• last updated 6 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Add must_exist flag to enforce a safe tmpfile to already exist

  1. … 2 more files in changeset.
Fixed bug in util_convert_line_breaks_to_html

The code deleted spaces around certain tags, while - according to the

documentation, only line breaks should be removed from there.

Extended regression test.

  1. … 1 more file in changeset.
Introduce security::safe_tmpfile_p checking whether a file belongs to the configured tmpfolder and respects other constraints

The plan is to use it to improve input validations

  1. … 2 more files in changeset.
improve test coverage of apm_* API

added test for checking documentation in regard of valid HTML markup

Changed "db_multirow" to use "db_list_of_lists" instead of "db_list_of_ns_sets"

Thanks to the recent improvements in NaviServer for

"db_list_of_lists", it is more efficient to use this in "db_multirow"

(actually in "db_multirow_helper"). The implementation revealed a bug

in "db_list_of_lists", when both options "-columns_var" and

"-with_headers" were set.

Extended regression test to cover the former bug.

  1. … 1 more file in changeset.
Test apm_get_repository_channels proc

file apm-install-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./apm-install-procs.tcl
Fix typo

fix several bugs in "acs_object_type::supertype" and improve code sanity

  1. … 2 more files in changeset.
Replace not portable sql idiom with existing api, improve caching, extend regression test

  1. … 2 more files in changeset.
fix testcase as indicated by hector, extend regression test

  1. … 1 more file in changeset.
Extend 'db__db_foreach' test case, exposing a regression in 'db_foreach' with an uneven number of columns

deactivate useless warning

Improve api robustness and test it

  1. … 1 more file in changeset.
Improve test

ad_page/include_contract argspec parsing reform: allow arbitrary characters in the argspec flag parameters

This reform allows to specify an argspec containing pipes, parenthesys and other so far forbidden characters as parameters for a flag. The purpose is to enhance the expressiveness of existing validators (e.g. the oneof validator) and enable new one, for instance, a date validator using a clock format as parameter.

Pipes and parenthesys need to be escaped via the backslash character in the new syntax.

  1. … 1 more file in changeset.
file tcl-documentation-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
    ./tcl-documentation-procs.tcl
rework of ad_decode

- modernize code

- improve performance

- extend regression test

  1. … 1 more file in changeset.
Comment out test on WIP feature

Test exposing a suboptimal behavior: when we try to resolve the query via db_qd_get_fullname inside of OO code, a warning is generated

file acs-db-00-procs.tcl was initially added on branch oacs-5-10.

Fix quote_unquote_html test

Make ad_html_security_check configurable

ad_html_security_check has now three optional attributes

to make it configurable for different situations

-allowed_tags

-allowed_attributes

-allowed_protocols

If these attributes are not specified, the behavior is exactly like

before. This change makes it also easier to regression test this

function, since the behavior does not necessarily depend on a site's

parameter settings.

The function was also modernized, new regression tests were added.

  1. … 1 more file in changeset.
update questionable test slightly

util::file_content_check: new utility for checking content of a file

Check whether the provided file is of the requested type.

This function is more robust and protable than relying on

external programs and their output, but it does not work on

all possible file types. It checks a few common cases that

could lead to problems otherwise, like when uploading archives.

Bump version to 5.10.1d9

  1. … 2 more files in changeset.
minor changes: don't complain about postgres internal constraint names, provide hints for oversizing

more cases, use same testing idiom for permissions everywhere, break overlong lines

fix test cases

improve spelling

  1. … 2 more files in changeset.