Commit Graph

1666 Commits

Author SHA1 Message Date
Sam Hemelryk 06a72e0192 MDL-39824 output: tidied up output before bootstrap cleaning 2013-06-07 17:31:59 +12:00
David Mudrák 3633c2576d MDL-39490 Inform the developer about incorrect order of text processing
Before calling format_text(), the text must be processed with
file_rewrite_pluginfile_urls(). This order is important
for some text filters that look for valid pluginfile.php URLs.
2013-05-03 17:09:58 +02:00
David Monllao b060de934b MDL-38041 behat: Adding styles to debugging messages
Only when a simulated user session
is running.
2013-05-03 10:05:08 +08:00
Eloy Lafuente (stronk7) bee592add8 Merge branch 'wip-MDL-39216-m25' of git://github.com/samhemelryk/moodle 2013-05-01 02:29:36 +02:00
Sam Hemelryk 5c8f681713 MDL-39216 url: moodle_url now handles empty param values properly 2013-04-30 11:09:47 +12:00
Tim Hunt 328ac3069b MDL-39378 Improve s() performance.
These changes give about a 10% speed-up in this function. The significant changes are:
1. Simplify the if logic to remove unnecssary cases.
2. Dont pass default argument values to htmlspecialchars, just using the
   defaults is faster.
3. I can confirm that /i regex is faster than the equivalent regex without the i.

I also added more unit tests to test the edge cases.
2013-04-26 18:49:25 +01:00
Tim Hunt 0c6f9e759b MDL-39378 s(): fix bad hex regex 2013-04-26 18:38:29 +01:00
Marina Glancy c269b9d16f MDL-38309 move HTML generation from print_tabs() to renderer
- created renderable object tabtree that represents the tree of tabs, extends tabobject
- created core_renderer::tabtree(), and supporting core_renderer::render_tabtree(), core_renderer::render_tabobject()
- change print_tabs() to use renderer function, deprecate supporting not needed functions
2013-04-15 12:13:03 +10:00
Andrew Robert Nicols 56d465b2d3 MDL 38508 JavaScript: Split out AJAX and non-AJAX help
We need to keep these two separate as scripts which define AJAX_SCRIPT
before loading config.php will use a different default renderer and will
return appropriate exceptions which can be parsed by M.core.exception and
M.core.ajaxException correctly.

This also addresses an issue whereby a missing heading could break the
tooltip.
2013-04-08 21:01:20 +01:00
Dan Poltawski be576cb0e8 Merge branch 'wip-mdl-36674' of git://github.com/rajeshtaneja/moodle 2013-01-21 10:15:16 +08:00
Rajesh Taneja 72b181ba59 MDL-36674 Administration: out_as_local_url will check for both http and https url's
out_as_local_url will first check if url passed in wwwroot, if it's not then it will check
if loginhttps is enabled and url is httpswwwroot
2013-01-14 15:59:06 +08:00
Dan Poltawski 5590e85e1a Merge branch 'w02_MDL-37286_m25_tracebuffer' of git://github.com/skodak/moodle 2013-01-14 15:11:42 +08:00
Dan Poltawski ddaf0983b2 Merge branch 'wip-MDL-36297-m25' of git://github.com/samhemelryk/moodle 2013-01-14 15:05:15 +08:00
Petr Škoda e7259ec998 MDL-37286 add new combined_progress_trace
This type of trace should be useful when multiple trace outputs requested.
2013-01-12 15:16:39 +01:00
Petr Škoda 78048e15f2 MDL-37286 add error_log progress trace 2013-01-12 15:16:38 +01:00
Petr Škoda 837e304260 MDL-37286 add progres_trace buffer and unit tests 2013-01-12 15:16:38 +01:00
Sam Hemelryk e85c56ccb8 MDL-36297 caching: added for HTML purified text 2013-01-03 10:55:00 +13:00
Petr Škoda 7539894649 MDL-36212 rework html entity conversions
This should resolve all html entity conversion problems in different PHP versions.
2012-12-20 22:47:16 +01:00
Petr Škoda 9172fd82b7 MDL-36524 do not set meta tag for IE compatibility, header should be enough 2012-11-14 19:42:24 +01:00
Petr Škoda 791922735f MDL-36487 do not use IE=edge header on pages that have custom X-UA-Compatible
Thanks Dan Poltawski for spotting this regression!
2012-11-10 11:47:09 +01:00
Petr Škoda 398862b92b MDL-36487 send IE standards compatibility http headers 2012-11-09 17:27:29 +01:00
Marina Glancy 850acb3560 MDL-35768 MDL-36017 Avoid calling format_base::get_course() when not necessary
- If we want to check fields 'numsections' or 'hiddensections' call course_get_format()->get_format_options()
- We still use extended course object in course/edit.php, update_course(), create_course(), and inside course formats
2012-11-05 11:22:06 +08:00
Marina Glancy b5cf83f080 MDL-36017 Fields numsections, hiddensections and coursedisplay are now format-specific options
- Fields added to format_legacy as default course format options;
- Upgrade script copies fields values from table course to course_format_options;
- Fields removed from table course;
- Fields removed from edit course form;
- Since front-page course has a 'numsections' setting, format_site defines it as it's option;
- Removed accessing those fields in core code unless we know that format supports them and in this
  case instead of $course = $DB->get_record('course'); we use:
  $course = course_get_format($courseorid)->get_course(); This way all format-specific options
  are added to the $course object
2012-11-02 10:56:19 +08:00
Petr Škoda ef5b5e051e MDL-35479 debugging support in our phpunit integration 2012-09-17 11:27:57 +02:00
Petr Škoda a46e11b5df MDL-35318 add lang revision counter and improve PHPUnit test reset
We need this for hacks that need to find out if strings changed.
2012-09-09 12:15:30 +02:00
Ankit Agarwal d197ea4300 MDL-34549 libraries: Replace get_context_instance_by_id() by context::instance_by_id() 2012-08-24 11:30:10 +08:00
Frederic Massart c216eb2008 MDL-31926 Course: Obfuscating an email supports subject and body parameters 2012-08-17 14:59:46 +08:00
Adrian Greeve b0c6dc1cac MDL-34465 - lib - Replacing get_context_instance with context_XXXX::instance (group 8) 2012-07-27 10:10:46 +08:00
Petr Škoda c8b3346cfd MDL-33180 delete the last traces of SimpleTest - ciao and thanks 2012-07-21 10:11:50 +02:00
Eloy Lafuente (stronk7) b9647509d4 MDL-32279 filters: filters: setup() before filter() is better. 2012-06-15 10:12:53 +02:00
Dan Poltawski b44022782b MDL-32279 filter: fix undefined variable 2012-06-15 11:58:03 +08:00
Eloy Lafuente (stronk7) 6c5dbbb36b MDL-32279 filters: add support for setup() methods in filters. 2012-06-14 20:02:20 +02:00
sam marshall a3c17aed9f MDL-33116 Media filter broken with slasharguments off 2012-05-21 14:24:42 +01:00
sam marshall ffe4de973b MDL-29624 Media embedding system, part 0: Add get_path() to moodle_url
(It may not seem directly related, but this function is needed for the
media embedding system.
2012-05-09 18:22:12 +01:00
Petr Skoda f0202ae9a2 MDL-30686 improve accuracy of qualified_me() by trying PAGE->url first
This should help SSL proxies and returning to current page after require_login().
2012-04-27 13:39:18 +02:00
Petr Skoda 590abcf801 MDL-32427 fix suport for extra schemes in links in HTML Purifier 2012-04-23 10:29:43 +02:00
Sam Hemelryk 3211569a6a Revert "MDL-30843 and MDL-30842 - accessibility compliance: Add <label> for form input text and select tag"
This reverts commit f9f281b8fe.
2012-04-11 17:18:58 +12:00
Sam Hemelryk 5bfeb5ffd3 Merge branch 'MDL-30843_b' of git://github.com/rwijaya/moodle 2012-04-10 12:34:37 +12:00
Petr Skoda a3d5830a0a MDL-32149 PHPUnit test support - part 2
Includes:
* constants refactoring
* reworked db table init
* support for $CFG->debug = -1
* functional DB tests
* fixed $DB->get_indexes() to not throw exceptions when table does not exist
* fix handling of user passwords in test db
* add debug info to exception messages
* removed unnecessary PHP debug errors from mathslib
* fixed @error suppression in get_string
* fixed PHPUnit error handler setup
* added timezone info to default install
2012-04-03 22:30:53 +02:00
Rossiani Wijaya f9f281b8fe MDL-30843 and MDL-30842 - accessibility compliance: Add <label> for form input text and select tag 2012-03-30 16:26:58 +08:00
Petr Skoda 986f8ea285 MDL-32109 do not use HTMLPurifier for some safe and valid html fragments 2012-03-24 11:29:59 +01:00
Petr Skoda 5bd4040866 MDL-31857basic phpunit support
Thanks Eloy Lafuente, Tim Hunt and Sam Hemelryk for valuable feedback and ideas.
2012-03-21 10:31:37 +01:00
Petr Skoda 6f3451e540 MDL-31301 remove all uses of moodle_strtolower() and deprecated it 2012-03-03 11:46:26 +01:00
Petr Skoda f8311defeb MDL-31301 use static textlib methods 2012-03-03 11:46:13 +01:00
Eloy Lafuente (stronk7) 6c941fc10f Merge branch 'MDL-29161' of git://github.com/timhunt/moodle 2012-02-27 22:10:47 +01:00
Dan Poltawski 5dad45912c MDL-29592 weblib: prevent warnings when $USER not set 2012-02-27 16:11:36 +01:00
Tim Hunt ab82976f92 MDL-29161 weblib: moodle_ulr::out does not cope with array params. 2012-02-23 12:07:28 +00:00
Dan Poltawski 48ddc9bfd6 MDL-29091 weblib - Introduce out_as_local_url() method to moodle_url
This can be used for passing around PARAM_LOCALURL's where necessary
stripping the wwwroot
2012-01-13 10:16:52 +00:00
Tim Hunt d07f7be890 MDL-31101 format_string: Don't mangle < and > in strings like x < 1. 2012-01-10 14:52:19 +00:00
Petr Skoda 4e8d084bc9 MDL-21617 remove problematic attempt to remove script events from random text
This "feature" was used to partially eliminate XSS attacks on vulnerable code. Developers MUST use clean_text() on HTML text fragments only, it can not be used on random html tag attributes.

This change may simplify a bit exploiting of vulnerable code, but every XSS cheat sheet contains information how to work around this outdated anti-XSS measure.

Please note this change fixes many problems with valid uses of language= or onXXXXX= such as in urls, tex, code samples, etc.
2011-11-19 13:22:33 +01:00