OpenACS / openacs-4

packages

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 139
Last Commit: 29 Jul
Commits this week: 0
Total Lines of Code (LoC): 5,071,213
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 3 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Tuesday 29 Jul
11:36 am

antoniop

Fix typo

Options
    • -2
    • +2
    ./richtext-tinymce/tcl/richtext-procs.tcl
11:32 am

antoniop

Bump tinyMCE default version number to 8.0.1

This is a major release upgrade, with a couple breaking changes (see https://www.tiny.cloud/docs/tinymce/latest/migration-from-7x/).

As language pack for version 8 do not exist yet, we currently keep using those from 7 for any version >= 7. This should go away as soon as an own language pack is released for 8.

Options
    • -2
    • +2
    ./richtext-tinymce/richtext-tinymce.info
    • -4
    • +13
    ./richtext-tinymce/tcl/richtext-procs.tcl
Monday 21 Jul
11:21 am

gustafn

Fix accidental removal of root site‑node read permissions (#3477)

Submitting the “/” site‑map permissions form without any changes inadvertently

omitted direct (read‑only) permissions, causing not-logged-in users to see

“The page isn’t redirecting properly” when accessing the root node.

This change ensures that existing direct permissions are preserved when

the form is submitted, even if no changes were made.

Thanks to Khy H for reporting this!

Options
    • -1
    • +2
    ./acs-subsite/www/permissions/perm-include.tcl
Sunday 20 Jul
12:46 pm

gustafn

fix for bug #3476: ilike is not supported on Oracle

Many thanks to Sung Hong for the report and fix

Options
    • -2
    • +2
    ./acs-subsite/www/permissions/perm-user-add-include.tcl
9:37 am

gustafn

Avoid noisy “table not found” errors on PostgreSQL

Previously, our localization script always queried the Oracle‐specific

view `v$nls_valid_values`. On PostgreSQL this table doesn’t exist, so

the DB driver logged a misleading “relation does not exist” error.

Now, we only perform that query when connected to Oracle. For all other

DBs (e.g. PostgreSQL) we skip it, eliminating spurious errors from

the logs.

In the the futures, one should introduce a new API call named in the

lines of "get_NLS_Info" that encapsulates the database‐specific logic

for determining language, charset, and territory.

Options
    • -22
    • +23
    ./acs-lang/www/admin/locale-edit.tcl
Wednesday 09 Jul
5:38 pm

mischa

Allow to verify emails again (fix bug introduced in https://github.com/openacs/openacs-core/commit/3657d747e189ffc9b345b190e8969ff8db78c0c1 )

Options
    • -2
    • +2
    ./acs-admin/www/users/member-state-change.tcl
Sunday 06 Jul
7:35 pm

gustafn

bumped upstream version to 5.3.7

Options
    • -2
    • +2
    ./openacs-bootstrap5-theme/openacs-bootstrap5-theme.info
    • -1
    • +1
    ./openacs-bootstrap5-theme/tcl/resource-procs.tcl
Thursday 26 Jun
11:17 am

gustafn

bump upstream version number to 12.3.0

Options
    • -1
    • +1
    ./highcharts/tcl/resource-procs.tcl
Thursday 12 Jun
7:05 pm

gustafn

improved clarity of the code and simplified structure

Options
    • -16
    • +16
    ./acs-tcl/tcl/security-procs.tcl
Wednesday 11 Jun
11:36 am

gustafn

fix for using fallback interface and wrong results for non TLS installation

Many thanks to Antonio for flagging this and provide insights

Options
    • -3
    • +8
    ./acs-tcl/tcl/security-procs.tcl
Tuesday 10 Jun
3:19 pm

antoniop

Fixes to SSE notifications

- request for Notification permission at the time we are subscribing to it, so that it happens following a user interaction, required by the API

- find a plain-text format that will keep displaying the URLs as formatted in the notification, as the API does not support HTML

Options
    • -10
    • +4
    ./notifications/lib/notification-sse.adp
    • -7
    • +8
    ./notifications/tcl/notification-sse-procs.tcl
    • -0
    • +16
    ./notifications/www/request-new.adp
    • -2
    • +4
    ./notifications/www/request-new.tcl
Monday 09 Jun
2:52 pm

gustafn

provide complaints for invalid repository URLs

Options
    • -2
    • +4
    ./acs-admin/tcl/apm-admin-procs.tcl
Sunday 08 Jun
2:52 pm

gustafn

Version and CDN maintenance for tinymce

- Switched from cdnjs to jsdelivr

- Bumped upstream version number from 5.3.3 to 5.3.6

- bumped version to 2.1.9

Options
    • -3
    • +3
    ./richtext-tinymce/richtext-tinymce.info
    • -6
    • +8
    ./richtext-tinymce/tcl/richtext-procs.tcl
1:00 pm

gustafn

Version and CDN maintenance for bootstrap 5

- Switched from cdnjs to jsdelivr

- Bumped upstream version number from 5.3.3 to 5.3.6

- bumped version to 6.0.0d3

Options
    • -3
    • +3
    ./openacs-bootstrap5-theme/openacs-bootstrap5-theme.info
    • -7
    • +11
    ./openacs-bootstrap5-theme/tcl/resource-procs.tcl
12:58 pm

gustafn

bumped version number to allow packages to use mutiple tags from jsdelivr

Options
    • -2
    • +2
    ./acs-tcl/acs-tcl.info
11:57 am

gustafn

::util::resources::cdnjs_get_newest_version: support cases, where multiple tags are returned

Options
    • -2
    • +3
    ./acs-tcl/tcl/utilities-procs.tcl
Thursday 05 Jun
3:49 pm

gustafn

Version and CDN maintenance

- Switched from cdnjs to jsdelivr

- Bumped upstream version number from 1.11.3 to 1.13.1

- bumped version to 0.3d1

Options
    • -3
    • +3
    ./bootstrap-icons/bootstrap-icons.info
    • -6
    • +9
    ./bootstrap-icons/tcl/resource-procs.tcl
3:48 pm

gustafn

bumped version number to 6.0.0d4

Options
    • -2
    • +2
    ./acs-tcl/acs-tcl.info
3:44 pm

gustafn

pass version number, since it is needed in the path

Options
    • -1
    • +1
    ./bootstrap-icons/www/sitewide-admin/index.tcl
3:42 pm

gustafn

added support for jsdelivr, since cdnjs misses many new releases

Options
    • -1
    • +1
    ./acs-tcl/lib/check-installed.adp
    • -3
    • +3
    ./acs-tcl/lib/check-installed.tcl
    • -18
    • +52
    ./acs-tcl/tcl/utilities-procs.tcl
Wednesday 14 May
11:21 am

gustafn

replaced hard-coded postgres version numbers, that were introduced for testing

Options
    • -2
    • +2
    ./acs-admin/www/posture-overview.tcl
Monday 05 May
6:36 pm

gustafn

fix for "security::get_secure_qualified_url" when no an old-style servername is used

Options
    • -6
    • +27
    ./acs-tcl/tcl/security-procs.tcl
Sunday 04 May
6:53 pm

mischa

Fix variable name

Options
    • -2
    • +2
    ./acs-subsite/tcl/rel-types-procs.tcl
Tuesday 29 Apr
4:15 pm

gustafn

bumped highcharts version to 12.2.0

Options
    • -2
    • +2
    ./highcharts/highcharts.info
    • -2
    • +2
    ./highcharts/tcl/resource-procs.tcl
3:11 pm

gustafn

don't raise an exception, when invalid host header field is provided

Since this happens often with introsion attempts, provide a security warning.

Options
    • -2
    • +9
    ./acs-tcl/tcl/security-procs.tcl
3:09 pm

gustafn

use "ns_log security" when available

Options
    • -3
    • +3
    ./acs-tcl/tcl/security-init.tcl
3:08 pm

gustafn

cleared editor buffer

Options
    • -1
    • +1
    ./acs-tcl/tcl/00-icanuse-procs.tcl
2:59 pm

gustafn

added: icanuse "ns_log security"

Options
    • -0
    • +1
    ./acs-tcl/tcl/00-icanuse-procs.tcl
Thursday 24 Apr
5:56 pm

gustafn

new feature: added database vulnerability checks to posture overview

Extended the /acs-admin/posture-overview page to include known CVEs

for both the database client library and the database server in

use. Previously, the overview displayed privacy and privilege analyses

and flagged vulnerable JavaScript libraries; it now also surfaces

database‐related vulnerabilities.

* Leverage the NaviServer–nsdbpg API to fetch and display client‐ and

server‐side version numbers

* Drive this feature via a database‐agnostic interface—only the nsdbpg

driver currently returns versions, but support for other databases

can be added by updating their drivers (no NaviServer core changes

required)

To use this new feature, use the latest NaviServer and nsdbpg releases.

Otherwise, the section "Database Vulnerability Check" won't appear.

Options
    • -0
    • +52
    ./acs-admin/www/posture-overview.adp
    • -3
    • +63
    ./acs-admin/www/posture-overview.tcl
    • -7
    • +76
    ./acs-tcl/tcl/utilities-procs.tcl
Friday 11 Apr
2:13 pm

gustafn

Adjusted results for file updates

Many thanks to Khy H.

For details, see https://openacs.org/forums/message-view?message_id=7412487

Options
    • -5
    • +11
    ./richtext-ckeditor4/tcl/ckfinder-init.tcl