misc/migration/3.5.0_Any.py
author Julien Cristau <julien.cristau@logilab.fr>
Wed, 05 Feb 2014 16:34:21 +0100
branchstable
changeset 9523 cd5738fc440f
parent 8798 cdab3aadc679
permissions -rw-r--r--
[ajax] use a custom tag to handle dynamically loaded js Using <pre class="script"> makes it trivial for a malicious user to inject arbitrary javascript into a html or rest text element (because it looks innocent to the html sanitizer). Using a custom tag we can be sure that it actually comes from our code and not from untrusted user data. IE ignores custom tags, though, so we put it in its own namespace. https://extranet.logilab.fr/1530578
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
8798
cdab3aadc679 [migration] mark all version prior 3.7 as non-migrable
Pierre-Yves David <pierre-yves.david@logilab.fr>
parents: 4042
diff changeset
     1
raise NotImplementedError("Cannot migrate such an old version. Use intermediate Cubiweb version (try 3.16.x)")