• last updated 11 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
- textarea: added attribute "autosave"

- set autosave attributes in text_fields, when "multiple_lines" was specified.

- remove for the time being "hkey" from "non_cached_instance_var_patterns",

since this was recently fixed (TODO: check regression test and reactivate it later)

- new Externally callable method: autosave-attribute:

this is a simplified version of "save-attributes", but which does

NOT perform input validation, which might be a problem in case of partial input

- add "autosave-attribute" to all policies, where "save-attributes" was set

  1. … 7 more files in changeset.
improve SQL quoting

  1. … 5 more files in changeset.
www-make-live-revision: add support for "local_return_url" (when "return_url" is not specified)

improve spelling

  1. … 3 more files in changeset.
encode includelet key to achieve higher robustness and preserve url-parameter checking

  1. … 1 more file in changeset.
Add 'require_html_procs' to the ::xo namespace in order to be compliant with OpenACS naming standards

  1. … 3 more files in changeset.
fix issue #3373

  1. … 1 more file in changeset.
- Page.create_raw_form_field:

+ add flag to control nls_language (if not used, behave like before)

- form-usages:

+ add "-date_format" flag to control formatting of dates

+ use nls_language of embedding page for form-fields in includelet

- break overlong lines

  1. … 1 more file in changeset.
make_link calls: remove parameter "-with_entitites 0" since it is default

generalize alnum handling

- use is_disabled on more places instead of just checking for the instance variable

reduce verbosity

- Address issue #3374: improve "make_link", when a page is

passed in as an object, and NO "link" is provided.

Previously, the current url was used as a base_link, now "pretty_link"

of the object is used. This is particularly necessary, when folders

are used.

NOTICE: this is a potential incompatibility (found however no case in xowiki/xowf)

where the old behavior was expected.

- the argument "method" is now optional (useful, when no method should be invoked)

- improved documentation

- updates of message keys

  1. … 4 more files in changeset.
improve handling of disabled compound form fields

Strip of validation part before checking for the existence of query parameter

Fix typo in regexp command

improve comments, add dprecated warning

  1. … 1 more file in changeset.
Partly revert the last change, since variable "item_id" is hard-wired in the old-style "generate" method

remove ":instvar", improved comments

add ad_script_abort after ns_return

fix bug: never update references in the search renderer

before, it was possible that the search renderer added some

unsresolved references, although these were already fixed.

This was caused by the asynchrnous search queue, which

might have inserted such values.

The interface of Page.render was extended to be able to

specify, that the references should be always updated in the DB,

or just when unresolved references are encountered, or

never.

  1. … 3 more files in changeset.
improve input validaton on query variables

  1. … 7 more files in changeset.
security improvements: add value constraints for query parameters

improving comments, variable names, and indentation

  1. … 2 more files in changeset.
deactivate parameter "template", which can be used for XSS attacks. Not sure, who needs this. many thanks to Stefan Sobernig for noting!

Use appropriate idiom to retrieve return_url from the query parameter

This solves also the corner case of the empty folder

Use naviserver api as methods such as exists_parameter might not always be defined on the object (e.g. when we try to bulk delete an empty folder)

Make so that child-resources includlet redirects bulk-actions to the page it is included into (this is for most upstream scenarios the folder page as before) and make www-bulk_delete sensitive to the new return_url query parameter

  1. … 1 more file in changeset.
improve spelling

  1. … 6 more files in changeset.
child-resources: specify urls involved in bulk-delete action more explicitly in a way that the includelet will work also when put in other non-folder pages

  1. … 1 more file in changeset.