0 Votes

Changes for page LiveTable View Sheet

Last modified by Сергей Коршунов on 2025/05/01 21:19

From 2.1 to 1.1 From 6.1 to 5.1

From version 5.1

edited by Сергей Коршунов
on 2023/04/25 14:43

Change comment: Install extension [org.xwiki.platform:xwiki-platform-appwithinminutes-ui/15.3]

To version 2.1

edited by Сергей Коршунов
on 2022/03/08 16:59

Change comment: Install extension [org.xwiki.platform:xwiki-platform-appwithinminutes-ui/14.1]

Raw
Rendered

Summary

Page properties (1 modified, 0 added, 0 removed)
Objects (1 modified, 0 added, 0 removed)
- XWiki.JavaScriptExtension[0]

Details

Page properties

Content

@@ -11,8 +11,16 @@
    ## Display the live table only if it was generated.
    #if ($doc.content.length() > 0)
      = $services.localization.render('platform.appwithinminutes.appLiveTableHeading') =
--
--    {{include reference="" author="target"/}}
++    ## We don't use the Include macro (with empty reference) because we want the content to be executed with the rights
++    ## of the current document rather than the rights of the sheet. This is important because the user can modify the
++    ## content of the application home page which means we could execute untrusted content with the rights of the sheet.
++    ## Ideally we should use the Display macro with a parameter to disable the sheet, but we don't have this parameter.
++    ## We don't clean the HTML content because getRenderedContent() should produce clean HTML, unless the user has
++    ## disabled the HTML cleaning, in which case he will get what he asked for. Note that one good reason to disable
++    ## HTML cleaning is to preserve the whitespaces in the attribute values.
++    ## Escape {{ in the rendered content to be sure that the HTML macro is not closed unintentionally.
++    {{html clean="false"}}$doc.getRenderedContent($doc.content,
++      $doc.syntax.toIdString()).replace('{{', '&amp;#123;&amp;#123;'){{/html}}
    #end
  #end
@@ -60,7 +60,6 @@
            #end
            ## We need to set the title if we want to be able to sort or filter the doc.title live table column.
            #set ($params = {
--            'form_token': $services.csrf.token,
              'template': "${className}Template",
              'title': '__entryName__',
              'parent': $services.model.serialize($doc.documentReference, 'local')
@@ -115,30 +115,23 @@
        data-backdrop="static" data-keyboard="false">
      <div class="modal-dialog" role="document">
        <form class="modal-content xform">
--        ## The fieldset allows us to disable and enable the entire form quickly and easy.
--        <fieldset>
--          <div class="modal-header">
--            <button type="button" class="close" data-dismiss="modal"
--                title="$escapetool.xml($services.localization.render('appWithinMinutes.renameApp.close'))"
--                aria-label="$escapetool.xml($services.localization.render('appWithinMinutes.renameApp.close'))">
--              <span aria-hidden="true">&times;</span>
--            </button>
--            <span class="modal-title" id="renameAppModal-label">
--              $escapetool.xml($services.localization.render('appWithinMinutes.renameApp.label'))
--            </span>
--          </div>
--          <div class="modal-body">
--            #renameAppModalBody
--          </div>
--          <div class="modal-footer">
--            <button type="button" class="btn btn-default" data-dismiss="modal">
--              $escapetool.xml($services.localization.render('cancel'))
--            </button>
--            <button type="submit" class="btn btn-primary" disabled="disabled">
--              $escapetool.xml($services.localization.render('core.rename.submit'))
--            </button>
--          </div>
--        </fieldset>
++        <div class="modal-header">
++          <button type="button" class="close" data-dismiss="modal" aria-label="Close">
++            <span aria-hidden="true">&times;</span>
++          </button>
++          <span class="modal-title" id="renameAppModal-label">Rename Application</span>
++        </div>
++        <div class="modal-body">
++          #renameAppModalBody
++        </div>
++        <div class="modal-footer">
++          <button type="button" class="btn btn-default" data-dismiss="modal">
++            $escapetool.xml($services.localization.render('cancel'))
++          </button>
++          <button type="submit" class="btn btn-primary" disabled="disabled">
++            $escapetool.xml($services.localization.render('core.rename.submit'))
++          </button>
++        </div>
        </form>
      </div>
    </div>

XWiki.JavaScriptExtension[0]

Code

@@ -58,7 +58,7 @@
  /**
   * Rename Application
   */
--require(['jquery', 'bootstrap', 'xwiki-form-validation-async'], function($) {
++require(['jquery', 'bootstrap'], function($) {
    #set ($currentDocReference = $xwiki.getDocument($request.currentApp).getDocumentReference())
    // if we cannot find any extension related to this page app, it's not part of an extension.
    var isNotAnExtension = $services.extension.xar.getInstalledExtensions($currentDocReference).isEmpty();
@@ -77,6 +77,7 @@
    // Form validation.
    var appNameInput = $('#renameAppTitle');
    var appParentInput = $('#renameAppParentReference');
++  var submitButton = renameAppModal.find('.btn-primary[type="submit"]');
    var appNameEmptyError = renameAppModal.find('.appNameEmptyError');
    var pageExistsError = renameAppModal.find('.pageExistsError');
@@ -99,44 +99,49 @@
    var startValidation = function() {
      if (appNameInput.val() === '') {
--      return Promise.reject(appNameEmptyError);
++      endValidation(appNameEmptyError);
      } else {
        var newAppHomePage = getNewAppHomePage();
        if (newAppHomePage.documentReference.equals(XWiki.currentDocument.documentReference)) {
--        return Promise.reject(pageExistsError);
++        endValidation(pageExistsError);
        } else {
--        return new Promise((resolve, reject) => {
--          $.ajax({
--            type: 'HEAD',
--            url: newAppHomePage.getURL()
--          }).then(reject.bind(null, pageExistsError), response => {
--            if (response.status === 404) {
--              $.ajax({
--                type: 'HEAD',
--                url: newAppHomePage.getURL('edit')
--              }).then(
--                () => resolve(),
--                () => reject(locationForbiddenError)
--              );
--            } else if (response.status === 403) {
--              reject(locationForbiddenError);
--            } else {
--              resolve();
--            }
--          });
++        $.ajax({
++          type: 'HEAD',
++          url: newAppHomePage.getURL()
++        }).then(endValidation.bind(null, pageExistsError), response => {
++          if (response.status === 404) {
++            $.ajax({
++              type: 'HEAD',
++              url: newAppHomePage.getURL('edit')
++            }).then(
++              () => endValidation(),
++              () => endValidation(locationForbiddenError)
++            );
++          } else if (response.status === 403) {
++            endValidation(locationForbiddenError);
++          } else {
++            endValidation();
++          }
          });
        }
      }
    };
++  var endValidation = function(error) {
++    if (error) {
++      error.show();
++    }
++    appNameInput.removeClass('loading');
++    submitButton.prop('disabled', !!error);
++  };
++
++  var validationTimeout;
    var scheduleValidation = function() {
--    // Hide all error messages before starting the asynchronous validation.
++    clearTimeout(validationTimeout);
      renameAppModal.find('.xErrorMsg').hide();
--    appNameInput.addClass('loading').validateAsync(startValidation, 500, 'awm').catch((error) => {
--      error.show();
--    }).finally(() => {
--      appNameInput.removeClass('loading');
--    });
++    appNameInput.addClass('loading');
++    submitButton.prop('disabled', true);
++    validationTimeout = setTimeout(startValidation, 500);
    };
    appNameInput.add(appParentInput).on('input', scheduleValidation);
@@ -185,13 +185,13 @@
    var renameApp = function(data) {
      // Disable the form to prevent it from being submitted twice.
--    renameAppModal.find('fieldset').prop('disabled', true);
++    renameAppModal.find(':input').prop('disabled', true);
      var notification = new XWiki.widgets.Notification(
        $jsontool.serialize($services.localization.render('appWithinMinutes.renameApp.inProgress')),
        'inprogress'
      );
      var renameAppURL = new XWiki.Document('RenameApplication', 'AppWithinMinutes').getURL('get');
--    Promise.resolve($.post(renameAppURL, data)).then(updateAppHomePage).then(function() {
++    $.post(renameAppURL, data).then(updateAppHomePage).then(function() {
        renameAppModal.modal('hide');
        notification.replace(new XWiki.widgets.Notification(
          $jsontool.serialize($services.localization.render('appWithinMinutes.renameApp.done')),
@@ -208,7 +208,7 @@
        ));
      }).finally(function() {
        // Re-enable the form.
--      renameAppModal.find('fieldset').prop('disabled', false);
++      renameAppModal.find(':input').prop('disabled', false);
      });
    };

Changes for page LiveTable View Sheet

Summary

Details

Applications

Navigation

My Recent Modifications

Need help?