• last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
new API call util::potentially_unsafe_eval_p

Check content of the string to identify potentially unsafe content

in the provided string. The content is unsafe, when it contains

externally provided content, which might be provided e.g. via

query variables, or via user values stored in the database. When

such content contains square braces, a "subst" command on

theses can evaluate arbitrary commands, which is dangerous.

The new API call is used in "::xo::Package->return_page", where the

"subst" command stripped from its command substitution capabilities.

In case, command subsitution is needed, perform this prior this call.

bumped acs-tcl to 5.10.1d23

bumped xotcl-core to 5.10.1d13

  1. … 2 more files in changeset.
xo::Table::Action: added property "CSSclass"

This property exists already for all other ::xo::Table::* widgets.

Bumped version number to 5.10.1d12

prefer adp:icon over old-style .gif images

  1. … 13 more files in changeset.
Apply the deprecated flag to the methods documentation

Add doc to public api

Add doc to public api

Configure nsf to keep init commands much earlier, so that we don't lose doc for nsf classes defined before xotcl-core is loaded

  1. … 1 more file in changeset.
Small improvements:

- use "string is space" instead of trimming the string and checking if empty, at least 2x faster on development, wherever we don't need the trimmed value

- modernize leftover foreach trick with lassign

  1. … 6 more files in changeset.
replace occurrences of <br/> in api doc strings

  1. … 1 more file in changeset.
new proc "ad_log_deprecated": unified interface for logging deprecated usages

The existing code used a larger variety of different messages to

denote invocations of deprecated procs and other

artifacts. "ad_log_deprecated" provides a unified interface, and

provides a usage hint what to use instead based on the API-doc

definitions in the log-file.

  1. … 8 more files in changeset.
Extended functionality of the DropZone widget

- added parameters "label", "disposition" and "file_name_prefix"

for better configurability

- added support for updating the current page with feedback of the

dropped files. This is used e.g. by the online exam in the exam

protocol to display incrementally thumbnails of feedback files.

- change property "uploader" to "disposition", since "uploader" is

somewhat ambiguous. "Disposition" defines, what happens after the

file was uploaded, e.g. whether the content has to be transformed,

etc.

- bumped version number to 5.10.1d35

  1. … 5 more files in changeset.
reduce verbosity

plain table renderer: use "thead" and "tbody" inside "table"

changed page_contract to include_contract

  1. … 1 more file in changeset.
Fixed bug with value-constraints query parameters

Previous versions had a problem with calls like

:query_parameter name:SOMECONSTRAINT

since the implementation clobbered the name variable. Versions of NSF

later than 2022-01-21 support "nsf::parseargs" with the "-asdict"

option, which can use all the nsf::parseargs options and avoids

clobbering.

Added tests of "xo::cc query_parameters" to the regression test suite.

file context-test-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./tcl/test/context-test-procs.tcl
added support to render documents with multiple roots

This generalizes handling of HTML snippets (like e.g. several list items)

in case where postprocessing is necessary

removed anonymous array and break overlong line

added proper handling of overfull recurrence rule lines

  1. … 2 more files in changeset.
added proper handling of overfull recurrence rule lines

removed onsolte comments

Modernize ical support

Rewritten ical support based on NX instead of XOTcl, following

much closer to the the standards. The interface is compatible

with the old interface. Note that in case, applicatios have

subclassed/extended the xotcl-core ical support, it must be

as well ported to NX (which is an easy task).

Bumped verison number to 5.10.1d8

Modernize ical support

Rewritten ical support based on NX instead of XOTcl, following

much closer to the the standards. The interface is compatible

with the old interface. Note that in case, applicatios have

subclassed/extended the xotcl-core ical support, it must be

as well ported to NX (which is an easy task).

Bumped verison number to 5.10.1d8

improve comment line

provide style- and font-based sort-handles

This requires the CSS classes "sort-active", "sort-inactive", "sort-up", and "sort-down"

update current instance with actual image info before refreshing in the cache

added missing name of positional argument

added "xo::library doc" where possible for improved uniformity

added security::csp::add_static_resource_header for various backward compatibility versions for file delivery