Index: openacs-4/Announce-OpenACS-5.9.1 =================================================================== RCS file: /usr/local/cvsroot/openacs-4/Announce-OpenACS-5.9.1,v diff -u -r1.2 -r1.3 --- openacs-4/Announce-OpenACS-5.9.1 7 Aug 2017 23:47:43 -0000 1.2 +++ openacs-4/Announce-OpenACS-5.9.1 11 Jun 2018 09:46:54 -0000 1.3 @@ -156,7 +156,7 @@ - Reduced number of insert cr_child_rels operations, just when needed: - cr_child_rels provide only little benefit (allow to use roles in + cr_child_rels provide only little benefit (allow one to use roles in a child-rel), but the common operation is a well available in cr_items via the parent_id. cr_child_rels do not help for recursive queries either. One option would be to add an @@ -169,8 +169,7 @@ * OpenACS maintains a per-request CSRF token that ensures that form replies are coming just from sites that received the form * CSRF support is optional for packages where CSRF is less - dangerous, and such requests are wanted (e.g. search and - api-browser) + dangerous, and such requests are wanted (e.g. search and API-browser) - Added Support for W3C "Upgrade-Insecure-Headers" (see https://www.w3.org/TR/upgrade-insecure-requests/): @@ -265,7 +264,7 @@ such as Accept-Language) - Fixed quoting of message keys on many places - - Improved exception handling (often, a "catch" swallows to much, + - Improved exception handling (often, a "catch" swallows one too much, e.g. script_aborts), introducing "ad_exception". - Generalized handling of leading zeros: @@ -340,7 +339,7 @@ for detecting message keys * "ns_md5" and "ns_parseurl": improve compatibility between AOLserver and NaviServer - * "ad_dom_sanitize_html": allow to specify different sets of + * "ad_dom_sanitize_html": allow one to specify different sets of tags, attributes and protocols and "ad_dom_fix_html", which is a light weight tidy variant. @@ -436,7 +435,7 @@ * Better value checking for query parameter, error reporting via ad_return_complaint * Added option "-path_encode" to methods "pretty_link" and - "folder_path" to allow to control, whether the result should be + "folder_path" to allow one to control, whether the result should be encoded or not (default true) * Form fields: @@ -448,7 +447,7 @@ "autocomplete" + Fixed generation of "orderby" attribute based on form-field names - + richtext: allow to specify "extraAllowedContent" via options + + richtext: allow one to specify "extraAllowedContent" via options + Improved layout of horizontal check boxes * Menu bar: