Revision [298]

This is an old revision of Todo4620 made by ZeroHeure on 2010-03-23 21:36:39.
 

Last TODOs for Woda 4.620


Objectives for merge-with-pro milestone

  1. DONE Complete merge with Ziga's pro version, including
    1. DONE directories layout,
    2. DONE export scripts
    3. and language versions.
  2. CHECKED SEE REV 125 Find and fix the extractapi bug.
  3. DONE Fix the security bug.
  4. DONE Fix pending bugs, find pending typos.
  5. DONE Test if provided samples databases are working again.
  6. DONE Complete comments on new functions.
  7. DONE Update the website, everything should be on a wiki.
  8. Document new functions, from the pro version..

Objectives for release

  1. add styles, see effects on http://localhost/cgi-bin/woda/people.cgi/StyleDocs
    • DONE see style in malcolm's faq
    • DONE see style in crm
    • see style in handi
    • LATER create one based on new Woda logo
    • DONE add default style
  2. DONE add icons see effects on http://localhost/cgi-bin/woda/people.cgi/IconsDocs
    • DONE sort malcolm icons
    • DONE sort claudio icons
    • NO icons from rent-a-db.com ?
  3. add templates
  4. change release and install script to handle all of this.
  5. change defautl acl for the wiki

Check List
problemcomments
check for abandonned code, forgotten code in other branches and committed code that shouldn't be here!
was a pain to do... i should allways use a dedicated branch for features (1 feat. = 1 branch)
How to search in basket ???
check if it still works ?
use: foo bar {_basket}
see bug #518218
Added in documentation
check for db modification and creation through cgi
it works
check security
See #455483 #519272
Security tools already launched:
  • wapiti (test http) nothing
  • rats (audit code) a lot of potential problems! TODO
  • w3af (test http) no tests for perl (yet) ?
document new process DD.TXT DD.PL et TEMPLATES
basic documentation completed in doc/
to be writed on the wiki
check code in use, dir and test
path updated
base directory for templates
add def for DDTYPE variable
NO ?
report Ziga's changes (pro) in woda.conf
partialy done
remove HIDE et UNHIDE
LATER
sub mainDefaults
if http server wodad, icon url is hardcoded on http://itc.fgg.uni-lj.si
LATER, need to be documented
remove "do"
some still needed
rename woda-max.pl to woda-max-pro.pl
we will keep the 2 versions for a while. it ease updating
demos files got problems with evalTrouble
forum will be done LATER
- bug fixed in evalTrouble (no parameters were allowed in UPPERCASE functions)
- work: guestbook, links, news, open-archive, people
- don't work: forum. Started rewrite of functions but a lot of things won't work; we must ask to security specialist if we can change evalTrouble a bit (like allowing + x * etc.)
check quotes, HTML, and rights. in demos files
.
makes templates with demos files
STARTED
sub cgiStyleDocsSample
$ICONURL = "/icons/default"; # why is it hard encoded ?
.
change email and licence in 3EXPORT script
.
icons
	# --- icons

	if ( $WBB{'iconURL'} ne '' ) {
		$ICONURL = $WBB{'iconURL'};
	}
	elsif ( $WBB{'iconSet'} ne '' ) {
		$ICONURL = '/woda/icons/' . $WBB{'iconSet'};
	}
	else {
		$ICONURL = '/woda/icons/default';
	}

ICONURL should be more dynamic!
and more: we have $ICONDIR in woda.conf
LATER
check for robots
LATER, see claudio's email
Database Closed
automatic if robot ??
LATER
remove DONTVERIFY,
change CHECKONCGI to CHECKCGI
.
document CHECKCGI
TODO
Remove last multilines calls ($*)
TODO
mail Ziga about security problem the release can create for his personal datas
change "little things"
secret!
remove extended _from (rev 115)
was quickly done and not widely tested




CategoryDevelopers
Valid XHTML 1.0 Transitional :: Valid CSS :: Powered by WikkaWiki