• last updated 26 mins ago
Constraints: committers
Constraints: files
Constraints: dates
Replace the lame template::util::get_opts with some homemade utility that will parse arguments reliably, adjust the one upstream use case where arguments other than those documented might be passed to the element creation, introduce a warning when this happens somewhere else

Prevent names made only of invalid characters to end up null after sanitization, as done in other UIs in this package

Fix test, the proc behaves as documented (and IMO, it should go away at some point)

increase robustness

New test for template::util::get_opts

This will expose a bug when an argument in an even position is specified that starts with a "-" character

improve validation

provide missing value for inform widget

improve validation

Gradually improve usability and security of the calendar item new/edit form by adding additonal input validations. Prefer built-in input validation over custom validation. Also make sure all needed Javascript is in place.

    • -23
    • +29
Fix typo

not necessary to check if format is a list

move the check for the provided format on richtext level

Fix typo

Make ::xo::db::require package a shorthand for ::xo::library require, which will remember the dependency

This will also make sure that dependent files are reloaded when a dependency is reloaded

Depend specifically on the form-field-procs from xowiki

tighten page contract

Depend specifically from the form-field-procs file to support the case of reloads

Don't require the whole xowiki, as it is already a dependency

    • -1
    • +0
Make xowf an explicit dependency, so that we don't need to require xowf and xowiki in the tcl files

increase robustness

New feature: cookie namespaces

So far, all OpenACS versions used "ad_" as a prefix for cookies (such

as ad_login, ad_session_id, ...). In certain situations this can lead

to confusion, since cookies are managed by browsers via domain names,

and running multiple OpenACS instances in the same domain will cause

overwriting of such cookies by these instances. The can happen e.g.

when running multiple instances on the same machine, or using

port-forwarding to virtual machines/containers, using reverse proxies,

etc. Note that the cookie overwriting problem does not exist for

host-node-mapped subsites, since host-node-mapping depends on domain


One could consider using the port in the cookie name (as

sometimes noted as an option), but this would not work, in case the

same server should be reachable over multiple ports.

Therefore, one can now specify a "CookieNamespace" in the OpenACS

configuration file, which is per default "ad_", which is sufficient

for the majority of installations. In cases, where it is needed, a

different CookieNamespace can now be configured.

To manage the cookie names internally, OpenACS provides a new API call

security::cookie_name to derive the namespaced cookie name from a stem.

Snippet of the OpenACS configuration file for setting the CookieNamespace


# OpenACS specific settings (per server)


ns_section ns/server/${server}/acs {

ns_param CookieNamespace "ad_"



cleanup: the updated version of the site-note code is appartently stable enough also for bootstrap situations

    • -16
    • +9
remove commented out coude

Provide better debug info in case "ns_parseurl" fails inside util::split_location

Factor our private function "util::ns_set_pretty_print" which might be

used also on other occasions.

use bootstrap button classes for print button in the exam protocol (many thanks to Monika Andergassen for the suggestion)

replace non-existing class "btn-small" (for bootstrap3) by non-existing class "btn-secondary", which shows in the right color and is future proof (introduced by bootstrap 4).

prevent double-sorting

some more fine-tuning

Make use of extended functionality of OrderedComposite->orderby with -type argument

bumped version number to 0.64

Perform stricter checking of parent_ids

bump version number of xowf to 5.10.1d34

    • -1
    • +1