OpenACS

antoniop
committed
MAIN:antoniop:20181217103911
on 17 Dec 18
Replace single quotes wuith double quotes in javascript expressions involving acs_ListBulkActionClick

this is really needed only for the UR… Show more
Replace single quotes wuith double quotes in javascript expressions involving acs_ListBulkActionClick

this is really needed only for the URL part, but was done on the name as well for consistency. The reason

is even a properly encoded URL could still contain single quotes, therefore breaking the expression,

while double quotes are expected to be encoded in valid, urlencoded URLs. This relies on trusting the developer

to properly encode URLs, which should be expected. An alternative could involve active escaping of

javascript special characters by e.g. ad_js_escape.

Show less

/tcl/action-procs-oracle.xql (+0 -31)
1 1 <?xml version="1.0"?>
2 2 <queryset>
3 3   <rdbms><type>oracle</type><version>8.1.6</version></rdbms>
4 4
5     <fullquery name="workflow::action::new.insert_action">
6       <querytext>
7           insert into workflow_actions
8               (action_id, workflow_id, sort_order, short_name, pretty_name, pretty_past_tense,
9                edit_fields, assigned_role, always_enabled_p, description, description_mime_type, timeout_seconds)
10         values (:action_id, :workflow_id, :sort_order, :short_name, :pretty_name, :pretty_past_tense,
11                 :edit_fields, :assigned_role_id, :always_enabled_p, :description, :description_mime_type, :timeout_seconds)
12       </querytext>
13     </fullquery>
14  
15 5   <partialquery name="workflow::action::edit.update_timeout_seconds_name">
16 6     <querytext>
17 7       timeout_seconds
18 8     </querytext>
19 9   </partialquery>
20 10
21 11   <partialquery name="workflow::action::edit.update_timeout_seconds_value">
22 12     <querytext>
23 13       :attr_timeout_seconds
24 14     </querytext>
25 15   </partialquery>
26 16
27 17   <fullquery name="workflow::action::get_all_info_not_cached.action_info">
28 18     <querytext>
29 19         select a.action_id,
30 20                a.workflow_id,
31 21                a.sort_order,
32 22                a.short_name,
33 23                a.pretty_name,
34 24                a.pretty_past_tense,
35 25                a.edit_fields,
36 26                a.trigger_type,
37 27                a.parent_action_id,
38 28                (select short_name from workflow_actions where action_id = a.parent_action_id) as parent_action,
39 29                a.assigned_role as assigned_role_id,
40 30                (select short_name from workflow_roles where role_id = a.assigned_role) as assigned_role,
41 31                a.always_enabled_p,
42 32                fa.new_state as new_state_id,
43 33                (select short_name from workflow_fsm_states where state_id = fa.new_state) as new_state,
44 34                a.description,
45 35                a.description_mime_type,
46 36                a.timeout_seconds
47 37         from   workflow_actions a,
48 38                workflow_fsm_actions fa
49 39         where  a.workflow_id = :workflow_id
50 40           and  a.action_id = fa.action_id (+)
51 41         order by a.sort_order
52 42     </querytext>
53 43  </fullquery>
54 44
55     <fullquery name="workflow::action::callback_insert.select_sort_order">
56       <querytext>
57           select nvl(max(sort_order),0) + 1
58           from   workflow_action_callbacks
59           where  action_id = :action_id
60       </querytext>
61     </fullquery>
62  
63     <fullquery name="workflow::action::edit.insert_allowed_role">
64       <querytext>
65           insert into workflow_action_allowed_roles
66           select :action_id,
67                   (select role_id
68                   from workflow_roles
69                   where workflow_id = :workflow_id
70                   and short_name = :allowed_role) as role_id
71           from dual
72       </querytext>
73     </fullquery>
74  
75  
76 45 </queryset>