• last updated 13 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
- backport from head to ease using HEAD modules

- harden page contracts

- use export_vars for url-generation

- improve validity of HTML

    • -1
    • +1
    /openacs-4/packages/download/www/help.adp
- fix typos

- improve validity of HTML

- fix HTML validity of plsql-subprogram-one, proc-browse and tcl-proc-view

- strengthen page contracts

- use stored procedure sec_session_property__upsert

- add stored procedure sec_session_property__upsert to address concurrency problems with

updates in sec_session_properties; implementation for PostgreSQL and

Oracle are added, latter is not tested.

- bump version number to 5.9.0d4

- adjust return status information

- add function args missed by earlier upgrades

- bump version numbers

    • -2
    • +2
    /openacs-4/packages/forums/forums.info
- provide a friendly message in case the xowiki_form_instance_item_index was not setup correctly

    • -2
    • +9
    /openacs-4/packages/xowiki/tcl/xowiki-procs.tcl
- increase verbosity of upgrade script

- don't build db-stubs for trigger functions

- strengthen page-cpntracts

- add colon to the alloed characters of a token for page-contracts, to make it usable for api-browser

- fix bug, when "dfs" was specified

Example: http://openacs.org/search/search?q=Spam&dfs=m3

- fix for bug #3256

- provide a simple templated error page

- fix typo

- get rid of the pesky "MISSING FORMWIDGET: search:search:formbutton:ok" message

- protect against attacks against form:id

- protect against i18n message key substitution in ds_comments (in case the message i18n needs variables, this will fail anyhow)

- handle cases, where __new_p is not set in form

- use 422 (Unprocessable Entity) for complaints, which are mostly coming from page-contracts

- validate contents of __new_p

- use tcl8.5 idioms

- improve spacing

- modernize Tcl

- standardize url construction to protect against injection attacks

- standardize url construction to protect against injection attacks

  1. … 5 more files in changeset.
- standardize url construction to protect against injection attacks

  1. … 10 more files in changeset.