describe the solution you'd like
Refactor server side context merge to support :xxx tokens, while ensuring backward compatibility with previous solutions.
Is your feature request related to a problem? Please describe. Currently, the same token syntax is used on both client and server sides (via
{{{xxx}}}
markup). In server side query templates, the:xxx
tokens are available when leveraging theDatabase.queryWithBinds()
method. In order to enhance security (and avoid bypassing escaping on the queries), it would be great to support the native SOQL token merge capability.Describe the solution you'd like Refactor server side context merge to support
:xxx
tokens, while ensuring backward compatibility with previous solutions.Describe alternatives you've considered N/A
Additional context N/A