• last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Prefer unset to array unset when we want to delete the entire array

See https://wiki.tcl-lang.org/page/Dict+VS+Array+Speed

  1. … 1 more file in changeset.
Trap illegal encoding exception thrown by tcl9 when a file contains invalid UTF-8 and skip the package with a warning

Unmaintained packages may contain illegal characters and we do not want the UI to crash in this situation

merge with missing files

  1. … 1450 more files in changeset.
merge from oacs-5-10

    • -0
    • +187
    ./widely-accessible-packages.tcl
  1. … 8085 more files in changeset.
make acs-admin page a better starting place for site-wide admin tasks

  1. … 2 more files in changeset.
acs-admin/install: provide a hint that we never offer a package with maturity 0 via "install from repository"

use new API ::util::resources::resource_info_procs

  1. … 1 more file in changeset.
reduced verbosity

minor cleanup: prefer list_of_lists, improved comments

    • -13
    • +13
    ./widely-accessible-packages.tcl
provide a stable order of list items by sorting

improved robustness, when cluster parameters are changed without a restart

reduced verbosity

provide posture overview for widely-accessible-packages when count == 1

  1. … 1 more file in changeset.
added test for xotcl/version-numbers

Added state of "robots.txt" and "security.txt" to posture overview

Prettify subsite admin page

- Made explicit that "Administration" means "Subsite Administration"

(use the term consistently)

- Changed message key of acs-subsite.administration to "Subsite Administration"

- added icons to subsite admin index page (full set only for bootstrap icons)

  1. … 8 more files in changeset.
increased timeout for checking requests on own site

fixed package_id in ADP page

improved PostgreSQL version compatibility

fixed URLs

New pages for admins: Security and Privacy Posture Overview

As expressed as a wish from OpenACS users at the last OpenACS

conference, a "Security and Privacy Posture Overview" was added that

offers a quick overview of the state of the system and eases access to

the parameters scattered over different packages in the system.

The page offers:

- Quick overview

- Check of security and privacy relevant package parameters

- Permission and accessibility check of mounted packages

- Response header check

- External library check (CDN vs local usage, vulnerable or outdated libraries)

TODO: One should probably reconsider the permissions of some of the standard site nodes

(similar to what we did with the API browser some time ago).

    • -0
    • +170
    ./widely-accessible-packages.tcl
file posture-overview.adp was initially added on branch oacs-5-10.

file widely-accessible-packages.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./widely-accessible-packages.tcl
file widely-accessible-packages.adp was initially added on branch oacs-5-10.

    • -0
    • +0
    ./widely-accessible-packages.adp
file posture-overview.tcl was initially added on branch oacs-5-10.

removed obsolete file

Made in parameter-add/edit/delete operations update of info file optional

Support default values and return:url for parameter management pages

adapt to latest cluster management changes in acs-tcl

improved spelling

  1. … 2 more files in changeset.