• last updated 12 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Added switch "-ulevel" to proc "util::var_subst_quotehtml";

ad_form: quote form field values in validation error messages to prevent XSS attacks

Quote form field values in validation error messages to prevent XSS attacks

Prettify code

Mode is in fact the value of the nsv

Force the encoding on the channel to utf-8 in every case (fixes umlaut characters when using ns_connchan backend)

fix issue #3392, improve testability via paramterization of clock value, add regression test, improve Tcl sanity

white space changes

Deprecate unamusing template::util::date::now_min_interval_plus_hour

Fix obvious bug; Note that the proc is still buggy, as it blindly incr's the hour value, even if it is 23 o'clock

Fix log warning message

Delete unneeded line

Use testing authority in auth_create_user test

improve protection against attacked cookies

Do not depend on dt_systime

Apparently, this makes xolp tests more robust with respect to issue discussed in https://stackoverflow.com/questions/49031790/how-can-i-debug-a-tcl-8-6-error-in-clock-tcl#49033144

Add a quick run of the basic CRUD operations on ORM to avoid issues when e.g. no particular object member is explicitly supplied

Check for existance of :context_id

Make sure init test classes are named differently, or xowiki tests will interfere with xowf ones

Keep old behavior when we drill down to package

Extend UI allowing to select packages for which we want tests to be run

Add the option to unregister (delete permanently the message key from all locales) a message key that has been already marked as deleted. Useful for cleaning up old message keys

file message-unregister.adp was initially added on branch oacs-5-10.

file message-unregister.tcl was initially added on branch oacs-5-10.

Extend aa_runseries proc to allow multiple package keys to be specified (goal is being able to select just the packages we want for testing)

Fix typo

Fix query and logic for retrieving a particular locale stats for acs-lang admin/index page. In particular, messages that do not exist in a certain locale are properly computed in order to calculate deleted and untranslated ones, at the price of executing one query per locale instead of just a big one.

Allow to specify and update the context_id for a CrItem (fixes xotcl-core.test_cr_items automated test)

Modifying IP really comes from the item and not from the revision (as normally comes from the automatically generated view ${table_name}i which says so)

new support function util::var_subst_quotehtml to perform variable substitution with ns_quotehtml

Update database idioms

use capitals for abbreaviation