Aurelien Campeas <aurelien.campeas@logilab.fr> [Mon, 02 Nov 2009 16:10:03 +0100] rev 3789
update docstring, xml escape exception description
Nicolas Chauvat <nicolas.chauvat@logilab.fr> [Sun, 01 Nov 2009 21:40:03 +0100] rev 3788
[migration] warn if 3.5 workflow migration is going to fail
Nicolas Chauvat <nicolas.chauvat@logilab.fr> [Wed, 28 Oct 2009 20:09:59 +0100] rev 3787
C - fix typo. make `lgp check` happy.
Alexandre Fayolle <alexandre.fayolle@logilab.fr> [Mon, 26 Oct 2009 10:04:18 +0100] rev 3786
force debug mode on cubicweb-ctl start on win32
this prevents a crash (daemon mode not yet supported)
Aurelien Campeas <aurelien.campeas@logilab.fr> [Fri, 23 Oct 2009 15:43:30 +0200] rev 3785
read form arg specifying json call context (to make it work under json controller)
Adrien Di Mascio <Adrien.DiMascio@logilab.fr> [Thu, 22 Oct 2009 11:07:05 +0200] rev 3784
[javascript] handle cases where vid parameter is hijacked by parameter-injection
Adrien Di Mascio <Adrien.DiMascio@logilab.fr> [Thu, 22 Oct 2009 11:02:50 +0200] rev 3783
[views] consider fallbackvid request parameter in ViewController
Adrien Di Mascio <Adrien.DiMascio@logilab.fr> [Thu, 22 Oct 2009 11:01:50 +0200] rev 3782
[cleanup] reorder cubicweb namespace attributes declaration
Adrien Di Mascio <Adrien.DiMascio@logilab.fr> [Thu, 22 Oct 2009 09:30:10 +0200] rev 3781
[javascript] asURL now escapes request arguments
I can't see no good reason for not escaping parameters. The two main
locations where asURL is used are :
- edition view: here, the change should have no effect
- facets: escaping is clearly needed in that case
Aurelien Campeas <aurelien.campeas@logilab.fr> [Wed, 21 Oct 2009 19:32:53 +0200] rev 3780
merge