• last updated 4 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
- Refine security policies: when necessary, define both a nonce and a

'unsafe-inline' to ensure compatibility on some less adavanced

browsers

- use same "secure" setting for ad_session_id, otherwise, just the

last one is honored

- fix linefeed and semicolon in js for focus handling

- fix gravatar image computation

- replace deprecated tags in documentation page

- replace depreacated tags in documentation pages

- replace deprecated tags in doc pages

- improve checking of image_ids

- replace deprecated tags in documentation pages

    • -189
    • +202
    /openacs-4/packages/workflow/www/doc/specification.adp
- replace deprecated tags

- add templated doc file

- add templated file

    • -0
    • +222
    /openacs-4/packages/bug-tracker/www/doc/bug-tracker-spec.adp
- use template::add_body_script to allow more strict CSP

- fix css in generator procs

- add csp-collector

    • -0
    • +2
    /openacs-4/www/SYSTEM/csp-collector.tcl
file csp-collector.tcl was initially added on branch oacs-5-9.

    • -0
    • +0
    /openacs-4/www/SYSTEM/csp-collector.tcl
- fix test condition

- fix brace

- fix braces

- don't add a bodyscript for every day

- clean dirty editor buffer

- replace onclick handler by eventlistener (for more strict CSPs)

- turn onclick handler into event listener and a body script (for strict CSPs)

- fix css statements

- add preventDefault() to all event handlers listening to click events

- prevent jumping in event listeners

- added sample template oacs-view3-bootstrap3.adp as used on openacs.org

- updated sample templates

file oacs-view3-bootstrap3.adp was initially added on branch oacs-5-9.

- add CSP directives

- use addEventListener instead of onclick markup for wiki-search,

edit-tags and popular-tags

- fix popular tags link

- regenerated template files

- added scp directives for yui

- bump version number to 5.9.1d12

    • -3
    • +3
    /openacs-4/packages/xowiki/xowiki.info
    • -1
    • +1
    /openacs-4/packages/xowiki/lib/view.tcl
- use always template::head procs

- bump version number to 0.150

- add required CSP directives; turn "body_handler -event onload" into a body_script

- add CSP directive "img-src 'self'" per default