• last updated 13 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
bump version number to 5.9.1d15

- bump version number to 5.9.1d14

- imporve ad_html_qualify_links in various ways (better argument name, better comments, removed superflous slashes, ...

  1. … 1 more file in changeset.
- adding "-force" parameter to security::csp::require

- bump version number to 5.9.1d12

  1. … 1 more file in changeset.
- Added support for W3C Content Security Policy(CSP)

* For details about CSP, see https://www.w3.org/TR/CSP/

* New calls:

security::csp::nonce:

Generate a CSP nonce token token

security::csp::require /directive/ /value/:

Add a requirements of a page to the CSP in order to generate

later a tailored policy with the minimal permissions for

this page. For example, the following requirement is

currently added per default to the oacs-master template to

permit style tags and style attribites in the markup.

security::csp::require style-src 'unsafe-inline'

security::csp::render:

Generate a policy from the requirements

* Added Kernel Parameter CSPEnabledP to activate/desctivate CSP

(default on)

- Bump version numbers

acs-tcl to 5.9.1d11

acs-bootstrap-installer to 5.9.1d4

acs-kernel to 5.9.1d17

  1. … 7 more files in changeset.
- fix bug for host-node-mapped subsites: on the (subsite) admin-page

of a host-node-mapped subsites, the link to site-wide-admin should

always point to the main site.

- add new helper function util::configured_location to address the bug

above to return the configured location as configured for the

current network driver. While [util_current_location] honors the

virtual host information of the host header field,

util::configured_location returns the main configured location

(probably the main subsite).

- extend [util_driver_info]

* make the passed-in array name optional and to return always a dict

* include the configured host name in the result (dict/array)

- add cross references via @see to make it easier to switch between

related functions

- bump version number of acs-tcl to 5.9.1d10 and acs-subsite to

5.9.1d7 to address dependencies

  1. … 6 more files in changeset.
- Add SQL schema acs_permission to allow to call sql-functions for

Oracle and PostgreSQL in exactly the same way

- Move postgres permission function to the new neamespace and provide

stubs for backward compatibility

- New function permission::get_parties_with_permission

to support a restricted form of reverse lookup for permssions

in order to reduce the dependencies on

acs_object_party_privilege_map for PostgreSQL

- make upgrade scripts more robust (support repeated loading)

- bump verison number of acs-tcl to 5.9.1d9

- bump version number of acs-kernel to 5.9.1d11

  1. … 12 more files in changeset.
- use consistently "clock clicks -microseconds"

- bump version number to 5.9.1d8

  1. … 1 more file in changeset.
- bump version numnber to 5.9.1d7

- add page_contract_filter for return_url

- add generic "name not valid" message key

- bump version to 5.9.1d6

  1. … 2 more files in changeset.
- check for invalid UTF-8 characters in url (would lead to errors at

least in postgres).

- bump version number to 5.9.1d5

  1. … 1 more file in changeset.
- sharpen the comment and warning about unintended uses of db_nextval

- use a sequence name without t_ prefix for anon_func_seq

- bump version number to 5.9.1d4

  1. … 4 more files in changeset.
- fix typo in parameter name TclTraceLogSeverities

  1. … 5 more files in changeset.
- don't try to show broken richtext editor on mobile devices

(it is better to show plain textarea than a display where nothing can be entered)

  1. … 5 more files in changeset.
- fix lob interface (especially for portraits)

  1. … 5 more files in changeset.
- new function "ad_exception" to check, if an exception was raised be OpenACS

  1. … 1 more file in changeset.
- bump version numbers from 5.9.0b* to 5.9.0

  1. … 32 more files in changeset.
- bump version numbers to 6.9.0 (oacs) / 2.9.0 (dotlrn)

  1. … 72 more files in changeset.
- backport of oacs-5-9 to reflect changes of HTML markup affecting apm_get_repository_channels

  1. … 1 more file in changeset.
- bump version numbers

  1. … 75 more files in changeset.
*** empty log message ***

  1. … 75 more files in changeset.
- bump version numbers and update dependencies

  1. … 2 more files in changeset.
- make pretty string of acs-tcl and acs-admin more conformant

  1. … 3 more files in changeset.
- optional performance boost for site-nodes:

the site-node code contains an optional performance booster,

that speeds up site-node operations froma factor of 2 to

several thousand times. The performance boost ist just

available for the time being for PostgreSQL, XOTcl2 and

NaviServer and is only activated, when these componentes

are available.

- bump version numbers

  1. … 4 more files in changeset.
Bumping up core packages version to 5.10.0d1

  1. … 24 more files in changeset.
- bump version number to 5.8.3d3

- add tcltrace procs, deactivated by default, can be activated via package parameter "TclTraceLogServerities" and "TclTraceSaveNsReturn" of acs-tcl "Tcl Library". This additions allows to add actions, whenever "ns_log" or "ns_return" are called.

The trace for "ns_log" adds the selected log entries to be reported via the developer support.

The trace for "ns_return" captures the output of the server returned via "ns_return" in files, which are useful for HTML validation (e.g. via the W3C validator)

  1. … 2 more files in changeset.
- protect against potential xss attack

  1. … 1 more file in changeset.
- bump version number to allow install-from-repo

Merging back to HEAD branch oacs-5-8 (using tag vg-merge-oacs-5-8-from-20141027).

  1. … 2547 more files in changeset.