card-mod-script 0.13.3 → 0.14.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (92) hide show
  1. checksums.yaml +4 -4
  2. data/assets/script/decko/components.js.coffee +3 -0
  3. data/assets/script/decko/decko.js.coffee +0 -15
  4. data/assets/script/decko/editor.js.coffee +3 -1
  5. data/assets/script/decko/filter.js.coffee +13 -6
  6. data/assets/script/decko/mod.js.coffee +2 -8
  7. data/assets/script/{script_pointer_config.js.coffee → decko/pointer_config.js.coffee} +1 -2
  8. data/assets/script/{script_pointer_list_editor.js.coffee → decko/pointer_list_editor.js.coffee} +0 -0
  9. data/assets/script/decko/slot.js.coffee +2 -2
  10. data/assets/script/decko/slot_ready.js.coffee +1 -0
  11. data/assets/script/decko/slotter.js.coffee +23 -31
  12. data/assets/script/decko/type_editor.js.coffee +21 -0
  13. data/assets/script/decko/upload.js.coffee +12 -5
  14. data/assets/script/manifest.yml +15 -2
  15. data/set/abstract/00_script.rb +30 -31
  16. data/set/abstract/01_asset_script.rb +0 -16
  17. data/set/abstract/{script_asset_list.rb → script_group.rb} +12 -13
  18. data/set/all/head_javascript.rb +4 -5
  19. data/set/right/script.rb +1 -14
  20. data/set/type/local_script_folder_group.rb +2 -2
  21. data/set/type/local_script_manifest_group.rb +1 -1
  22. data/set/type_plus_right/mod/script.rb +56 -0
  23. data/set/type_plus_right/set/script.rb +7 -0
  24. data/vendor/jquery_file_upload/LICENSE.txt +11 -12
  25. data/vendor/jquery_file_upload/README.md +189 -72
  26. data/vendor/jquery_file_upload/SECURITY.md +227 -0
  27. data/vendor/jquery_file_upload/VULNERABILITIES.md +118 -0
  28. data/vendor/jquery_file_upload/cors/postmessage.html +68 -58
  29. data/vendor/jquery_file_upload/cors/result.html +12 -10
  30. data/vendor/jquery_file_upload/css/jquery.fileupload-ui.css +24 -13
  31. data/vendor/jquery_file_upload/css/jquery.fileupload.css +3 -4
  32. data/vendor/jquery_file_upload/docker-compose.yml +55 -0
  33. data/vendor/jquery_file_upload/index.html +332 -230
  34. data/vendor/jquery_file_upload/js/cors/jquery.postmessage-transport.js +109 -109
  35. data/vendor/jquery_file_upload/js/cors/jquery.xdr-transport.js +81 -73
  36. data/vendor/jquery_file_upload/js/demo.js +75 -0
  37. data/vendor/jquery_file_upload/js/jquery.fileupload-audio.js +82 -94
  38. data/vendor/jquery_file_upload/js/jquery.fileupload-image.js +321 -300
  39. data/vendor/jquery_file_upload/js/jquery.fileupload-process.js +138 -146
  40. data/vendor/jquery_file_upload/js/jquery.fileupload-ui.js +737 -692
  41. data/vendor/jquery_file_upload/js/jquery.fileupload-validate.js +91 -97
  42. data/vendor/jquery_file_upload/js/jquery.fileupload-video.js +82 -94
  43. data/vendor/jquery_file_upload/js/jquery.fileupload.js +1569 -1451
  44. data/vendor/jquery_file_upload/js/jquery.iframe-transport.js +208 -205
  45. data/vendor/jquery_file_upload/js/vendor/jquery.ui.widget.js +397 -340
  46. data/vendor/jquery_file_upload/package-lock.json +6853 -0
  47. data/vendor/jquery_file_upload/package.json +71 -10
  48. data/vendor/jquery_file_upload/server/gae-python/app.yaml +11 -10
  49. data/vendor/jquery_file_upload/server/php/Dockerfile +23 -17
  50. data/vendor/jquery_file_upload/server/php/UploadHandler.php +206 -137
  51. data/vendor/jquery_file_upload/server/php/php.ini +5 -0
  52. data/vendor/jquery_file_upload/test/index.html +36 -159
  53. data/vendor/jquery_file_upload/test/unit.js +989 -0
  54. data/vendor/jquery_file_upload/test/vendor/chai.js +10854 -0
  55. data/vendor/jquery_file_upload/test/vendor/mocha.css +325 -0
  56. data/vendor/jquery_file_upload/test/vendor/mocha.js +18178 -0
  57. data/vendor/jquery_file_upload/wdio/LICENSE.txt +20 -0
  58. data/vendor/jquery_file_upload/wdio/assets/black+white-3x2.jpg +0 -0
  59. data/vendor/jquery_file_upload/wdio/assets/black+white-60x40.gif +0 -0
  60. data/vendor/jquery_file_upload/wdio/conf/chrome.js +40 -0
  61. data/vendor/jquery_file_upload/wdio/conf/firefox.js +25 -0
  62. data/vendor/jquery_file_upload/wdio/hooks/index.js +36 -0
  63. data/vendor/jquery_file_upload/wdio/test/pages/file-upload.js +79 -0
  64. data/vendor/jquery_file_upload/wdio/test/specs/01-file-upload.js +25 -0
  65. data/vendor/jquery_file_upload/wdio/wdio.conf.js +4 -0
  66. metadata +34 -52
  67. data/file/mod_script_script_decko_machine_output/file.js +0 -2685
  68. data/file/mod_script_script_jquery_machine_output/file.js +0 -12924
  69. data/lib/javascript/script_html5shiv_printshiv.js +0 -1
  70. data/set/self/script_html5shiv_printshiv.rb +0 -11
  71. data/set/self/script_mods.rb +0 -1
  72. data/set/type/mod_script_assets.rb +0 -21
  73. data/vendor/jquery_file_upload/CONTRIBUTING.md +0 -15
  74. data/vendor/jquery_file_upload/angularjs.html +0 -211
  75. data/vendor/jquery_file_upload/basic-plus.html +0 -226
  76. data/vendor/jquery_file_upload/basic.html +0 -136
  77. data/vendor/jquery_file_upload/bower-version-update.js +0 -16
  78. data/vendor/jquery_file_upload/bower.json +0 -64
  79. data/vendor/jquery_file_upload/css/jquery-ui-demo-ie8.css +0 -21
  80. data/vendor/jquery_file_upload/css/jquery-ui-demo.css +0 -67
  81. data/vendor/jquery_file_upload/css/style.css +0 -15
  82. data/vendor/jquery_file_upload/jquery-ui.html +0 -252
  83. data/vendor/jquery_file_upload/js/app.js +0 -101
  84. data/vendor/jquery_file_upload/js/jquery.fileupload-angular.js +0 -437
  85. data/vendor/jquery_file_upload/js/jquery.fileupload-jquery-ui.js +0 -161
  86. data/vendor/jquery_file_upload/js/main.js +0 -75
  87. data/vendor/jquery_file_upload/server/gae-go/app/main.go +0 -361
  88. data/vendor/jquery_file_upload/server/gae-go/app.yaml +0 -12
  89. data/vendor/jquery_file_upload/server/gae-go/static/favicon.ico +0 -0
  90. data/vendor/jquery_file_upload/server/gae-go/static/robots.txt +0 -2
  91. data/vendor/jquery_file_upload/server/php/docker-compose.yml +0 -9
  92. data/vendor/jquery_file_upload/test/test.js +0 -1292
data/vendor/jquery_file_upload/js/jquery.iframe-transport.js CHANGED
@@ -9,216 +9,219 @@
9
9
  * https://opensource.org/licenses/MIT
10
10
  */
11
11
 
12
- /* global define, require, window, document, JSON */
12
+ /* global define, require */
13
13
 
14
- ;(function (factory) {
15
- 'use strict';
16
- if (typeof define === 'function' && define.amd) {
17
- // Register as an anonymous AMD module:
18
- define(['jquery'], factory);
19
- } else if (typeof exports === 'object') {
20
- // Node/CommonJS:
21
- factory(require('jquery'));
22
- } else {
23
- // Browser globals:
24
- factory(window.jQuery);
25
- }
26
- }(function ($) {
27
- 'use strict';
14
+ (function (factory) {
15
+ 'use strict';
16
+ if (typeof define === 'function' && define.amd) {
17
+ // Register as an anonymous AMD module:
18
+ define(['jquery'], factory);
19
+ } else if (typeof exports === 'object') {
20
+ // Node/CommonJS:
21
+ factory(require('jquery'));
22
+ } else {
23
+ // Browser globals:
24
+ factory(window.jQuery);
25
+ }
26
+ })(function ($) {
27
+ 'use strict';
28
28
 
29
- // Helper variable to create unique names for the transport iframes:
30
- var counter = 0,
31
- jsonAPI = $,
32
- jsonParse = 'parseJSON';
29
+ // Helper variable to create unique names for the transport iframes:
30
+ var counter = 0,
31
+ jsonAPI = $,
32
+ jsonParse = 'parseJSON';
33
33
 
34
- if ('JSON' in window && 'parse' in JSON) {
35
- jsonAPI = JSON;
36
- jsonParse = 'parse';
37
- }
34
+ if ('JSON' in window && 'parse' in JSON) {
35
+ jsonAPI = JSON;
36
+ jsonParse = 'parse';
37
+ }
38
38
 
39
- // The iframe transport accepts four additional options:
40
- // options.fileInput: a jQuery collection of file input fields
41
- // options.paramName: the parameter name for the file form data,
42
- // overrides the name property of the file input field(s),
43
- // can be a string or an array of strings.
44
- // options.formData: an array of objects with name and value properties,
45
- // equivalent to the return data of .serializeArray(), e.g.:
46
- // [{name: 'a', value: 1}, {name: 'b', value: 2}]
47
- // options.initialIframeSrc: the URL of the initial iframe src,
48
- // by default set to "javascript:false;"
49
- $.ajaxTransport('iframe', function (options) {
50
- if (options.async) {
51
- // javascript:false as initial iframe src
52
- // prevents warning popups on HTTPS in IE6:
53
- /*jshint scripturl: true */
54
- var initialIframeSrc = options.initialIframeSrc || 'javascript:false;',
55
- /*jshint scripturl: false */
56
- form,
57
- iframe,
58
- addParamChar;
59
- return {
60
- send: function (_, completeCallback) {
61
- form = $('<form style="display:none;"></form>');
62
- form.attr('accept-charset', options.formAcceptCharset);
63
- addParamChar = /\?/.test(options.url) ? '&' : '?';
64
- // XDomainRequest only supports GET and POST:
65
- if (options.type === 'DELETE') {
66
- options.url = options.url + addParamChar + '_method=DELETE';
67
- options.type = 'POST';
68
- } else if (options.type === 'PUT') {
69
- options.url = options.url + addParamChar + '_method=PUT';
70
- options.type = 'POST';
71
- } else if (options.type === 'PATCH') {
72
- options.url = options.url + addParamChar + '_method=PATCH';
73
- options.type = 'POST';
74
- }
75
- // IE versions below IE8 cannot set the name property of
76
- // elements that have already been added to the DOM,
77
- // so we set the name along with the iframe HTML markup:
78
- counter += 1;
79
- iframe = $(
80
- '<iframe src="' + initialIframeSrc +
81
- '" name="iframe-transport-' + counter + '"></iframe>'
82
- ).bind('load', function () {
83
- var fileInputClones,
84
- paramNames = $.isArray(options.paramName) ?
85
- options.paramName : [options.paramName];
86
- iframe
87
- .unbind('load')
88
- .bind('load', function () {
89
- var response;
90
- // Wrap in a try/catch block to catch exceptions thrown
91
- // when trying to access cross-domain iframe contents:
92
- try {
93
- response = iframe.contents();
94
- // Google Chrome and Firefox do not throw an
95
- // exception when calling iframe.contents() on
96
- // cross-domain requests, so we unify the response:
97
- if (!response.length || !response[0].firstChild) {
98
- throw new Error();
99
- }
100
- } catch (e) {
101
- response = undefined;
102
- }
103
- // The complete callback returns the
104
- // iframe content document as response object:
105
- completeCallback(
106
- 200,
107
- 'success',
108
- {'iframe': response}
109
- );
110
- // Fix for IE endless progress bar activity bug
111
- // (happens on form submits to iframe targets):
112
- $('<iframe src="' + initialIframeSrc + '"></iframe>')
113
- .appendTo(form);
114
- window.setTimeout(function () {
115
- // Removing the form in a setTimeout call
116
- // allows Chrome's developer tools to display
117
- // the response result
118
- form.remove();
119
- }, 0);
120
- });
121
- form
122
- .prop('target', iframe.prop('name'))
123
- .prop('action', options.url)
124
- .prop('method', options.type);
125
- if (options.formData) {
126
- $.each(options.formData, function (index, field) {
127
- $('<input type="hidden"/>')
128
- .prop('name', field.name)
129
- .val(field.value)
130
- .appendTo(form);
131
- });
132
- }
133
- if (options.fileInput && options.fileInput.length &&
134
- options.type === 'POST') {
135
- fileInputClones = options.fileInput.clone();
136
- // Insert a clone for each file input field:
137
- options.fileInput.after(function (index) {
138
- return fileInputClones[index];
139
- });
140
- if (options.paramName) {
141
- options.fileInput.each(function (index) {
142
- $(this).prop(
143
- 'name',
144
- paramNames[index] || options.paramName
145
- );
146
- });
147
- }
148
- // Appending the file input fields to the hidden form
149
- // removes them from their original location:
150
- form
151
- .append(options.fileInput)
152
- .prop('enctype', 'multipart/form-data')
153
- // enctype must be set as encoding for IE:
154
- .prop('encoding', 'multipart/form-data');
155
- // Remove the HTML5 form attribute from the input(s):
156
- options.fileInput.removeAttr('form');
157
- }
158
- form.submit();
159
- // Insert the file input fields at their original location
160
- // by replacing the clones with the originals:
161
- if (fileInputClones && fileInputClones.length) {
162
- options.fileInput.each(function (index, input) {
163
- var clone = $(fileInputClones[index]);
164
- // Restore the original name and form properties:
165
- $(input)
166
- .prop('name', clone.prop('name'))
167
- .attr('form', clone.attr('form'));
168
- clone.replaceWith(input);
169
- });
170
- }
171
- });
172
- form.append(iframe).appendTo(document.body);
173
- },
174
- abort: function () {
175
- if (iframe) {
176
- // javascript:false as iframe src aborts the request
177
- // and prevents warning popups on HTTPS in IE6.
178
- // concat is used to avoid the "Script URL" JSLint error:
179
- iframe
180
- .unbind('load')
181
- .prop('src', initialIframeSrc);
182
- }
183
- if (form) {
184
- form.remove();
185
- }
39
+ // The iframe transport accepts four additional options:
40
+ // options.fileInput: a jQuery collection of file input fields
41
+ // options.paramName: the parameter name for the file form data,
42
+ // overrides the name property of the file input field(s),
43
+ // can be a string or an array of strings.
44
+ // options.formData: an array of objects with name and value properties,
45
+ // equivalent to the return data of .serializeArray(), e.g.:
46
+ // [{name: 'a', value: 1}, {name: 'b', value: 2}]
47
+ // options.initialIframeSrc: the URL of the initial iframe src,
48
+ // by default set to "javascript:false;"
49
+ $.ajaxTransport('iframe', function (options) {
50
+ if (options.async) {
51
+ // javascript:false as initial iframe src
52
+ // prevents warning popups on HTTPS in IE6:
53
+ // eslint-disable-next-line no-script-url
54
+ var initialIframeSrc = options.initialIframeSrc || 'javascript:false;',
55
+ form,
56
+ iframe,
57
+ addParamChar;
58
+ return {
59
+ send: function (_, completeCallback) {
60
+ form = $('<form style="display:none;"></form>');
61
+ form.attr('accept-charset', options.formAcceptCharset);
62
+ addParamChar = /\?/.test(options.url) ? '&' : '?';
63
+ // XDomainRequest only supports GET and POST:
64
+ if (options.type === 'DELETE') {
65
+ options.url = options.url + addParamChar + '_method=DELETE';
66
+ options.type = 'POST';
67
+ } else if (options.type === 'PUT') {
68
+ options.url = options.url + addParamChar + '_method=PUT';
69
+ options.type = 'POST';
70
+ } else if (options.type === 'PATCH') {
71
+ options.url = options.url + addParamChar + '_method=PATCH';
72
+ options.type = 'POST';
73
+ }
74
+ // IE versions below IE8 cannot set the name property of
75
+ // elements that have already been added to the DOM,
76
+ // so we set the name along with the iframe HTML markup:
77
+ counter += 1;
78
+ iframe = $(
79
+ '<iframe src="' +
80
+ initialIframeSrc +
81
+ '" name="iframe-transport-' +
82
+ counter +
83
+ '"></iframe>'
84
+ ).on('load', function () {
85
+ var fileInputClones,
86
+ paramNames = $.isArray(options.paramName)
87
+ ? options.paramName
88
+ : [options.paramName];
89
+ iframe.off('load').on('load', function () {
90
+ var response;
91
+ // Wrap in a try/catch block to catch exceptions thrown
92
+ // when trying to access cross-domain iframe contents:
93
+ try {
94
+ response = iframe.contents();
95
+ // Google Chrome and Firefox do not throw an
96
+ // exception when calling iframe.contents() on
97
+ // cross-domain requests, so we unify the response:
98
+ if (!response.length || !response[0].firstChild) {
99
+ throw new Error();
186
100
  }
187
- };
188
- }
189
- });
190
-
191
- // The iframe transport returns the iframe content document as response.
192
- // The following adds converters from iframe to text, json, html, xml
193
- // and script.
194
- // Please note that the Content-Type for JSON responses has to be text/plain
195
- // or text/html, if the browser doesn't include application/json in the
196
- // Accept header, else IE will show a download dialog.
197
- // The Content-Type for XML responses on the other hand has to be always
198
- // application/xml or text/xml, so IE properly parses the XML response.
199
- // See also
200
- // https://github.com/blueimp/jQuery-File-Upload/wiki/Setup#content-type-negotiation
201
- $.ajaxSetup({
202
- converters: {
203
- 'iframe text': function (iframe) {
204
- return iframe && $(iframe[0].body).text();
205
- },
206
- 'iframe json': function (iframe) {
207
- return iframe && jsonAPI[jsonParse]($(iframe[0].body).text());
208
- },
209
- 'iframe html': function (iframe) {
210
- return iframe && $(iframe[0].body).html();
211
- },
212
- 'iframe xml': function (iframe) {
213
- var xmlDoc = iframe && iframe[0];
214
- return xmlDoc && $.isXMLDoc(xmlDoc) ? xmlDoc :
215
- $.parseXML((xmlDoc.XMLDocument && xmlDoc.XMLDocument.xml) ||
216
- $(xmlDoc.body).html());
217
- },
218
- 'iframe script': function (iframe) {
219
- return iframe && $.globalEval($(iframe[0].body).text());
101
+ } catch (e) {
102
+ response = undefined;
103
+ }
104
+ // The complete callback returns the
105
+ // iframe content document as response object:
106
+ completeCallback(200, 'success', { iframe: response });
107
+ // Fix for IE endless progress bar activity bug
108
+ // (happens on form submits to iframe targets):
109
+ $('<iframe src="' + initialIframeSrc + '"></iframe>').appendTo(
110
+ form
111
+ );
112
+ window.setTimeout(function () {
113
+ // Removing the form in a setTimeout call
114
+ // allows Chrome's developer tools to display
115
+ // the response result
116
+ form.remove();
117
+ }, 0);
118
+ });
119
+ form
120
+ .prop('target', iframe.prop('name'))
121
+ .prop('action', options.url)
122
+ .prop('method', options.type);
123
+ if (options.formData) {
124
+ $.each(options.formData, function (index, field) {
125
+ $('<input type="hidden"/>')
126
+ .prop('name', field.name)
127
+ .val(field.value)
128
+ .appendTo(form);
129
+ });
220
130
  }
131
+ if (
132
+ options.fileInput &&
133
+ options.fileInput.length &&
134
+ options.type === 'POST'
135
+ ) {
136
+ fileInputClones = options.fileInput.clone();
137
+ // Insert a clone for each file input field:
138
+ options.fileInput.after(function (index) {
139
+ return fileInputClones[index];
140
+ });
141
+ if (options.paramName) {
142
+ options.fileInput.each(function (index) {
143
+ $(this).prop('name', paramNames[index] || options.paramName);
144
+ });
145
+ }
146
+ // Appending the file input fields to the hidden form
147
+ // removes them from their original location:
148
+ form
149
+ .append(options.fileInput)
150
+ .prop('enctype', 'multipart/form-data')
151
+ // enctype must be set as encoding for IE:
152
+ .prop('encoding', 'multipart/form-data');
153
+ // Remove the HTML5 form attribute from the input(s):
154
+ options.fileInput.removeAttr('form');
155
+ }
156
+ window.setTimeout(function () {
157
+ // Submitting the form in a setTimeout call fixes an issue with
158
+ // Safari 13 not triggering the iframe load event after resetting
159
+ // the load event handler, see also:
160
+ // https://github.com/blueimp/jQuery-File-Upload/issues/3633
161
+ form.submit();
162
+ // Insert the file input fields at their original location
163
+ // by replacing the clones with the originals:
164
+ if (fileInputClones && fileInputClones.length) {
165
+ options.fileInput.each(function (index, input) {
166
+ var clone = $(fileInputClones[index]);
167
+ // Restore the original name and form properties:
168
+ $(input)
169
+ .prop('name', clone.prop('name'))
170
+ .attr('form', clone.attr('form'));
171
+ clone.replaceWith(input);
172
+ });
173
+ }
174
+ }, 0);
175
+ });
176
+ form.append(iframe).appendTo(document.body);
177
+ },
178
+ abort: function () {
179
+ if (iframe) {
180
+ // javascript:false as iframe src aborts the request
181
+ // and prevents warning popups on HTTPS in IE6.
182
+ iframe.off('load').prop('src', initialIframeSrc);
183
+ }
184
+ if (form) {
185
+ form.remove();
186
+ }
221
187
  }
222
- });
188
+ };
189
+ }
190
+ });
223
191
 
224
- }));
192
+ // The iframe transport returns the iframe content document as response.
193
+ // The following adds converters from iframe to text, json, html, xml
194
+ // and script.
195
+ // Please note that the Content-Type for JSON responses has to be text/plain
196
+ // or text/html, if the browser doesn't include application/json in the
197
+ // Accept header, else IE will show a download dialog.
198
+ // The Content-Type for XML responses on the other hand has to be always
199
+ // application/xml or text/xml, so IE properly parses the XML response.
200
+ // See also
201
+ // https://github.com/blueimp/jQuery-File-Upload/wiki/Setup#content-type-negotiation
202
+ $.ajaxSetup({
203
+ converters: {
204
+ 'iframe text': function (iframe) {
205
+ return iframe && $(iframe[0].body).text();
206
+ },
207
+ 'iframe json': function (iframe) {
208
+ return iframe && jsonAPI[jsonParse]($(iframe[0].body).text());
209
+ },
210
+ 'iframe html': function (iframe) {
211
+ return iframe && $(iframe[0].body).html();
212
+ },
213
+ 'iframe xml': function (iframe) {
214
+ var xmlDoc = iframe && iframe[0];
215
+ return xmlDoc && $.isXMLDoc(xmlDoc)
216
+ ? xmlDoc
217
+ : $.parseXML(
218
+ (xmlDoc.XMLDocument && xmlDoc.XMLDocument.xml) ||
219
+ $(xmlDoc.body).html()
220
+ );
221
+ },
222
+ 'iframe script': function (iframe) {
223
+ return iframe && $.globalEval($(iframe[0].body).text());
224
+ }
225
+ }
226
+ });
227
+ });