• last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
New pages for admins: Security and Privacy Posture Overview

As expressed as a wish from OpenACS users at the last OpenACS

conference, a "Security and Privacy Posture Overview" was added that

offers a quick overview of the state of the system and eases access to

the parameters scattered over different packages in the system.

The page offers:

- Quick overview

- Check of security and privacy relevant package parameters

- Permission and accessibility check of mounted packages

- Response header check

- External library check (CDN vs local usage, vulnerable or outdated libraries)

TODO: One should probably reconsider the permissions of some of the standard site nodes

(similar to what we did with the API browser some time ago).

    • -0
    • +170
    ./widely-accessible-packages.tcl
file posture-overview.adp was initially added on branch oacs-5-10.

file widely-accessible-packages.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./widely-accessible-packages.tcl
file widely-accessible-packages.adp was initially added on branch oacs-5-10.

    • -0
    • +0
    ./widely-accessible-packages.adp
file posture-overview.tcl was initially added on branch oacs-5-10.

removed obsolete file

Made in parameter-add/edit/delete operations update of info file optional

Support default values and return:url for parameter management pages

adapt to latest cluster management changes in acs-tcl

improved spelling

  1. … 2 more files in changeset.
Added support for automatic disconnect when a dynamic cluster node is shut down

When the dynamic cluster configuration has scale for certain

occasions, it makes sense to provide down scaling support when these

occasions are over, which does not rely on the configured cluster

disconnect timeout (ClusterAutodeleteInterval). The new code will send

automatically a disconnect request when a dynamic cluster node is

terminating gracefully.

Depending on the configuration, a new version of NaviServer will be

necessary to reliably execute disconnect requests. Appropriate changes

are in the NaviServer release/4.99 and main branches.

- Bumped version numbers:

* acs-tcl to 5.10.1b4

* acs-admin to 5.10.1b4

  1. … 4 more files in changeset.
Adding auto-deletion of dynamic cluster nodes and small refactoring

- New kernel parameter "ClusterAutodeleteInterval" to specify, when a

dynamic cluster node is not regarded as temporarily unavailable but

as definitely gone. The default value for this parameter is 2m (2

minutes).

- small refactoring to reduce duplicated logic

- Bumped version numbers:

* acs-kernel to 5.10.1b4

* acs-tcl to 5.10.1b3

* acs-admin to 5.10.1b3

  1. … 5 more files in changeset.
Small update for cluster support

- Improved visualization of cluster nodes that we lost contact to

- New kernel parameters to reduce hard-coded values and to make purpose more explicit

* new parameter ClusterHeartbeatInterval (default 20s),

was hardcoded before to the new default value

* renamed PreferredLocationRegexp -> ClusterPreferredLocationRegexp

* renamed EnableLoggingP -> ClusterEnableLoggingP

- Bumped version numbers:

* acs-kernel to 5.10.1b3

* acs-tcl to 5.10.1b2

* acs-admin to 5.10.1b2

acs-kernel acs-admin acs-tcl/

  1. … 7 more files in changeset.
Improve Git repository rebuild

- support tags: CVS tags are exported to the Git mirror and should have the precedence over branches when collecting available channels. Tags are now exported correctly from the Git repos.

- limit exported versions: we can now limit the versions that will be exported and also those that will only be exported via the "compat" channel. This works via a flag to the proc.

- hardcode openacs.org in the documentation link fo the exported repo, as the assumption is that the link will be served from the xowiki instance there

- include a download button, as per the openacs.org version in the extracted repo

  1. … 1 more file in changeset.
Fix typo

Formatting changes

harden page contracts

  1. … 24 more files in changeset.
harden page contracts

  1. … 8 more files in changeset.
skip "-url" in "export_vars -url" since it is the default

  1. … 10 more files in changeset.
Prefer Naviserver API directly

Whitespace cleanup

Modernize api

improve page contract since passed-in values are used in a list filter

prevent break between icon and label

  1. … 1 more file in changeset.
file cluster.adp was initially added on branch oacs-5-10.

file cluster.tcl was initially added on branch oacs-5-10.

cluster reform: added admin page and minor updates

  1. … 3 more files in changeset.
prefer adp:icon over old-style actions in square braces

fix broken HTML

modernized appearance of acs-admin

bumped version to 5.10.1d4

  1. … 2 more files in changeset.