• last updated 19 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Improved consistency of resource-info for javascript libraries, added vulnarability info

Tested the following cases:

download check

- bootstrap

- bootstrap-icons

- bootstrap-treeview

- ckeditor4

- font-awesome

- highcharts

- cookieconsent2 3.0.3

- cookieconsent2 3.1.1

CDN check

- bootstrap

- bootstrap-icons

- bootstrap-treeview

- font-awesome

- highcharts

- cookieconsent2 3.0.3

- cookieconsent2 3.1.1

Don't set result variables for "header_stuff"

The method "header_stuff" was changes ages ago to

side-effect via the standard OpenACS template::head

interface rather than outputting to a variable, which

has to be passed around. This change removes some

leftover of this time.

    • -3
    • +3
    /openacs-4/packages/xowiki/tcl/package-procs.tcl
Include available version number and vulnerability check on swa pages

This eases the use of external JavaScript libraries by adding

the available version number and a link for vulnerability checks

on the site-wide admin pages (when this information is available)

- bumped version number to 5.10.1b6

    • -2
    • +2
    /openacs-4/packages/acs-tcl/acs-tcl.info
fix broken variable name

Do not allow unusual schemas like base64 and json as local URLs

This case was flagged by a vulnerability scan, but at least at the found instance

it was a false positive...

Extended json2dict to cover arraycontainer

Many thank to Rolf for his feedback!

Extended resource info dict with explicit version number and an API call to obtain the newest version number

The two new optional resource info fields are

- versionCheckAPI

- installedVersion

These fields are necessary to provide an admin page to check

whether the installed versions are the most recent ones.

made spelling more consistent

New parameter "scroll_to" for parameter page

The new parameter allows the code to jump to a named parameter in the

parameter editing page. This is very useful for pages with a high

number of parameters, if just one parameter should be changed.

improve page title

The index page list not only the "system" test cases, but as well the

test cases from the application packages

Make parameter optional

adjust coverage information

Bump version number to 5.10.1b5 such we can depend on new functionality

    • -2
    • +2
    /openacs-4/packages/acs-tcl/acs-tcl.info
new API function: util::json2dict

This function is similar to the tcllib function json::json2dict, but

is based on tDOM and is several times faster.

file json-test-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    /openacs-4/packages/acs-tcl/tcl/test/json-test-procs.tcl
Mode use of new util::resources::version_dir

Made download helper more modular and added support for a version_API

whitespace cleanup

Added support for specifying -expires and -timeout with a time unit

Previously, the "integer" constrain avoided this. Now, we rely on the

error messages of NaviServer to handle incorrect values.

Allow to pass arrays in the configuration

Remove additional trapping of exception, which prevents the web agent to access the file-storage, if we had to mount it on the fly

Inline dt_sysdate content here, as rss-support does not depend on the date utilities package

Flush the package_url cache when we mount a new package, as this may be the first time that we instantiate this particular package

Bump version number after catalog changes

Remove extra slash, affecting usage from CDN

Many thanks to Markus Moser

Cleanup smelly comment

    • -2
    • +1
    /openacs-4/packages/news/www/item-create.tcl
Remove hardcoded richtext editor

Remove xowiki dependency from CKEditor4

Rationale: CKEditor4 is EOL for its free version and the paid LTS version will be discontinued in December 2026.

We now do not set an explicit default for the preferred richtext editor. Instead, the first richtext-* package that will be installed with check whether a preferred editor was chosen. If not, they will set themselves as the xowiki editor. This should not change the behavior for existing installations already using ckeditor4, or a different editor.

Remove xowiki dependency from CKEditor4

Rationale: CKEditor4 is EOL for its free version and the paid LTS version will be discontinued in December 2026.

We now do not set an explicit default for the preferred richtext editor. Instead, the first richtext-* package that will be installed with check whether a preferred editor was chosen. If not, they will set themselves as the xowiki editor. This should not change the behavior for existing installations already using ckeditor4, or a different editor.

    • -4
    • +3
    /openacs-4/packages/xowiki/xowiki.info
Fixed several issue with the regression test case

- don't hard-code locales

- don't base decision to perform decimal comma tests on the fact that the locale is enabled

(it might be enabled but not loaded)

- perform test, when a locale with decimal point is enabled and loaded and the locale

of the test user can be set to it