Support for range types in .xql files:

PostgreSQL supports range types since 9.5. When using range types, square braces have to be used in SQL statements. Since OpenACS uses always Tcl substitution in .xql files, and OpenACS does NOT allow backslash substitution in these files, square brackets could not be escaped and therefore not be used in .xql files so far. This change allows now a developer to deactivate the substitution by passing e.g. -subst none to the db_* command using the .xql file. Valid values for -subst are all, none, vars, and commands, default is all which is exactly the behavior of previous releases. Therefore, this change is fully backward compatible.

Registry for .js and .css libraries: allow besides classical URLs symbolic names for loading external resources (e.g. jquery), this makes it easier to upgrade libraries in multiple packages (without running into problems with duplicate versions) and supports switching between CDN and local pathsURN. The existing implementation is based on URNs and extends the existing template-head API to support registration for URNs. A URN provides an abstraction and a single place for e.g. updating references to external resources when switching between a CDN and a locally stored resource, or when a resource should be updated. Instead of adding e.g. a CDN URL via template::head::add_script, one can add an URN and control its content from a single place. Use common namespaces for OpenACS such as urn:ad:css:* and urn:ad:js:*.

Improved API browser: Visualization for code dependencies (which procs calls what, from where is a proc being called) and test-coverage

Warn site administrators about expiring certificates

Added text/markdown to the accepted text formats or rich-text widget

Additional input types (and widgets) for ad_form:

Added additional page_contract filter: oneof(red|green|blue)

template::add_event_listener and template::add_confirm_handler now can target elements by CSS selector

Improved support for streaming HTML: The new API function template::collect_body_scripts can be used to get the content of template::script or CSP calls (template::add_body_script, template::add_event_listener, template::add_body_handler, template::add_script) when streaming HTML (incremental HTML) is used. Before, these call could bot be used for streaming HTML.

Login:

Forums:

Chat:

acs-lang:

Notifications:

User/Person/Party API: rework and rationalize caching of all party, person and user API, create separate caches for each of these types, make the API and return dicts. acs_user::get will not fail anymore with non-existing user.

User Portrait: created API to retrieve and create, store and delete the user's portrait. Also address leftover child relationships from the past and delete them properly.

All packages in the oacs-5-10 branch pass regression test

Web testing was separated from non-maintained tcltest and was built on the standard OpenACS infrastructure

Include web testing per default in standard regression testing

Introduced new test authentication authority, allowing to run many user administration tests outside the context of a "real authority": in cases where the real authority depends on external services to proof identity, (e.g. Kerberos), those tests would just fail.

Introduce the display of warnings in the UI of automated testing

Added test coverage information in the automated testing pages, using the new proc-coverage API and providing test coverage information for packages and system wide.

Increased overall coverage of public API

New tests checking various data-model properties and smells

Provided lock-free implementation of ad_page_contract_filters and ad_page_contract_filter_rules. This change improves parallel processing of requests and is primarily interesting for sites with a few mio page views per days. These locks were among the most frequent nsv locks

Reduced locks on util_memoize_cache my more invariants values into per-thread caching (acs_lookup_magic_object, ad_acs_version, .... ) and by avoiding specialized calls, which can be realized by already optimized ones (apm_package_installed_p_not_cached ref-timezones was most frequently used util_memoize_cache entry). These changes are necessary to avoid full still-stand on the unfortunate long-time locks on util_memoize_cache stemming from permission and user management with wild-card flush operations, which require to iterate over all cache entries (which might be on a busy server several hundred thousands)

Added new interface for cache partitioning to reduce lock latencies on high load websites

Added new interface for lock-free per-thread and per-request caching to avoid scattered ad-hoc implementations

Better reuse of DB handles (reduced expiring/reopen/etc.), faster access to handles

When the package acs-automated-testing is disabled, startup time is reduced by avoiding loading of support functions and tests; the size of the blueprint is reduced

xowf: loading of at-jobs is significantly improved.

Strengthened page contracts

CSP support for application packages

CSP fine tuning  

Provided a new ad_try implementation based on Tcl's try replaces now the old ad_try, with_catch and with_finally, which are marked as deprecated

The new ad_try is in essence Tcl's try but with predefined handling of ad_script_abort and should be also used instead of catch, when the OpenACS API is used (which might use script aborts)

All core packages use the new ad_try instead of the deprecated versions.

NaviServer/AOLserver continue after connection closing commands to execute a script. This is in many situations not desired, especially, when for the page as well a .adp file exists, which will try to deliver this on the already closed connection. This can lead to errors in the error.log file, which are sometimes hard to analyze

Due to this cleanup, developers should use in most such cases cases ad_script_abort

Connection closing commands are e.g. ad_returnredirect, ad_redirect_for_registration, cr_write_content, ad_page_contract_handle_datasource_error, ad_return_string_as_file, ad_return_complaint, ad_return_error, ad_return_forbidden, ad_return_warning, ad_return_exception_page, ns_returnredirect, ns_return, ns_returnerror

The new version has made on most occasions explicit, when the script should abort.

New API call category::get to obtain category description for a category_id and locale

New utility ad_pad emulating both lpad and rpad typically available in DBMSs

New proc lc_content_size_pretty, prettify data size given in bytes. It supports three different standards (SI base-10, IEC base-2 and the old JEDEC base-2), default is SI base-10.

New flag -export for ad_form: this flag uses export_vars under the hood and supports all of this API's features (e.g. :multiple, :sign, :array). This addresses a long standing TODO

util::pdfinfo: simple poppler-utils wrapper to extract pdf information

util::http: leverage new ns_http features such as request file spooling. Native implementation will now be used only on NaviServer >= 4.99.15.

Database API:

Groups API:

Many deprecated API calls were included in the code (and sometimes still in use) sometimes more than 10 years after these calls have been deprecated. In case a site modification still uses deprecated code, the user is warned about this. The OpenACS 5.10 code base does not depend on deprecated code.

Move deprecated code into separate files

Made loading of deprecated code optional (can be controlled via parameter "WithDeprecatedCode" in section "ns_section ns/server/${server}/acs" of the config file. By default, deprecated procs are still loaded

When deprecated code is not loaded, the blueprint of the interpreter is smaller. The following number of lines of code can be omitted when loading without the deprecated procs:

Made sure all party emails are stored as lowercase through the API

Fixed long standing regression in template::list: we were looping through the list "elements", rather than the "display_elements". This prevents specifying different sets of columns to be returned depending on the -formats and -selected_format options in template::list::create.

acs-content-repository: New HEIC and HEIF mimetypes

acs-mail-lite: handle to_addr specified as "DisplayName <email>" without errors

Fixed invalidating of all existing user logins, (aka) "Logout from everywhere" feature, useful e.g. to make sure no device still holds a valid login when we change our password on a device

Don't lose the return URL when one tries to join a subsite before being logged in

Added doc(base_href) and doc(base_target) for setting <base> element via blank-baster (see issue #3435)

Groups:

acs-lang:

search: make sure objects in the search indexer queue still exist by the time they are swept by the indexer (e.g. items deleted before the indexer could sweep them)

attribute::delete: fix proc so it leverages stored procedure capability of dropping the database table as well

util::http: fix UTF-8 encoding issues for some cornercases

Localization: Complete Italian and Spanish localization for the whole .LRN set of packages (including themes). Message keys for new and previously localized packages have also been updated

Improved handling of server implementation-specific code: server-specific code can be optionally loaded via specifying the server family in the filename. Provided *-procs-aolserver.tcl and *-procs-naviserver.tcl similar to *.postgresql.xql and *.oracle.xql where appropriate

Modernization of Tcl idioms.

Compliance of files, proc names, ... to the naming conventions.

White space cleanup, indentation changes.

Improvement of public API documentation

Adjustment of proc protection levels (public, private)

Adjustment of log severity

Cleanup of obsolete files

Replacement of handcrafted forms by ad_form

Typo fixing

Editor hints

Replacement of deprecated calls

Addition of missing contracts

...

Cleanup of obsolete nonportable SQL constructs in a way Oracle and PostgreSQL code base divergency is reduced:

Reduced superfluous .xql queries

cookie-consent: alerting users about the use of cookies on a website

boomerang: performance of your website from your end user’s point of view

xooauth: OAuth implementation, including LTI (Learning Tools Interoperability)

dotlrn-bootstrap3-theme: Bootstrap 3 theme for DotLRN

xowf-monaco-plugin: Integration of Monaco editor with for code exercise types in xowf

proctoring-support: utilities and user interfaces to implement proctoring of the user session, mainly intended in the context of distance education and online exams. The main proctoring feature relies only on web technologies and does not require any plugin or additional software. Optional support for the Safe Exam Browser has also been introduced. The package is currently at the core of WU Online Exam infrastructure and is integrated in the inclass exam implementation for xowf

Driving force: Debian packaging (e.g. js minified code is not allowed)

Moved out code from acs-templating, provided interfaces to add many different richtext editors as separate packages

New OpenACS packages:

New theme manager:

Improved (broken) interface to define/manage groups over web interface

Allow to send as well mail, when membership was rejected

New functions [membership_rel::get_user_id], [membership_rel::get] and [membership_rel::get_group_id] to avoid code duplication

Added support to let user include %forgotten_password_url% in self-registration emails (e.g. in message key acs-subsite.email_body_Registration_password)

Improved subsite/www/members

Improved user interface for /admin/applications for large number of applications

Various fixes for sitewide-admin pages (under /acs-admin)

Update blueprint in "install from repository" (currently just working in NaviServer)

Further cleanup of .xql files (like what as done for acs-subsite in OpenACS 5.9.0):

Marked redundant / uncalled SQL functions as deprecated

Replaced usages of obsolete view "all_object_party_privilege_map" by "acs_object_party_privilege_map"

Removed type discrepancy introduced in 2002:

Simplified core SQL functions by using defaults:

Reduced usage of deprecated versions of SQL functions (mostly content repository calls)

Reduced generation of dead tuples by combining multiple DML statements to one (reduces costs of checkpoint cleanups in PostgreSQL)

Permission queries:

Modernize SQL:

Provided means to avoid insert/update/delete operations in the search queue:

OpenACS adds for every new revision often multiple entries to the search_queue, without providing any means to prevent this. This requires for busy sites very short intervals between queue sweeps (otherwise too many entries pile up). Another consequence is that this behavior keeps the PostgreSQL auto-vacuum daemons permanently active. Many of these operations are useless in cases where the content repository is used for content that should not be provided via search. The changed behavior should honors a publish-date set to the future, since it will not add any content with future publish dates to the search-queue.

Reduced number of insert cr_child_rels operations, just when needed:

cr_child_rels provide only little benefit (allow one to use roles in a child-rel), but the common operation is a well available in cr_items via the parent_id. cr_child_rels do not help for recursive queries either. One option would be to add an additional argument for content_item__new to omit child-rel creation (default is old behavior) and adapt the other cases.

Added support against CSRF (cross site request forgery)

Added Support for W3C "Upgrade-Insecure-Headers" (see https://www.w3.org/TR/upgrade-insecure-requests/):

For standard compliant upgrade for requests from HTTP to HTTPS

Added support for W3C "Subresource Integrity" (SRI; see https://www.w3.org/TR/SRI/)

Added support for W3C "Content Security Policy" (CSP; see https://www.w3.org/TR/CSP/)

Removed "generic downloader", which allowed to download arbitrary content items, when item_id was known (bug-fix)

Improved protection against XSS and SQL-injection (strengthen page contracts, add validators, added page_contract_filter "localurl", improve HTML escaping, and URI encoding)

Fixed for potential traversal attack (acs-api-documentation-procs)

Fixed links from host-node mapped subsite pages to swa-functions (must be always on main subsite)

Made "util_current_directory" aware of host-node-mapped subsites

Added ability to pass "-cookie_domain" to make it possible to use the same cookie for different domains

Fixed result of affected commands "util_current_location", "ad_return_url", "ad_get_login_url" and "ad_get_logout_url" for HTTP and HTTPS, when UseHostnameDomainforReg is 0 or 1.

Improved UI for host-node maps when a large number of site nodes exists

Made acs-rels configurable to give the developer the option to specify, whether these are composable or not (default fully backward compatible). This is required to control transitivity in rel-segments

The code changes are based on a patch provided by Michael Steigmann. For details, see:

Don't report data source errors with status code 200 (use 422 instead)

Let "permission::require_permission" return forbidden (403) in AJAX calls (determined via [ad_conn ajaxp])

Extended language catalogs for

Added (missing) message keys

Improved wording of entries

Added message keys for member_state changes, provide API via group::get_member_state_pretty

Fixed many broken links

Removed fully obsolete sections

Improved markup (modernize HTML)

Updated various sections

18 issues from the OpenACS-bug-tracker fixed

Made code more robust against invalid/incorrect input (page_contracts, validators, values obtained from header fields such as Accept-Language)

Fixed quoting of message keys on many places

Improved exception handling (often, a "catch" swallows one too much, e.g. script_aborts), introducing "ad_exception".

Generalized handling of leading zeros:

URL encoding

Improvements for "ad_conn":

Added various missing upgrade scripts (missing since many years) of changes that were implemented for new installs to reduce differences between "new"-and "old" (upgraded) installations

Templating

Improved location and URL handling:

MIME types:

Finalized cleanup of permissions (started in OpenACS 5.9.0):

Misc new functions:

Improved HTML rendering (acs-api-browser), provide width and height to speed up rendering

Improved ADP files (e.g. missing doc(title))

Added usage of "ad_include_contract" on more occasions

Modernize Tcl and HTML coding

Reduced dependency on external programs (use Tcl functions instead)

Improved robustness of "file delete" operations all over the code

Improved documentation, fix demo pages

Aligned usages of log notification levels (distinction between "error", "warning" and "notice") with coding-standards

Cleaned up deprecated calls:

Improved Oracle and windows support

Fixed common spelling errors and standardize spelling of product names all over the code (comments, documentation, ...)

Many more small bug fixes

New Package Parameters

New OpenACS packages:

xotcl-core:

xowiki:

xowf:

xotcl-request-monitor

chat:

file-storage:

Improved performance of acs-object deletion.

Replaced many manual referential integrity calls by built-in handing in PostgreSQL.

Removed various manual bookkeeping and deletion operations in the content repository by built-in handing in PostgreSQL.

Removed tree_sortkey on acs-objects to reduce its size and to speedup operations, where the context-id is changed (could take on large installation several minutes in earlier versions)

Removed several uncalled / redundant SQL statements and functions.

Cleanup of .xql files in acs-subsite:

Improve Performance of WebSites created with OpenACS: e.g. move core.js to a body requests, provide kernel parameter ResourcesExpireInterval to specify expiration times for resources.

Much better protection against XSS attacks.

Improved HTML validity (especially for admin pages)

Improved admin interface:

Add lightweight support for ckeditor4 for templating::richtext widget (configurable via package parameter "RichTextEditor" of acs-templating. ckeditor4 supports mobile devices (such as iPad, ...)

Improved theme-ability: Moved more information into theme packages in order to create responsive designs, reduce hard-coding of paths, HTML etc.

Improved include-handling: All includes are now theme-able, interfaces of includes can be defined with "ad_include_contract" (similar to ad_page_contract).

Improved them-ability for display_templates. One can now provide a display_template_name (similar to the SQL statement name) to refer to display templates. This enables reusability and is theme-able.

Dimensional slider reform (ad_dimensional): Removed hard-coded table layout from dimensional slider. Add backwards compatible templates Move hard-coded styles into theme styling

Notification chunks are now theme-able as well (using ad_include_contract)

Complete template variable suffixes (adding noi18n, addressing bug #2692, full list is now: noquote, noi18n, literal)

Added timeout and configurable secrets for signed url parameters to export_vars/page_contracts. This can be used to secure sensitive operations such as granting permissions since a link can be set to timeout after e.g. 60 seconds; after that, the link is invalid. A secret (password) can be set in section ns/server/$server/acs parameter "parametersecret". For example, one can use now "user_id:sign(max_age=60)" in export_vars to let the exported variable expire after 60 seconds.

Added ability to show ns_log statements of current request to developer support output when developer support is activated (controlled via package parameter "TclTraceLogServerities" in the acs-tcl package parameters)

Added ability to save data sent by ns_return in files on the filesystem. This can be used to validate HTML content also for password protected pages (controlled via package parameter "TclTraceSaveNsReturn" in the acs-tcl package parameters)

New API function "ad_log" having the same interface as ns_log, but which logs the calling information (like URL and call-stack) to ease tracking of errors.

Use per-thread caching to reduce number of mutex lock operations and lock contention on various caches (util-memoize, xo_site_nodes, xotcl_object_types) and nsvs (e.g. ds_properties)

Improved templating of OpenACS core documentation

Improved Russian Internationalization

Make pretty-names of acs-core packages more consistent

Mark unused functions of acs-tcl/tcl/table-display-procs.tcl as deprecated

Many more bug fixes (from bug tracker and extra) and performance improvements.

Version numbers:

Various bug fixes and improvements for e.g. file-storage, forums, news, notifications, xowiki.

All packages are PostgreSQL 9.1+ compatible (tested with PostgreSQL 9.3)

All SQL files with stored procedures use the recommended $$ quoting

All SQL-functions have regular function arguments instead of the old-style aliases

The function_args() (query-able meta-data) are completed and fixed

Incompatible functions (e.g. for sequences) are replaced.

All packages were brought up Tcl 8.5, including the actual Tcl idioms where appropriate (e.g. using the safer expand operator, range indices, dict, lassign, etc.)

The code was updated to prefer byte-compiled functions instead of legacy functions from ancient Tcl versions.

The code works with NaviServer and AOLserver.

All packages are free from calls to deprecated code (157 functions are marked as deprecated and will be moved into an "outdated" package in the 5.9 or 6.0 release)

General overhaul of package management

Install-from-local and install-from-repository can be used to install the provided packages based on a acs-core installation. This means that also DotLRN can be installed from repository or from local into an existing OpenACS instance.

Install-from-repository offers filtering functions, allows to install optionally from head-channel (for packages not in the base channel of the installed instance). Install-from-repository works more like an app-store, showing as well vendor information

Packages can be equipped with xml-based configuration files (e.g. changing parameters for style packages)

Package developers can upload .apm packages via workflow for review by core members and for inclusion to the repository. The option is integrated with package management, the link is offered for local packages. We hope to attract additional vendors (universities, companies) to make their packages available on this path.

New management-functions for package instances (list, create, delete package instances)

Substantially improved API browser: