xotcl-request-monitor

  • last updated 19 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Move unmap_pool in a namespace

Fixes acs-tcl naming__proc_naming automated test

This change intruduces <adp:button>, which avoids adp:* markup inside

HTML attribute values, which we had before. One can now use

<adp:button type="submit" class="btn btn-outline-secondary">Filter</adp:button>

instead of

<button type="submit" class="btn <adp:class name='btn-outline-secondary'>">Filter</button>

One should probably provide in the future more adp:* tags for

providing a clean mapping of CSS class attributes.

<adp:class> was deactivated for the time being

  1. … 2 more files in changeset.
reduced verbosity

factor out some w3css styling and make it available via template::CSS

  1. … 2 more files in changeset.
Make long calls page work with w3.css

Formatting changes, fix unclosed tag

Prefer unset to array unset when no pattern matching is needed

See https://wiki.tcl-lang.org/page/Dict+VS+Array+Speed

  1. … 1 more file in changeset.
Prefer unset to array unset when the whole array should be deleted

See https://wiki.tcl-lang.org/page/Dict+VS+Array+Speed

  1. … 6 more files in changeset.
State Highcharts package dependency in xotcl-request-monitor

merge with missing files

    • -0
    • +31
    ./tcl/test/throttle_mod-test-procs.tcl
  1. … 1450 more files in changeset.
merge from oacs-5-10

    • -207
    • +614
    ./tcl/throttle_mod-procs.tcl
  1. … 8085 more files in changeset.
release work

  1. … 78 more files in changeset.
bumped version number from development version to release version

  1. … 93 more files in changeset.
reduced verbosity

xotcl-request-monitor Change site-node permissions after mount

This package might reveal internal information and should

not be public available per default.

bumped version number to 0.66

improved typesetting in email to admin to increase readability

Cleanup of external binaries: always use "util::which" to resolve binaries

  1. … 5 more files in changeset.
Tolerate instances that do not ship with xowiki, as this is not a dependency

protect query-parameters against exceptions with empty values

The page_conract filter require a "notnull", otherwise it lets

values like ...?v=&... through, although {v:boolean} was used.

These empty values will cause exceptions, when it is later

assumed that "v" has a proper boolean value.

bumped version numbers to 5.10.1b1

  1. … 85 more files in changeset.
improve spelling

  1. … 3 more files in changeset.
improved spelling

  1. … 6 more files in changeset.
added ability to order by time values

Adding one more safety belt for potential DOS attacks

For cases, where request blocking is activated (returning 429 status

code for repeated requests), one more check was added: When such a

block happens more than 15 times in a minute on the same URL from the

same user, more requests for the same URL and user will be blocked

until the minute is over. The user seese the message "This web server

is only open for interactive usage".

Background: While request blocking works well for interactive users,

it might not be sufficient for web clients running wild. Normally,

after a 429, the user can reload the page to receive the content of a

page. This leads to a sequence of requests of interleaved 200 and 429

status codes, which might be ignored by a bot (or ad DOS attack). When

the requested page is slow, this can bring a server to its knees.

When request blocking is deactivated, this change has no effect.

improve strictness of tests

  1. … 5 more files in changeset.
add the daydifference to listing of long calls, when this was more than one day ago

Added support for ordering long-calls by start time or by end time

include request start in long-call listing

minor updates

most significant changes:

- longer lines kept for long-calls

- adapted size of buffer for long-call analysis

check queuing situation for every connection pool