1. 01 May, 2012 1 commit
  2. 30 Apr, 2012 3 commits
  3. 27 Apr, 2012 2 commits
  4. 26 Apr, 2012 2 commits
  5. 25 Apr, 2012 2 commits
  6. 24 Apr, 2012 2 commits
  7. 20 Apr, 2012 2 commits
  8. 19 Apr, 2012 1 commit
  9. 15 Apr, 2012 1 commit
  10. 12 Apr, 2012 5 commits
    • Richard Mansfield's avatar
      Make download.php publicly accessible (bug #979538) · 72ed0b00
      Richard Mansfield authored
      In commit 647a99fd
      
       (see bug #914490),
      the sitemaps were made available from the download.php script, but
      this script is not publicly accessible, so crawlers would not be able
      to download them.
      
      Making the script public is okay here, because whenever a non-sitemap
      file is requested, there is already an exception thrown if the user is
      not logged in.
      
      Change-Id: Ia9c62940ee7dada05f4f1b448ead0c146171535c
      Signed-off-by: default avatarRichard Mansfield <richard.mansfield@catalyst.net.nz>
      72ed0b00
    • Richard Mansfield's avatar
      Use htmlpurifier in external media block (bug #971289) · c5753d29
      Richard Mansfield authored
      Now that SafeEmbed and SafeIframe options of htmlpurifier are enabled,
      the external media block can make use of them, rather than always
      trying to parse and generate iframe and embed code for the supported
      sites.
      
      Any html pasted into the block configuration form is now allowed to
      fall through to be sanitised by htmlpurfier, so the site-wide list of
      allowed iframe sites will be used rather than the existing list of
      supported sites in the external media block.
      
      Valid URLs pasted into the configuration form are still processed by
      the various media_sources regular expressions in
      blocktype/externalvideo/media_sources/*/mediasource.php, but the
      regexes that were previously designed to operate on embed/iframe code
      have been removed, and the remaining ones have been modified to match
      at the beginning of a url only.
      
      When a URL is entered, and the block saved, the embed/iframe code to
      be used when rendering the block is generated immediately, and
      subsequent edits of the block will reveal only the generated
      embed/iframe html.  The render_instance function will still generate
      the required embed code for old blocks that haven't been reconfigured
      yet.
      
      The glogster scraping code is also tightened slightly to ensure that a
      URL is returned.
      
      See https://wiki.mahara.org/index.php/Developer_Area/Specifications_in_Development/External_media_block_extension
      
      
      
      Change-Id: I7024ab946f8a6965e78730eb1daa3441f220a10b
      Signed-off-by: default avatarRichard Mansfield <richard.mansfield@catalyst.net.nz>
      c5753d29
    • Richard Mansfield's avatar
      Remove unused function and debugging from voki mediasources · e14a5c1b
      Richard Mansfield authored
      
      
      Change-Id: If3d1fe26f6baebb6f2939c8eeb0c8d2a69e622d2
      Signed-off-by: default avatarRichard Mansfield <richard.mansfield@catalyst.net.nz>
      e14a5c1b
    • Richard Mansfield's avatar
      Admin page to manage SafeIframe sites (bug #971282) · f3182dd6
      Richard Mansfield authored
      
      
      Adds a new page for Site admins to manage the list of sites for which
      iframes are allowed by htmlpurifier.  Whenever an item is added,
      edited, or deleted, the regex used by HTMLPurifier is updated.  Sites
      are identified by favicon, and by a string entered by the Admin to be
      used as the alt/title text for the favicon image.  The source of the
      favicon image can be modified in config.php, but the google service is
      used by default.
      
      Change-Id: I4117de82691a002bf250ea71622eccfad4d5f8df
      Signed-off-by: default avatarRichard Mansfield <richard.mansfield@catalyst.net.nz>
      f3182dd6
    • Richard Mansfield's avatar
      Move the list of safe iframe sources to the database (bug #971282) · 4b8c5170
      Richard Mansfield authored
      
      
      Builds the htmlpurifier safe iframe regexp from a list of sites stored
      in the database, instead of a hardcoded array.
      
      Each site in the safe iframe list is associated with a name.  This
      will allow several regexp items to be grouped together under the same
      name when they're matching urls from the same site.
      
      Additionally, the domain part of each site is stored in a second list
      along with the names, so that it will be easy to fetch the favicon for
      display in places such as the external media block configuration form.
      
      Change-Id: I7fd2bfefbff0881e70b94beb9e8d3efb43f0f9e7
      Signed-off-by: default avatarRichard Mansfield <richard.mansfield@catalyst.net.nz>
      4b8c5170
  11. 11 Apr, 2012 1 commit
  12. 10 Apr, 2012 2 commits
  13. 09 Apr, 2012 6 commits
  14. 05 Apr, 2012 1 commit
  15. 04 Apr, 2012 5 commits
  16. 03 Apr, 2012 4 commits