Sitecore – Server side evaluation of Sitecore Forms conditions

In my previous post i’ve described how you can bypass the Sitecore Forms validation, and a workaround to solve the problem. This workaround however breaks the conditional required fields which are the fields that will be hidden or shown depending on the conditions that you can configure on a field. The conditions are evaluated only …

Sitecore Forms – Rendering friendly field values for EXM

Sitecore 9.2 introduces the newly and improved submit action Send Email Campaign Message that can be used within Sitecore Forms, to send an EXM Campaign message to a contact. Within this submit action you can configure which fields from the form should be passed to EXM as an token, after which you can use the …

Sitecore Forms – Bypassing validation and overposting viewmodels

TLDR; Sitecore Forms is vulnerable for overposting which enables end-users to disable field validations. I’ve noticed that Sitecore Forms uses the default ASP.NET MVC model binding, and it binds the posted model to the FieldViewModel. As there is no validation on which properties of the FieldViewModel can be bound, we can post fields that should not …

Sitecore Forms – Custom Value Provider for multi-value fields

Sitecore Forms offers the possiblity for a content editor to prefill certain fields within the Form by using Value Providers. Sitecore does not ship any default value providers out of the box. Sitecore has a great example that uses a custom Value Provider to prefill form fields based on the values that are located within …