OpenACS / openacs-4 / packages

acs-tcl

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 4
Total Committers: 73
Last Commit: 05 Jul
Commits this week: 4
Total Lines of Code (LoC): 68,337
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 45 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Monday 05 Sep 2016
10:53 am

gustafn

- Implements "Upgrade Insecure Requests" headers:

W3C Candidate Recommendation

https://www.w3.org/TR/upgrade-insecure-requests/

Options
    • -1
    • +9
    ./tcl/request-processor-procs.tcl
10:32 am

gustafn

- security::redirect_to_secure: add flag "-script_abort" to make it

usable in filter procs (ad_script_abort triggers errors without

error message)

- security::get_secure_location:

* align implementation to function documentation (to make it usable

for sub-sites). Last version returned always the "configured

secure" location, not the "current secure location"

* replace regexps by util::split_location/util::join_location/

Options
    • -22
    • +16
    ./tcl/security-procs.tcl
8:28 am

gustafn

- add missing expand operator

Options
    • -2
    • +2
    ./tcl/utilities-procs.tcl
Friday 02 Sep 2016
10:08 pm

gustafn

- add kernel parameter to make ad_session_id cookies secure (useful on sites, where all sessions are via https, improves security rating on e.g. mozillas observatory tool)

Options
    • -3
    • +7
    ./tcl/security-procs.tcl
  2. … 1 more file in changeset.
9:16 pm

gustafn

- reduce redundancy handling legacy network drivers

- simplify code

Options
    • -33
    • +14
    ./tcl/security-procs.tcl
7:33 pm

gustafn

- fix bug for host-node-mapped subsites: on the (subsite) admin-page

of a host-node-mapped subsites, the link to site-wide-admin should

always point to the main site.

- add new helper function util::configured_location to address the bug

above to return the configured location as configured for the

current network driver. While [util_current_location] honors the

virtual host information of the host header field,

util::configured_location returns the main configured location

(probably the main subsite).

- extend [util_driver_info]

* make the passed-in array name optional and to return always a dict

* include the configured host name in the result (dict/array)

- add cross references via @see to make it easier to switch between

related functions

- bump version number of acs-tcl to 5.9.1d10 and acs-subsite to

5.9.1d7 to address dependencies

Options
    • -2
    • +2
    ./acs-tcl.info
    • -1
    • +3
    ./tcl/defs-procs.tcl
    • -5
    • +8
    ./tcl/security-procs.tcl
    • -19
    • +50
    ./tcl/utilities-procs.tcl
  5. … 3 more files in changeset.
Wednesday 31 Aug 2016
1:01 pm

gustafn

- improve debug messages for broken installations

Options
    • -6
    • +5
    ./tcl/acs-kernel-procs.tcl
  2. … 1 more file in changeset.
12:59 pm

gustafn

- make return explicit

Options
    • -2
    • +2
    ./tcl/site-nodes-procs.tcl
12:55 pm

gustafn

- added kernel parameter MaxUrlLength (default 2000) to remove

hard-coded length in request-processor-procs.

- lifted data model restriction of 100 characters for url-segments

(changing types of "site_nodes.name" from "varchar(100)" to "text")

(PostgreSQL only)

- site_node__node_id

* use built-in string functions instead of characterwise loop

* use default for last argument

* Improve source-code documentation

- bumped version number of kernel to 5.9.1d15

Options
    • -4
    • +4
    ./tcl/request-processor-procs.tcl
  2. … 3 more files in changeset.
Tuesday 30 Aug 2016
1:01 pm

gustafn

security-procs:

- fix broken comparisons when "UseHostnameDomainforReg" is set

(see also issue #3293).

- don't use string match/regesub when manipulating URLs

(causes troubles with IP-literal notation). Instead, us

"eq" or "util::split_location"/"util::join_location"

- added means to ease debugging of login_urls and login_cookie:

variables "::security::log(login_url)" and

"::security::log(login_cookie)" contain the log severity.

by setting these to e.g. "notice", this does not require

to activate full debugging (setting severity to debug) in order

to obtain log output.

Options
    • -53
    • +90
    ./tcl/security-procs.tcl
12:39 pm

gustafn

- added new function "util::join_location" as counterpart of

"util::split_location" to use IP-literal notation when necessary

(IPv6). The function can be used in connection with

"util::split_location" to substitute hostnames/ports etc. in full

urls instead of insecure regsub operations.

- function "util::external_url_p":

* don't use "string match" for comparing locations, since this

will fail with IP-literal notation

* no need to compare with encoded name (if needed, on should provide

an option).

Options
    • -6
    • +34
    ./tcl/utilities-procs.tcl
Monday 29 Aug 2016
1:42 pm

gustafn

- address bug #3293: actual code in oacs-5-9 used full host header

(from request header fields) which might contain port.

db-query is now performed without the optional port

- improve Tcl coding (use defaults, break long lines)

Options
    • -9
    • +12
    ./tcl/security-procs.tcl
Saturday 20 Aug 2016
8:58 am

gustafn

- security::validated_host_header: Handle aliases for locations, which cannot be determined from config files, but which are supposed to be ok

Options
    • -1
    • +14
    ./tcl/security-procs.tcl
Friday 19 Aug 2016
5:38 pm

gustafn

Improving root_of_host_

- reduce dependency of the paths in the configuration script

- treat not only http, but as well https locations

- improve comments

Options
    • -8
    • +26
    ./tcl/request-processor-procs.tcl
5:27 pm

gustafn

- don't report urls in security::locations obtained form https drivers which loaded but not listening (identifiable via port number 0)

Options
    • -4
    • +15
    ./tcl/security-procs.tcl
Thursday 18 Aug 2016
6:50 am

gustafn

- don't complain in rp_lookup_node_from_host when pass-in host is emtpy (return empty node_id as well)

Options
    • -7
    • +9
    ./tcl/request-processor-procs.tcl
Tuesday 16 Aug 2016
8:27 pm

gustafn

- proc get_referrer: add optional flag "-relative" to return the referrer without protocol and host

+CVS: ----------------------------------------------------------------------

Options
    • -5
    • +11
    ./tcl/utilities-procs.tcl
Thursday 14 Jul 2016
8:00 pm

gustafn

- don't rely on abbreaviation "int"

Options
    • -2
    • +2
    ./tcl/acs-permissions-procs.tcl
7:39 pm

gustafn

- improve backward compatibility: although permission_p is boolean, the results of often compared with literal "0" and "1", so return an integer as well

Options
    • -2
    • +2
    ./tcl/acs-permissions-procs.tcl
Friday 08 Jul 2016
4:17 pm

gustafn

- make test working as well for newer versions of nsf

Options
    • -2
    • +2
    ./tcl/site-nodes-procs.tcl
Tuesday 05 Jul 2016
7:05 pm

gustafn

- removed space

Options
    • -1
    • +1
    ./tcl/acs-kernel-procs-postgresql.xql
6:35 pm

gustafn

file acs-kernel-procs-postgresql.xql was initially added on branch oacs-5-9.

Options
    • -0
    • +0
    ./tcl/acs-kernel-procs-postgresql.xql
6:35 pm

gustafn

- Add SQL schema acs_permission to allow to call sql-functions for

Oracle and PostgreSQL in exactly the same way

- Move postgres permission function to the new neamespace and provide

stubs for backward compatibility

- New function permission::get_parties_with_permission

to support a restricted form of reverse lookup for permssions

in order to reduce the dependencies on

acs_object_party_privilege_map for PostgreSQL

- make upgrade scripts more robust (support repeated loading)

- bump verison number of acs-tcl to 5.9.1d9

- bump version number of acs-kernel to 5.9.1d11

Options
    • -3
    • +3
    ./acs-tcl.info
    • -0
    • +13
    ./tcl/acs-kernel-procs-oracle.xql
    • -0
    • +16
    ./tcl/acs-kernel-procs-postgresql.xql
    • -2
    • +39
    ./tcl/acs-kernel-procs.tcl
    • -15
    • +0
    ./tcl/acs-kernel-procs.xql
    • -7
    • +6
    ./tcl/acs-permissions-procs-oracle.xql
    • -8
    • +8
    ./tcl/acs-permissions-procs-postgresql.xql
    • -3
    • +19
    ./tcl/acs-permissions-procs.tcl
  9. … 5 more files in changeset.
6:35 pm

gustafn

file acs-kernel-procs-oracle.xql was initially added on branch oacs-5-9.

Options
    • -0
    • +0
    ./tcl/acs-kernel-procs-oracle.xql
Friday 01 Jul 2016
3:32 pm

gustafn

- replace obsolete all_object_party_privilege_map by acs_object_party_privilege_map

Options
    • -1
    • +1
    ./tcl/acs-kernel-procs.xql
Monday 13 Jun 2016
7:15 pm

gustafn

Bugfix:

- when a package is deleted, which is already disabled, the

"before-uninstall" callback was not executed.

- Reason: apm_version_id_from_package_key returns just enabled packages

- the new version of apm_version_id_from_package_key has an optional

argument "-all" to return enabled or disabled version_ids

Options
    • -3
    • +3
    ./tcl/apm-install-procs.tcl
    • -4
    • +13
    ./tcl/apm-procs.tcl
    • -1
    • +9
    ./tcl/apm-procs.xql
Saturday 11 Jun 2016
10:42 am

gustafn

- removed escaped testing code

Options
    • -5
    • +1
    ./tcl/request-processor-procs.tcl
Friday 10 Jun 2016
9:35 am

gustafn

- regenerated documentation to fix escaping problem in docbook: when a "programlisting" contains a message key, it is properly escaped when putting a ­ after the first hash

Options
    • -1
    • +6
    ./tcl/request-processor-procs.tcl
  2. … 124 more files in changeset.
Wednesday 08 Jun 2016
9:17 am

gustafn

- unset coockies with the same "-secure" setting, which was used when creating it (differed for ad_session_id and ad_user_login).

Options
    • -3
    • +3
    ./tcl/security-procs.tcl
Tuesday 07 Jun 2016
11:34 am

gustafn

- improve documentation

Options
    • -11
    • +19
    ./tcl/security-procs.tcl