OpenACS / openacs-4 / packages / acs-tcl / tcl

request-processor-procs.tcl

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 25
Last Commit: 05 Apr
Commits this week: 0
Total Lines of Code (LoC): 1,901
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 15 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Monday 24 Jul 2023
2:59 pm

gustafn

skip "-url" in "export_vars -url" since it is the default

Options
    • -3
    • +3
    ./request-processor-procs.tcl
  2. … 11 more files in changeset.
Friday 19 May 2023
2:13 pm

gustafn

call directly ns_getform

Options
    • -3
    • +3
    ./request-processor-procs.tcl
Wednesday 03 May 2023
2:33 pm

gustafn

improve spelling

Options
    • -3
    • +3
    ./request-processor-procs.tcl
  2. … 1 more file in changeset.
Tuesday 28 Mar 2023
4:04 pm

antoniop

Deprecate trivial wrappers to the NaviServer API

Modern ns_getform will not return the empty string for empty requests, but only when we are operating outside of a connection. In such circumstances is arguably useful to manipulate the request parameters.

Options
    • -6
    • +27
    ./request-processor-procs.tcl
  2. … 2 more files in changeset.
Tuesday 06 Sep 2022
1:17 pm

antoniop

Deprecate export_entire_form_as_url_vars and replace occurrences, add a new -formvars flag to export vars to implement the behavior of the proc, that is, export a subset of the variables coming from the current request

Options
    • -3
    • +3
    ./request-processor-procs.tcl
  2. … 5 more files in changeset.
Friday 01 Apr 2022
3:54 pm

gustafn

new API call ::security::csp::add_static_resource_header

The API call set the CSP rule on the current connection for a static

resource depending on the MIME type.

# Sample definition for custom CSP rules for static files in the

# OpenACS configuration file.

#

# ns_section ns/server/$server/acs {

# ...

# ns_param StaticCSP {

# image/svg+xml "script-src 'none'"

# }

# ...

# }

bump version number of acs-tcl to 5.10.1d13

Options
    • -1
    • +4
    ./request-processor-procs.tcl
  2. … 3 more files in changeset.
Tuesday 29 Mar 2022
10:50 am

gustafn

remove commented out coude

Options
    • -2
    • +1
    ./request-processor-procs.tcl
Friday 18 Mar 2022
10:13 am

antoniop

Revert additional fallbacks, one should take care that ad_conn is invoked correctly

Options
    • -14
    • +3
    ./request-processor-procs.tcl
Thursday 17 Mar 2022
10:15 am

antoniop

Provide further fallbacks for ad_conn

Options
    • -3
    • +14
    ./request-processor-procs.tcl
Monday 21 Feb 2022
9:49 am

gustafn

improve spelling and formulations

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 2 more files in changeset.
Thursday 03 Feb 2022
2:58 pm

antoniop

Provide a fallback for vhost_url in ad_conn for code executed before this value has been set by the request processor

Options
    • -1
    • +6
    ./request-processor-procs.tcl
Wednesday 26 Jan 2022
12:10 am

gustafn

improve comment

Options
    • -4
    • +7
    ./request-processor-procs.tcl
Tuesday 11 Jan 2022
9:18 am

gustafn

avoid errors on attacks against request header field "Upgrade-Insecure-Requests"

Options
    • -2
    • +6
    ./request-processor-procs.tcl
Wednesday 05 Jan 2022
3:00 pm

gustafn

added a partial backwards compatibility implementation of for ns_baseunit (as used in request processor)

Options
    • -12
    • +7
    ./request-processor-procs.tcl
  2. … 1 more file in changeset.
2:10 pm

gustafn

move broken procs based on undefined function to decprecated procs and comment it out

Options
    • -9
    • +1
    ./request-processor-procs.tcl
  2. … 2 more files in changeset.
Tuesday 28 Dec 2021
5:39 pm

antoniop

Fix typo

Options
    • -1
    • +2
    ./request-processor-procs.tcl
4:51 pm

antoniop

Streamline idiom and merge if condition

Options
    • -13
    • +6
    ./request-processor-procs.tcl
Thursday 04 Nov 2021
5:11 pm

gustafn

mitigate attacks, where the referer header field is changed to a malicious value

The problem does not exist, when CSP is defined properly.

Many thanks to Frank Bergmann for sharing the pen-test protocol

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 2 more files in changeset.
Monday 27 Sep 2021
1:28 pm

antoniop

Add missing argument expansion and comply with automated test

Options
    • -3
    • +3
    ./request-processor-procs.tcl
Monday 06 Sep 2021
5:34 pm

gustafn

prettify error message

Options
    • -2
    • +2
    ./request-processor-procs.tcl
Friday 27 Aug 2021
8:36 pm

gustafn

fixed bug in redirects and disabled acs-testing package, changed node info from array to dict

Options
    • -20
    • +22
    ./request-processor-procs.tcl
Tuesday 10 Aug 2021
2:13 pm

antoniop

Fix expression to the original intention: check if ns_conn url ends by ad_conn extra_url

Options
    • -4
    • +5
    ./request-processor-procs.tcl
Saturday 12 Jun 2021
8:01 pm

gustafn

fix once more handling of internal redirects in error cases

many thanks to thomas renner!

Options
    • -2
    • +2
    ./request-processor-procs.tcl
Thursday 27 May 2021
9:07 pm

gustafn

Fixed a bug in the request processor, when URL is /%3F

The problem was that /%3F corresponds to a URL which is literally '/?'

(question mark is not the separator for query variables). In this case

a "string match" operation to determine the suffix based on this

string will lead to unexpected characters since '?' is a match

character. This lead in turn to a problem with redirects to the

internally redirect of custom error pages. So, in this case (and

probably others) the custom error page was not displayed.

Options
    • -13
    • +27
    ./request-processor-procs.tcl
Sunday 23 May 2021
7:24 pm

gustafn

improve comments

Options
    • -4
    • +19
    ./request-processor-procs.tcl
Monday 03 May 2021
10:55 am

gustafn

added minor debugging aids, make disk-cache more similar to ns_cache

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 2 more files in changeset.
Monday 22 Feb 2021
4:19 pm

antoniop

Make api public, complies with acs-api-browser.graph__bad_calls automated test

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 4 more files in changeset.
Thursday 18 Feb 2021
3:41 pm

gustafn

mark functions called only internally as private

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 15 more files in changeset.
Wednesday 17 Feb 2021
9:51 pm

gustafn

make use of built-in reverse proxy mode of newer versions of NaviServer

Options
    • -5
    • +13
    ./request-processor-procs.tcl
  2. … 1 more file in changeset.
Monday 01 Feb 2021
11:47 am

gustafn

make end of options explicit

Options
    • -2
    • +2
    ./request-processor-procs.tcl
  2. … 42 more files in changeset.