In the example above, the private variable author is a string. However, if author was an object, then the getAuthor method would return it by reference to the outside world (remember that primitive variables are passed by value and objects are passed by reference).
Directly returning a private object reference from a privileged method essentially cancels privacy. Anyone can now make changes to the author object. Let's look at an example.
Run
- function Book(author, price) {
- var details = {
- "author": author,
- "price": price
- };
- this.getDetails = function () { // anti pattern
- return details; // returns reference to details
- };
- }
- var book = new Book("James Joyce", "29.50");
- var bookDetails = book.getDetails();
- bookDetails.author = "Jane Austen"; // modifies private data
- bookDetails.price = "99.95";
- alert(book.getDetails().author); // => Jane Austen
- alert(book.getDetails().price); // => 99.95
Although the details variable is private, the method getDetails() passes it by reference to the code outside the object. Therefore it is exposed to modification by clients of the Book which is shown in the last four statements in which both the author and price are updated.
One possible solution would be to clone the details object in the getAuthor() method and then return the clone. Alternatively you could return a new object that contains only those properties of the details object that the outside code is interested in and return it.
No comments:
Post a Comment