• last updated 15 hours ago
Constraints: committers
Constraints: files
Constraints: dates
Remove attack surface

Check permissions when one accesses the script and also when one performs the actual unsubscribing operation

Harden safety: require login, do not let people outside the requester fiddle with the frequency

Make oacs-dav only a weak dependency for file-storage, if the package is not there, just treat it as if the parameter was disabled

Fix typo

Disable vuh, add remarks

    • -0
    • +5
added OAuth based LTI integration and launch buttons

For details, see https://openacs.org/xowiki/accessing-lti-services

    • -2
    • +2
    • -0
    • +366
    • -22
    • +9
file lti-includelet-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
file lti-procs.tcl was initially added on branch oacs-5-10.

    • -0
    • +0
use colon prefix for cmd names, simplify logic slighly

Make sure package_id is set (many thanks to Günter Ernst)

perform proper cleanup after the test

delete modifying user info in acs_objects such that test user can be deleted as well

Avoid rollback in web tests

Avoid rollback in 'fs_add_file_to_folder' test in particular

removed unclear test

Rollback after tests

fix typo

Whitespace changes + Editor hints

Relax error level

fix error message

decativate prevention of multiple tabs for exam protocol (and maybe other listings)

Fix long standing regression

After https://cvs.openacs.org/changelog/OpenACS?cs=MAIN%3Adaveb%3A20080908165252, in template::list::write_csv we started looping through the list "elements", rather than the "display_elements". This prevents specifying different sets of columns to be returned depending on the "-formats" and "-selected_format" options in template::list::create. Many thanks to Oasi Software that customized this proc a long time ago, so that I could realize where the problem was.

Fix blind spot when setting the return_url

    • -9
    • +10
Do not abort the script until we are done with e.g. notifications and such

    • -5
    • +4
Whitespace cleanup

    • -4
    • +4
    • -13
    • +13
Fix typo

    • -2
    • +2
Refactor query to go over the fs hierachy, rather than the permission one, add remarks

Recover logic went missing after refactoring (with some remarks)

Comment deprecated proc, which was before defined as private, because of a false positive in acs-api-browser.callgraph__bad_library_calls: the "Authenticate" operation in the spec of auth::authentication::create_contract is mistakenly interpreted as the deprecated proc