liquid_feedback_frontend
view config/default.lua @ 46:aaba4d28dd53
Added missing HTML encoding for page titles (security fix!)
| author | bsw |
|---|---|
| date | Mon Mar 15 03:04:19 2010 +0100 (2010-03-15) |
| parents | 53a45356c107 |
| children | a4e6f30fa84d |
line source
1 config.app_name = "LiquidFeedback"
2 config.app_version = "beta14"
4 config.app_title = config.app_name .. " (" .. request.get_config_name() .. " environment)"
6 config.app_logo = nil
8 config.app_service_provider = "Snake Oil<br/>10000 Berlin<br/>Germany"
10 config.use_terms = "=== Nutzungsbedingungen ===\nAlles ist verboten"
12 config.member_image_convert_func = {
13 avatar = function(data) return os.pfilter(data, "convert", "jpeg:-", "-thumbnail", "48x48", "jpeg:-") end,
14 photo = function(data) return os.pfilter(data, "convert", "jpeg:-", "-thumbnail", "240x240", "jpeg:-") end
15 }
17 config.member_image_default_file = {
18 avatar = "avatar.jpg",
19 photo = nil
20 }
22 config.mail_subject_prefix = "[LiquidFeedback] "
24 config.fastpath_url_func = nil
26 config.download_dir = nil
28 config.download_use_terms = "=== Nutzungsbedingungen ===\nAlles ist verboten"
30 request.set_allowed_json_request_slots{ "title", "actions", "support", "default", "trace", "system_error" }
32 if request.get_json_request_slots() then
33 request.force_absolute_baseurl()
34 end
36 request.set_404_route{ module = 'index', view = '404' }
38 -- uncomment the following two lines to use C implementations of chosen
39 -- functions and to disable garbage collection during the request, to
40 -- increase speed:
41 --
42 -- require 'webmcp_accelerator'
43 -- collectgarbage("stop")
45 -- open and set default database handle
46 db = assert(mondelefant.connect{
47 engine='postgresql',
48 dbname='liquid_feedback'
49 })
50 at_exit(function()
51 db:close()
52 end)
53 function mondelefant.class_prototype:get_db_conn() return db end
55 -- enable output of SQL commands in trace system
56 function db:sql_tracer(command)
57 return function(error_info)
58 local error_info = error_info or {}
59 trace.sql{ command = command, error_position = error_info.position }
60 end
61 end
63 request.set_absolute_baseurl(config.absolute_base_url)
67 -- TODO abstraction
68 -- get record by id
69 function mondelefant.class_prototype:by_id(id)
70 local selector = self:new_selector()
71 selector:add_where{ 'id = ?', id }
72 selector:optional_object_mode()
73 return selector:exec()
74 end