gernst in OpenACS

Package new-portal: additional database indices for tables "portal_element_map", "portal_element_parameters" and "portal_datasource_def_params"; bumped package version to 2.10.0d4

file upgrade-2.10.0d3-2.10.0d4.sql was initially added on branch oacs-5-10.

Removed instmixin specification from the ::xo::oauth::Package creation statement as the to-be-mixed-in classes no longer exist; Fixed varname

Change from ad_page_contract to ad_include_contract; removed unused arguments

Remove Hinweise zum Datenschutz bei Googleparameter

Fix typo in message-key name

Strip of validation part before checking for the existence of query parameter

thighten parameter checking to valid classes

    • -3
    • +3
Provide default value for "return_url" and use "export_vars" for url-construction; whitespace changes

Make page for managing the parameter "PrivateEmailLevelP" subsite aware.

Use already existing message-key.

Fixed typo in message-key. Bump acs-lang version to reload message keys.

Remove unused variable

Use template::util::tcl_to_sql_list for proper list element quoting

ns_quotehtml user submitted value inside an error message to prevent potential XSS attack

Fix incorrect proc name

Code cleanup: use "ad_form" for form processing and "ad_include_contract"; dropped support for "change-locale-include"-include attribute "return_p" as it was never used in the include's code.

Throw an error instead of a warning when trying to use template::data::validate::oneof without having specifyed the parameter "-options" on the form element which should be validated.

Added validation "oneof" to form element validations. It checks the user submitted value to be part of a predefined list of possible values of a form element. This is typically the case with widgets of type "select" or "multiselect".

fix typo

Added switch "-ulevel" to proc "util::var_subst_quotehtml";

ad_form: quote form field values in validation error messages to prevent XSS attacks

Quote form field values in validation error messages to prevent XSS attacks

Improve proc documentation

Quote the value of the "inform"-widget value before rendering it

Quote the value of the "inform"-widget value before rendering it

Fix incorrect default value

dotlrn cache reform: added missing cache flush; added caching of "community_key"

Make sure variable is an array

fixed embedded variable name in message-key

Use the existing API when doing changes to the properties of an authority, otherwise the cache is not updated accordingly.