• last updated 8 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
imporve spelling

  1. … 6 more files in changeset.
Replace obsolete function bitfromint4() by cast

  1. … 2 more files in changeset.
Replace obsolete funktion bittoint4() by cast

  1. … 2 more files in changeset.
Fix typos

  1. … 52 more files in changeset.
Portrait management reform and correction

Moved logics to create a portrait in a proc in order to reuse it in other places

such as picture retrieval services (e.g. Bach picture retrieval at WU). Turns out

we were not doing our homeworks here: when the portrait is created into CR, a

cr_child_rel is created. When the portrait was erased though, this was not cleaned

up propely, leaving dangling acs_objects with no reference in cr_child_rels table.

On busy sites, this can grow in the ten thousands order of magnitude. Changes include

also fix for this behavior and tuples cleanup.

  1. … 16 more files in changeset.
  1. … 2 more files in changeset.
Use PostgreSQL 9.0 compatible idioms in 'sql' stored procedure

  1. … 2 more files in changeset.
Add kernel parameter SecureSessionCookie

Allow to set the session cookie as secure (default 0).

This parameter should only be set, when ALL requests to the site requiring a cookie

are over https.

merged changes from the oacs-5-9 branch and resolved conflicts

  1. … 7834 more files in changeset.
- do not depend on beta or development versions

- make sure that released versions are not beta or development

- align version numbers (e.g. use also 5.9.1 for xotcl-core)

- bump version numbers to 5.9.1

  1. … 83 more files in changeset.
bump version numbers to 5.9.1b9 respectively to 2.9.1b9 to prepare for release

  1. … 91 more files in changeset.
Support internationalization via [group::get_member_state_pretty] and

other related messages concerning state changes.

  1. … 5 more files in changeset.
Fix spelling errors

  1. … 48 more files in changeset.
Fix wrong version number

Added missing data model upgrade from version 5.2, affecting long lived installations.

  1. … 1 more file in changeset.
- bump version number of OpenACS to 5.9.1b3 and DotLRN to 2.9.1b3

  1. … 79 more files in changeset.
Bump version numbers for OpenACS 5.9.1b1

  1. … 81 more files in changeset.
Added new database utility to retrieve primary keys of a table.

Source for the postgres version: https://wiki.postgresql.org/wiki/Retrieve_primary_key_columns

Source for the oracle version: http://stackoverflow.com/questions/4749650/function-that-would-return-the-data-retreived-from-a-select-query-oracle

  1. … 4 more files in changeset.
Added new database functions to check for various properties and constraints in database metadata:

- foreign key constraint

- unique constraint

- not null constraint

- get column default value

  1. … 4 more files in changeset.
- add nonces to script tags

- add body handlers

  1. … 7 more files in changeset.
- Added support for W3C Content Security Policy(CSP)

* For details about CSP, see https://www.w3.org/TR/CSP/

* New calls:

security::csp::nonce:

Generate a CSP nonce token token

security::csp::require /directive/ /value/:

Add a requirements of a page to the CSP in order to generate

later a tailored policy with the minimal permissions for

this page. For example, the following requirement is

currently added per default to the oacs-master template to

permit style tags and style attribites in the markup.

security::csp::require style-src 'unsafe-inline'

security::csp::render:

Generate a policy from the requirements

* Added Kernel Parameter CSPEnabledP to activate/desctivate CSP

(default on)

- Bump version numbers

acs-tcl to 5.9.1d11

acs-bootstrap-installer to 5.9.1d4

acs-kernel to 5.9.1d17

  1. … 7 more files in changeset.
- add kernel parameter to make ad_session_id cookies secure (useful on sites, where all sessions are via https, improves security rating on e.g. mozillas observatory tool)

  1. … 1 more file in changeset.
composition-rel reform:

- apply changes developed by Michael Steigman for making rel-types

configurable whether these should be composable or not

(default is: these are composable, which was up to now the only

choice)

- improved documentation of log argument lists of SQL functions

- Background:

http://openacs.org/forums/message-view?message_id=5330734

http://openacs.org/forums/message-view?message_id=4031049

- bump version number of acs-kernel to 5.9.1d16

  1. … 34 more files in changeset.
- added kernel parameter MaxUrlLength (default 2000) to remove

hard-coded length in request-processor-procs.

- lifted data model restriction of 100 characters for url-segments

(changing types of "site_nodes.name" from "varchar(100)" to "text")

(PostgreSQL only)

- site_node__node_id

* use built-in string functions instead of characterwise loop

* use default for last argument

* Improve source-code documentation

- bumped version number of kernel to 5.9.1d15

  1. … 3 more files in changeset.
- remove dependency on acs_object_party_privilege_map

  1. … 2 more files in changeset.
- added new function acs_permission.permissions_all as replacement for acs_permssions_all

- removed all dependencies on acs_permssions_all in kernel (such that acs_object_paths and acs_object_context_index can be dropped for PostgreSQL)

  1. … 8 more files in changeset.
- Add SQL schema acs_permission to allow to call sql-functions for

Oracle and PostgreSQL in exactly the same way

- Move postgres permission function to the new neamespace and provide

stubs for backward compatibility

- New function permission::get_parties_with_permission

to support a restricted form of reverse lookup for permssions

in order to reduce the dependencies on

acs_object_party_privilege_map for PostgreSQL

- make upgrade scripts more robust (support repeated loading)

- bump verison number of acs-tcl to 5.9.1d9

- bump version number of acs-kernel to 5.9.1d11

  1. … 12 more files in changeset.
- replace obsolete all_object_party_privilege_map by acs_object_party_privilege_map

- bump version number to 5.9.1d10

  1. … 6 more files in changeset.
Remove type discrepancy introduced in 2002:

- acs_object_types.object_type has type varchar(1000), while

- acs_object_types.supertype has type varchar(100)

... several more data types are involved, using acs_object_types.object_type as foreign key

  1. … 5 more files in changeset.
- Slightly faster (around 10%) versions for the base permission query functions.

In the new versions the lookup of acs__magic_object_id was moved out of the loop.

  1. … 2 more files in changeset.