OpenACS / openacs-4 / packages / acs-bootstrap-installer / installer

www

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 3
Last Commit: 05 Apr
Commits this week: 0
Total Lines of Code (LoC): 335
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 4 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Thursday 15 Sep 2016
9:21 am

gustafn

bootstrap installer:

- added csp policy to the files upgradeable via apm

- bumped version number to 5.9.1d5

Options
    • -0
    • +2
    ./SYSTEM/csp-collector.tcl
  2. … 3 more files in changeset.
9:21 am

gustafn

file csp-collector.tcl was initially added on branch oacs-5-9.

Options
    • -0
    • +0
    ./SYSTEM/csp-collector.tcl
Monday 12 Sep 2016
8:08 pm

gustafn

-- handle ie 11 (uses a different header field for CSP)

- move CSP generation to the end

Options
    • -16
    • +23
    ./blank-master.tcl
  2. … 1 more file in changeset.
10:29 am

gustafn

- Refine security policies: when necessary, define both a nonce and a

'unsafe-inline' to ensure compatibility on some less adavanced

browsers

- use same "secure" setting for ad_session_id, otherwise, just the

last one is honored

- fix linefeed and semicolon in js for focus handling

Options
    • -2
    • +3
    ./blank-master.tcl
  2. … 2 more files in changeset.
Friday 09 Sep 2016
10:12 am

gustafn

- add CSP nonce to script tags if nonce value is available

- turn function definition of acs_Focus() into a conditionally defined

body-script

- turn "body_event_handlers" into "window.addEventListener"

Options
    • -2
    • +2
    ./blank-master.adp
    • -20
    • +23
    ./blank-master.tcl
  3. … 3 more files in changeset.
Tuesday 06 Sep 2016
7:33 pm

gustafn

- Added support for W3C Content Security Policy(CSP)

* For details about CSP, see https://www.w3.org/TR/CSP/

* New calls:

security::csp::nonce:

Generate a CSP nonce token token

security::csp::require /directive/ /value/:

Add a requirements of a page to the CSP in order to generate

later a tailored policy with the minimal permissions for

this page. For example, the following requirement is

currently added per default to the oacs-master template to

permit style tags and style attribites in the markup.

security::csp::require style-src 'unsafe-inline'

security::csp::render:

Generate a policy from the requirements

* Added Kernel Parameter CSPEnabledP to activate/desctivate CSP

(default on)

- Bump version numbers

acs-tcl to 5.9.1d11

acs-bootstrap-installer to 5.9.1d4

acs-kernel to 5.9.1d17

Options
    • -3
    • +3
    ./blank-master.adp
    • -6
    • +20
    ./blank-master.tcl
  3. … 6 more files in changeset.
Monday 05 Sep 2016
1:34 pm

gustafn

- add support for W3C Subresource Integrity (SRI)

* For details about SRI, see https://www.w3.org/TR/SRI/

* Added arguments -crossorigin and -integrity

to the following functions

template::add_body_script

template::add_script

template::head::add_javascript

template::head::add_link

template::head::add_script

* Updated blank-master.adp

- some more cleanup:

* remove commented out code

* add missing argument documentation

(template::head::add_javascript)

* document arguments alphabetically

Options
    • -3
    • +3
    ./blank-master.adp
  2. … 3 more files in changeset.
Sunday 03 Jan 2016
10:27 pm

gustafn

- simplify blank-master (replace per richtext-editor hacks by new plugin interface)

- bump version number to 5.9.1d2

Options
    • -98
    • +22
    ./blank-master.tcl
  2. … 1 more file in changeset.
Thursday 10 Sep 2015
10:21 am

gustafn

- add editor hints to keep spaces/tabs in the furture more consistent

Options
    • -1
    • +7
    ./blank-master.tcl
  2. … 754 more files in changeset.
Friday 28 Aug 2015
11:06 am

gustafn

- Improve robustness of blank-master: malformed lists in subsite

parameters could render a subsite useless and hard to correct.

Now the validity of lists is checked, errors are written to the

error.log, invalid parameters are ignored.

- added flat list syntax for ThemeCSS specs (easier to read)

- added parameter ThemeJS similar to ThemeCSS (ability to add head and

body scripts)

- added generalized function template::add_script with non-pos

parameter "-section" which might be "head" or "body" to make both

kind of scripts available to ThemeJS

Options
    • -11
    • +46
    ./blank-master.tcl
  2. … 11 more files in changeset.
Tuesday 18 Aug 2015
1:17 pm

gustafn

- improve validity for HTML5

Options
    • -7
    • +10
    ./blank-master.tcl
  2. … 1 more file in changeset.
Friday 14 Aug 2015
1:41 pm

gustafn

- provide minimal support for ckeditor4 (via CDN)

- added changes from antonio to pass handling for unknown editor to the master templates

Options
    • -1
    • +5
    ./blank-master.tcl
  2. … 2 more files in changeset.
Monday 15 Jun 2015
9:36 pm

gustafn

- improve safety of HTML

Options
    • -3
    • +3
    ./blank-master.adp
  2. … 1 more file in changeset.
Wednesday 10 Jun 2015
9:14 pm

gustafn

- provide defaults for Content-Style-Type and Content-Script-Type

Options
    • -1
    • +7
    ./blank-master.tcl
  2. … 1 more file in changeset.
Thursday 21 May 2015
12:00 pm

gustafn

- allow upgrade of blank-master.{tcl,adp} via install-from-repository. This files should be free of site-specific customizations

Options
    • -0
    • +39
    ./blank-master.adp
    • -0
    • +268
    ./blank-master.tcl
  3. … 2 more files in changeset.