Hello Pradip,

Hope you're doing well.

Responding to your questions:

1) The Library is one of the layers of the 4-Layer Canvas (now it is referred as Architecture Canvas). But inside of each layer, there are several sub-layers. This Library layer is supposed to have the foundation modules of your application. It is not composed only by services to connect to external resources. Other modules like reusable UI patterns, themes and templates, reusable libraries and plugins are also part of this layer.

Please check this documentation: https://success.outsystems.com/Support/Enterprise_Customers/Maintenance_and_Operations/Designing_the_Architecture_of_Your_OutSystems_Applications/The_Architecture_Canvas

2) About CSRF (Cross Site Request Forgery) attack, please check this documentation that may help you:

https://success.outsystems.com/Support/Security/How_the_OutSystems_Platform_Helps_You_Develop_Secure_Applications/Protecting_OutSystems_apps_from_Cross_Site_Request_Forgery_attacks

Hope that this helps you!

Kind regards,

Rui Barradas

Hi Pradip,

Putting themes in the foundation layer, has nothing to do with CSRF attackes. Please read here how to Protecting OutSystems apps from Cross Site Request Forgery attacks.

The Architecture Canvas is an OutSystems architecture tool to make the design of Service-Oriented Architectures (SOA) simple. It promotes the correct abstraction of reusable (micro)services and the correct isolation of distinct functional modules, in cases where you are developing and maintaining multiple applications that reuse common modules.

Putting a theme in the foundation as such does not expose it to external connections, but makes it reusable for multiple OutSystems applications.

Regards,

Daniel