From: Marc L. <ma...@ma...> - 2012-08-03 13:28:59
|
I think the real solution is too avoid these tricks. I suggest adding a new field for menu items which would be for mouse-over information, so the user can read more about this section before clicking on it. Thanks! On Fri, Aug 3, 2012 at 7:36 AM, geoff@enmore <ge...@en...> wrote: > Hi - I'm getting more than a bit concerned about the regressions that are > getting into the 9.x branch since this is supposed to be our LTS version > > The latest thing I've only just spotted (sorry been out of the loop a few > weeks) is another issue with menus. > > For a long time we were able to use a 'trick' to add html tags etc to a menu > URL so that for instance we can add a title tag by setting the url as > something like tiki-index.php?page=pagename" title="title-text or if sefurl > is used it could simply be pagename" title="title-text > > For version 6 we got concerned about security so introduced a preference > that had to be set to allow HTML in menus but this got broken in the initial > version of 9 because of another security measure that now does a regex > filter on all input - but luci tracked down a work around for this to delete > the lines temporarily just to bypass it to get the input into the system - > and then reinstating the check. This is a pain but at least we can keep > working. > > I now find in the current branch that it is broken again and I suspect > something a bit more fundamental has changed since the original logic > essentially used the whole of the url text as the href tag adding the > closing quotes so anything else added just behaves as additional tags. > > What I see happening now is that it thinks the page is called the whole of > the url text ie pagename" title="title-text - so of course it can't find > it > > Now hopefully, whoever has made these changes, can easily fix this - but my > main point is to ask whether it is right that we are doing such significant > changes direct into the branch presumably without testing it in trunk first > and importantly being aware and considering all the likely use cases > > Thoughts everyone > > geoff > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > TikiWiki-devel mailing list > Tik...@li... > https://lists.sourceforge.net/lists/listinfo/tikiwiki-devel > -- Marc Laporte http://MarcLaporte.com http://Tiki.org/MarcLaporte http://AvanTech.net |