• last updated 5 hours ago
Constraints: committers
Constraints: files
Constraints: dates
improve comment and provide warning, when kernel parameter is overruled

fix typo

make sure to call ad_script_abort after ad_returnredirect

  1. … 2 more files in changeset.
Bug fix: avoid confusion between command argument and option, when argument starts with "-"

  1. … 81 more files in changeset.
merged changes from the oacs-5-9 branch and resolved conflicts

  1. … 7834 more files in changeset.
make field host_node_id optional to improve backward compatibility

Make sure message exists when dealing with a banned user

Provide more infrastructure support for host-node-maps for more flexible domain handling

- add optional -cookie_domain parameter to the following functions




auth::issue_login (wrapper for ad_user_login)

if not specified, the functions are full backward compatible

- add optional parameter -host_node_id to auth::authenticate

which refers to the node_id in the host-node-map

- pass host_node_id from from/to register pages


1) probably, sec_generate_session_id_cookie picks up the wrong

session_id via [ad_conn session_id]

2) check interaction with CookieDomain (probably, we need

must not pass host_node_id wheren CookieDomain is non-empty)

  1. … 7 more files in changeset.
- add optional parameter host_node_id (for future use)

- Reflow overlong lines

Modernize code (use ad_include_contract instead of manual checks)

- strenthen token checking of login form

- add editor hints to keep spaces/tabs in the furture more consistent

  1. … 754 more files in changeset.
- fix quoting and typo

  1. … 1 more file in changeset.
- improve readability and indentation

- harden page contracts

  1. … 6 more files in changeset.
Merging back to HEAD branch oacs-5-8 (using tag vg-merge-oacs-5-8-from-20141027).

  1. … 2547 more files in changeset.
- flatten nested list structures

  1. … 4 more files in changeset.
- fix incorrect variable name "package_id" used instead of "subsite_id"

- make variable check explicit

Fix passing HTML in url variable and use util_user_message instead

  1. … 3 more files in changeset.
Add new by default external URL checking to ad_returnredirect. Modify security::locations to be simpler, not rely on ecommerce at all, and use util_current_location to determine the host name.

  1. … 2 more files in changeset.
TIP#126 optionally allow user to provide email, first, last name when authority does not

  1. … 5 more files in changeset.
removing diagnostic ns_logs I added by mistake, and adding case of possible third 3 variant to locations (when behind reverse proxy)

  1. … 1 more file in changeset.
fixing faulty wrong domain message by using a reliable ecommerce method to determine locations, creating security::locations

  1. … 1 more file in changeset.
Fix return_url checking on login page to respect host node mapping and allow return_url to switch http/https for the same host name

Normalizing string comparison operations into tcl 8.4 operations, enabling byte-code compilation for expressions and many conditionals

  1. … 367 more files in changeset.
checking return_url for security reasons, dont't allow complete urls as return_urls for register

checking return_url for security reasons, dont't allow complete urls as return_urls for register

provide a simple fix for the redirect problem of the register page

Reverted all changes from Mannheim

  1. … 222 more files in changeset.
Mannheim update, fix and merge bugbash

  1. … 197 more files in changeset.