• last updated 3 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
merge with missing files

  1. … 1459 more files in changeset.
improved spelling

  1. … 14 more files in changeset.
"An iframe which has both allow-scripts and allow-same-origin for its sandbox attribute can remove its sandboxing"

See e.g. https://cloud.google.com/blog/products/data-analytics/iframe-sandbox-tutorial

We set in xooauth/tcl/lti-procs.tcl a restrictive default (all sandboxing restrictions are applied by default). Users should relax it according to their embedded application.

xooauth/www/admin/lti-test.tcl is not really a productive file, so we set the already hardcoded value to no-sandboxing and note that this would be appropriate.

  1. … 1 more file in changeset.
remove old-style idiom

fix typo

use oauth state to transport a nonce and a return_url

  1. … 2 more files in changeset.
fix typo

Added support for using GitHub as an identity provider

The handler allows using GitHub as an identity provider for

logins. The GitHub account of the user must have an email address

configured. Optionally, new OpenACS accounts can be created based on

the identity data provided from GitHub.

This functionality is very similar to using Azure accounts via the

Microsoft identity platform provider.

Setup instructions will follow soon.

  1. … 3 more files in changeset.
file github-login-handler.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./github-login-handler.tcl
file github-login-handler.adp was initially added on branch oacs-5-10.

    • -0
    • +0
    ./github-login-handler.adp
Added support for v2.0 for "Microsoft identity platform ID tokens"

  1. … 1 more file in changeset.
Added preliminary support for Microsoft identity platform ID tokens

  1. … 2 more files in changeset.
file azure-login-handler.adp was initially added on branch oacs-5-10.

    • -0
    • +0
    ./azure-login-handler.adp
file azure-login-handler.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./azure-login-handler.tcl
removed obsolete index.vuh file

Disable vuh, add remarks

avoid call to deprecated function, simplify code

Aolserver/Naviserver builtin ns-parsequery already embeds URL decoding

Use the new 'url' input type widget

  1. … 1 more file in changeset.
Use naviserver api to parse URL variables

  1. … 1 more file in changeset.
added LTI test page

file lti-test.adp was initially added on branch oacs-5-10.

file lti-test.tcl was initially added on branch oacs-5-10.

file index.vuh was initially added on branch oacs-5-10.

initial checkin of xooauth

With the friendly permissions of Knowledge Markets https://km.at/

  1. … 9 more files in changeset.