Mercurial Mercurial > pub > hg > cubicweb / file revision
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
misc/migration/3.5.0_Any.py
author Sylvain Thénault <sylvain.thenault@logilab.fr>
Mon, 07 Jun 2010 18:13:39 +0200
branchstable
changeset 5682 5628247f51ce
parent 4042 f85a4c846aad
child 8798 cdab3aadc679
permissions -rw-r--r--
[security] view was giving web access to every fs file accessible by the web server process. Fix this security hole by storing file in session data, not direct form parameters

add_relation_type('prefered_form')

rql('SET X prefered_form Y WHERE Y canonical TRUE, X identical_to Y')
commit()

drop_attribute('EmailAddress', 'canonical')
drop_relation_definition('EmailAddress', 'identical_to', 'EmailAddress')

if 'see_also' in schema:
    sync_schema_props_perms('see_also', syncprops=False, syncrdefs=False)
cubicweb