• last updated 4 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
added link to cluster info to acs-admin main page when cluster is enabled

improved spelling

    • -1
    • +1
    ./packages/xowf/lib/inclass-quiz-answer.wf
    • -1
    • +1
    ./packages/xowf/www/resources/inclass-exam.js
clean dirty editor buffer

improved spelling

    • -3
    • +3
    ./packages/xotcl-core/tcl/03-doc-procs.tcl
Made startup more robust

- handle not-yet-defined callback procs gracefully

updated version number of jquery (introduced not long ago)

Improved readability of configuration parameter "parameterSecret"

- Switched to camelCase for better readabilty and uniformity

- NaviServer configuration parameters are case insensitive, so no danger for backward compatibility

    • -4
    • +4
    ./packages/acs-tcl/tcl/security-init.tcl
    • -6
    • +6
    ./packages/acs-tcl/tcl/security-procs.tcl
    • -2
    • +2
    ./packages/acs-tcl/tcl/utilities-procs.tcl
    • -1
    • +1
    ./packages/xotcl-core/tcl/01-debug-procs.tcl
    • -3
    • +3
    ./packages/xowiki/tcl/form-field-procs.tcl
Made .xql file more consistent by using dot notation

OpenACS for PostgreSQL uses since the release of 5.10.0 the dot

notation for the SQL function acs_permission.permission_p() to ease

portability with Oracle.

In general, one has to be careful that during an upgrade from an older

OpenACS version (e.g. 5.9.*) directly to 5.10.1 to upgrade process

does not depend on the dot notation, otherwise the upgrade will fail.

One should be safe for most UI functions in this respect.

Expand permission test suite to include definition of custom privileges in a couple of setups

Provide an automated test of "advanced" permission features: permission inheritance via group, or via the permission context

Use a simpler approach to achieve the intended result, which does not rely on events

    • -19
    • +8
    ./packages/xowiki/tcl/chat-procs.tcl
Keep comments on the server side

    • -7
    • +10
    ./packages/xowiki/tcl/chat-procs.tcl
JS upstream updates

- Updated highcharts to 11.4.0 (when highcharts package is not installed)

- Updated jquery-3.6.3 to jquery-3.7.1.

- Bumped version number to 5.10.1b10

    • -2
    • +2
    ./packages/xowiki/tcl/resource-init.tcl
Ensure chat javascript is executed only when the chat itself is actually a part of the DOM

This may not be the case at the time of rendering, e.g. because the chat is rendered inside of a <template> tag and appended to the document at a later moment.

    • -2
    • +19
    ./packages/xowiki/tcl/chat-procs.tcl
JS upstream updates

- Updated upstream library to 11.4.0

- Bumped version to 0.5

    • -2
    • +2
    ./packages/highcharts/tcl/resource-procs.tcl
JS upstream updates

- Updated jquery-3.6.3 to jquery-3.7.1.

- Bumped version to 5.10.1b2

JS upstream updates

- Updated boostrap5 to 5.3.3

- Updated jquery-3.6.3 to jquery-3.7.1.

- Bumped version to 5.10.1b4

file jquery-3.7.1.js was initially added on branch oacs-5-10.

    • -0
    • +0
    ./packages/xowiki/www/resources/jquery/jquery-3.7.1.js
file jquery-3.7.1.min.js was initially added on branch oacs-5-10.

    • -0
    • +0
    ./packages/xowiki/www/resources/jquery/jquery-3.7.1.min.js
Untangle if logics

    • -23
    • +30
    ./packages/acs-tcl/tcl/text-html-procs.tcl
Reject URLs displaying multiple protocols

    • -1
    • +27
    ./packages/acs-tcl/tcl/text-html-procs.tcl
Test further improvement of injection attempt by penetration tests

Harden page contract

    • -2
    • +2
    ./packages/acs-subsite/www/permissions/one.tcl
Strenghten validation against smarter attempts to disguise the javascript: protocol

    • -10
    • +17
    ./packages/acs-tcl/tcl/text-html-procs.tcl
Replicate a smarter attempt by a penetration tool to disguise the javascript: protocol

    • -11
    • +24
    ./packages/acs-tcl/tcl/test/text-html-procs.tcl
Add new extension mjs, for Javascript modules, to the Javascript mime type

file upgrade-5.10.1b3-5.10.1b4.sql was initially added on branch oacs-5-10.

file upgrade-0.6.2d6-0.6.2d7.sql was initially added on branch oacs-5-10.

added missing function args

reduce verbosity

    • -4
    • +4
    ./packages/xotcl-core/tcl/05-db-procs.tcl