• last updated 21 hours ago
Constraints: committers
Constraints: files
Constraints: dates
proivde upgrades script for PG 11 and bump version number to 5.9.2d2

  1. … 1 more file in changeset.
document parameter consitently concerning required server restarts

Add @see in deprecated proc, declare acs-kernel.AdminOwner parameter deprecated (superseded by acs-kernel.HostAdministrator)

  1. … 1 more file in changeset.
Change database type for boolean from "bool" to "boolean" in acs_datatypes

  1. … 2 more files in changeset.
Remove obsolete table apm_package_db_types: this was superseded by threaded cache ::acs::known_database_types

  1. … 5 more files in changeset.
imporve spelling

  1. … 6 more files in changeset.
Replace obsolete function bitfromint4() by cast

  1. … 2 more files in changeset.
Replace obsolete funktion bittoint4() by cast

  1. … 2 more files in changeset.
Fix typos

  1. … 52 more files in changeset.
Portrait management reform and correction

Moved logics to create a portrait in a proc in order to reuse it in other places

such as picture retrieval services (e.g. Bach picture retrieval at WU). Turns out

we were not doing our homeworks here: when the portrait is created into CR, a

cr_child_rel is created. When the portrait was erased though, this was not cleaned

up propely, leaving dangling acs_objects with no reference in cr_child_rels table.

On busy sites, this can grow in the ten thousands order of magnitude. Changes include

also fix for this behavior and tuples cleanup.

  1. … 16 more files in changeset.
  1. … 2 more files in changeset.
Use PostgreSQL 9.0 compatible idioms in 'sql' stored procedure

  1. … 2 more files in changeset.
Add kernel parameter SecureSessionCookie

Allow to set the session cookie as secure (default 0).

This parameter should only be set, when ALL requests to the site requiring a cookie

are over https.

merged changes from the oacs-5-9 branch and resolved conflicts

  1. … 7834 more files in changeset.
- do not depend on beta or development versions

- make sure that released versions are not beta or development

- align version numbers (e.g. use also 5.9.1 for xotcl-core)

- bump version numbers to 5.9.1

  1. … 83 more files in changeset.
bump version numbers to 5.9.1b9 respectively to 2.9.1b9 to prepare for release

  1. … 91 more files in changeset.
Support internationalization via [group::get_member_state_pretty] and

other related messages concerning state changes.

  1. … 5 more files in changeset.
Fix spelling errors

  1. … 48 more files in changeset.
Fix wrong version number

Added missing data model upgrade from version 5.2, affecting long lived installations.

  1. … 1 more file in changeset.
- bump version number of OpenACS to 5.9.1b3 and DotLRN to 2.9.1b3

  1. … 79 more files in changeset.
Bump version numbers for OpenACS 5.9.1b1

  1. … 81 more files in changeset.
Added new database utility to retrieve primary keys of a table.

Source for the postgres version: https://wiki.postgresql.org/wiki/Retrieve_primary_key_columns

Source for the oracle version: http://stackoverflow.com/questions/4749650/function-that-would-return-the-data-retreived-from-a-select-query-oracle

  1. … 4 more files in changeset.
Added new database functions to check for various properties and constraints in database metadata:

- foreign key constraint

- unique constraint

- not null constraint

- get column default value

  1. … 4 more files in changeset.
- add nonces to script tags

- add body handlers

  1. … 7 more files in changeset.
- Added support for W3C Content Security Policy(CSP)

* For details about CSP, see https://www.w3.org/TR/CSP/

* New calls:


Generate a CSP nonce token token

security::csp::require /directive/ /value/:

Add a requirements of a page to the CSP in order to generate

later a tailored policy with the minimal permissions for

this page. For example, the following requirement is

currently added per default to the oacs-master template to

permit style tags and style attribites in the markup.

security::csp::require style-src 'unsafe-inline'


Generate a policy from the requirements

* Added Kernel Parameter CSPEnabledP to activate/desctivate CSP

(default on)

- Bump version numbers

acs-tcl to 5.9.1d11

acs-bootstrap-installer to 5.9.1d4

acs-kernel to 5.9.1d17

  1. … 7 more files in changeset.
- add kernel parameter to make ad_session_id cookies secure (useful on sites, where all sessions are via https, improves security rating on e.g. mozillas observatory tool)

  1. … 1 more file in changeset.
composition-rel reform:

- apply changes developed by Michael Steigman for making rel-types

configurable whether these should be composable or not

(default is: these are composable, which was up to now the only


- improved documentation of log argument lists of SQL functions

- Background:



- bump version number of acs-kernel to 5.9.1d16

  1. … 34 more files in changeset.
- added kernel parameter MaxUrlLength (default 2000) to remove

hard-coded length in request-processor-procs.

- lifted data model restriction of 100 characters for url-segments

(changing types of "site_nodes.name" from "varchar(100)" to "text")

(PostgreSQL only)

- site_node__node_id

* use built-in string functions instead of characterwise loop

* use default for last argument

* Improve source-code documentation

- bumped version number of kernel to 5.9.1d15

  1. … 3 more files in changeset.
- remove dependency on acs_object_party_privilege_map

  1. … 2 more files in changeset.