@saltcorn/server 1.0.0 → 1.1.0-beta.1

package/app.js

@@ -74,7 +74,7 @@ const noCsrfLookup = (state) => {
   if (!state.plugin_routes) return null;
   else {
     const result = new Set();
-    for (const [plugin, routes] of Object.entries(state.plugin_routes)) {
+    for (const routes of Object.values(state.plugin_routes)) {
       for (const url of routes
         .filter((r) => r.noCsrf === true)
         .map((r) => r.url)) {
@@ -87,7 +87,7 @@ const noCsrfLookup = (state) => {
 
 const prepPluginRouter = (pluginRoutes) => {
   const router = express.Router();
-  for (const [plugin, routes] of Object.entries(pluginRoutes)) {
+  for (const routes of Object.values(pluginRoutes)) {
     for (const route of routes) {
       switch (route.method) {
         case "post":
@@ -133,17 +133,32 @@ const getApp = async (opts = {}) => {
   );
 
   const helmetOptions = {
-    contentSecurityPolicy: false,
+    contentSecurityPolicy: {
+      directives: {
+        defaultSrc: ["'self'"],
+        connectSrc: ["'self'", "data:"],
+        scriptSrc: ["'self'", "'unsafe-inline'", "'unsafe-eval'"],
+        "script-src-attr": ["'self'", "'unsafe-inline'", "'unsafe-eval'"],
+        styleSrc: ["'self'", "https://fonts.googleapis.com", "https://fonts.gstatic.com", "'unsafe-inline'"],
+        imgSrc: ["'self'", "data:"],
+        fontSrc: ["'self'", "data:", "https://fonts.gstatic.com",],
+        "form-action": ["'self'", "javascript:"],
+      },
+    },
     referrerPolicy: {
       policy: ["same-origin"],
     },
   };
+  if (
+    getState().getConfig("content_security_policy", "Disabled") === "Disabled"
+  )
+    helmetOptions.contentSecurityPolicy = false;
 
   if (cross_domain_iframe) helmetOptions.xFrameOptions = false;
   app.use(helmet(helmetOptions));
 
   // TODO ch find a better solution
-  app.use(cors());
+  if (getState().getConfig("cors_enabled", true)) app.use(cors());
   const bodyLimit = getState().getConfig("body_limit");
   app.use(
     express.json({
@@ -366,7 +381,9 @@ const getApp = async (opts = {}) => {
             req.url === "/auth/login-with/jwt" ||
             req.url === "/auth/signup")) ||
         jwt_extractor(req) ||
-        req.url === "/auth/callback/saml"
+        req.url === "/auth/callback/saml" ||
+        req.url.startsWith("/notifications/share-handler") ||
+        req.url.startsWith("/notifications/manifest")
       )
         return disabledCsurf(req, res, next);
       csurf(req, res, next);

package/auth/admin.js

@@ -356,11 +356,16 @@ const auth_settings_form = async (req) =>
       "allow_signup",
       "login_menu",
       "allow_forgot",
-      "new_user_form",
+      {
+        section_header: req.__("Signup and login views"),
+        sublabel: "Login and signup views should be accessible by public users",
+      },
       "login_form",
       "signup_form",
+      "new_user_form",
       "user_settings_form",
       "verification_view",
+      { section_header: req.__("Additional login and signup settings") },
       "logout_url",
       "signup_role",
       "elevate_verified",
@@ -383,7 +388,9 @@ const http_settings_form = async (req) =>
       "timeout",
       "cookie_duration",
       "cookie_duration_remember",
-      //"cookie_sessions",
+      "cookie_samesite",
+      "content_security_policy",
+      "cors_enabled",
       "public_cache_maxage",
       "custom_http_headers",
       "cross_domain_iframe",

package/auth/routes.js

@@ -306,8 +306,20 @@ router.get(
           getAuthLinks("login")
         );
       else {
-        const resp = await login_form.run_possibly_on_page({}, req, res);
-        if (login_form.default_render_page) {
+        const resp = await login_form.run_possibly_on_page(
+          {},
+          req,
+          res,
+          false,
+          true
+        );
+        if (!resp) {
+          res.sendAuthWrap(
+            req.__(`Login`),
+            loginForm(req),
+            getAuthLinks("login")
+          );
+        } else if (login_form.default_render_page) {
           const page = Page.findOne({ name: login_form.default_render_page });
           res.sendWrap(
             { title: req.__(`Login`), no_menu: page?.attributes?.no_menu },
@@ -509,7 +521,8 @@ router.get(
       if (!signup_form) await defaultSignup();
       else {
         const resp = await signup_form.run_possibly_on_page({}, req, res);
-        if (signup_form.default_render_page) {
+        if (!resp) await defaultSignup();
+        else if (signup_form.default_render_page) {
           const page = Page.findOne({ name: signup_form.default_render_page });
           res.sendWrap(
             { title: req.__(`Sign up`), no_menu: page?.attributes?.no_menu },
@@ -673,7 +686,7 @@ const getNewUserForm = async (new_user_view_name, req, askEmail) => {
     layout,
     submitLabel: req.__("Sign up"),
   });
-  await form.fill_fkey_options();
+  await form.fill_fkey_options(false, undefined, req.user || { role_id: 100 });
   if (askEmail) {
     form.fields.push(
       new Field({

package/locales/en.json

@@ -1477,5 +1477,21 @@
 	"After delete": "After delete",
 	"Search only on exact match, not substring match. Useful for large tables": "Search only on exact match, not substring match. Useful for large tables",
 	"Please select an entry point.": "Please select an entry point.",
-	"Group by": "Group by"
+	"Group by": "Group by",
+	"View %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>": "View %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>",
+	"Page %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>": "Page %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>",
+	"SameSite": "SameSite",
+	"Restrict use of cookie to third-party sites. Strict is more secure, but may impact authentication": "Restrict use of cookie to third-party sites. Strict is more secure, but may impact authentication",
+	"Content Security Policy": "Content Security Policy",
+	"CORS": "CORS",
+	"Cross-origin resource sharing": "Cross-origin resource sharing",
+	"Signup and login views": "Signup and login views",
+	"Additional login and signup settings": "Additional login and signup settings",
+	"Login and signup views should be accessible by public users": "Login and signup views should be accessible by public users",
+	"Shared: %s": "Shared: %s",
+	"Sharing not enabled": "Sharing not enabled",
+	"You must be logged in to share": "You must be logged in to share",
+	"Fluid layout": "Fluid layout",
+	"Request fluid layout from theme for a wider display for this page": "Request fluid layout from theme for a wider display for this page",
+	"Location of view to create new row": "Location of view to create new row"
 }

package/locales/pl.json

@@ -1475,5 +1475,21 @@
   "Invalid build directory path": "Nieprawidłowa ścieżka katalogu kompilacji",
   "Invalid build directory name": "Nieprawidłowa nazwa katalogu kompilacji",
   "clean node_modules": "wyczyść node_modules",
-  "After delete": "Po usunięciu"
+  "After delete": "Po usunięciu",
+  "Search only on exact match, not substring match. Useful for large tables": "Wyszukuj tylko dokładne dopasowania, nie dopasowania do podciągów. Przydatne w przypadku dużych tabel",
+	"Please select an entry point.": "Proszę wybrać punkt wejścia",
+	"Group by": "Grupuj według",
+	"View %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>": "Widok %s został dodany do menu. Dostosuj uprawnienia dostępu w <a href=\"/menu\">Ustawienia &raquo; Menu</a>",
+	"Page %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>": "Strona %s została dodana do menu. Dostosuj uprawnienia dostępu w <a href=\"/menu\">Ustawienia &raquo; Menu</a>",
+	"SameSite": "SameSite",
+	"Restrict use of cookie to third-party sites. Strict is more secure, but may impact authentication": "Ogranicz użycie ciasteczka na stronach trzecich. Tryb „Strict” jest bardziej bezpieczny, ale może wpływać na uwierzytelnianie",
+	"Content Security Policy": "Polityka bezpieczeństwa treści",
+	"CORS": "CORS",
+	"Cross-origin resource sharing": "Udostępnianie zasobów między źródłami (CORS)",
+	"Signup and login views": "Widoki rejestracji i logowania",
+	"Additional login and signup settings": "Dodatkowe ustawienia logowania i rejestracji",
+	"Login and signup views should be accessible by public users": "Widoki logowania i rejestracji powinny być dostępne dla użytkowników publicznych",
+	"Shared: %s": "Udostępnione: %s",
+	"Sharing not enabled": "Udostępnianie nie jest włączone",
+	"You must be logged in to share": "Musisz być zalogowany, aby udostępniać"
 }

package/markup/admin.js

@@ -420,6 +420,7 @@ const config_fields_form = async ({
       fields.push({
         input_type: "section_header",
         label: req.__(name0.section_header),
+        sublabel: name0.sublabel ? req.__(name0.sublabel) : undefined,
       });
       continue;
     }

package/package.json

@@ -1,20 +1,20 @@
 {
   "name": "@saltcorn/server",
-  "version": "1.0.0",
+  "version": "1.1.0-beta.1",
   "description": "Server app for Saltcorn, open-source no-code platform",
   "homepage": "https://saltcorn.com",
   "main": "index.js",
   "license": "MIT",
   "dependencies": {
     "@aws-sdk/client-s3": "^3.451.0",
-    "@saltcorn/base-plugin": "1.0.0",
-    "@saltcorn/builder": "1.0.0",
-    "@saltcorn/data": "1.0.0",
-    "@saltcorn/admin-models": "1.0.0",
-    "@saltcorn/filemanager": "1.0.0",
-    "@saltcorn/markup": "1.0.0",
-    "@saltcorn/plugins-loader": "1.0.0",
-    "@saltcorn/sbadmin2": "1.0.0",
+    "@saltcorn/base-plugin": "1.1.0-beta.1",
+    "@saltcorn/builder": "1.1.0-beta.1",
+    "@saltcorn/data": "1.1.0-beta.1",
+    "@saltcorn/admin-models": "1.1.0-beta.1",
+    "@saltcorn/filemanager": "1.1.0-beta.1",
+    "@saltcorn/markup": "1.1.0-beta.1",
+    "@saltcorn/plugins-loader": "1.1.0-beta.1",
+    "@saltcorn/sbadmin2": "1.1.0-beta.1",
     "@socket.io/cluster-adapter": "^0.2.1",
     "@socket.io/sticky": "^1.0.1",
     "adm-zip": "0.5.10",

package/public/saltcorn-common.js

@@ -33,7 +33,7 @@ function setScreenInfoCookie() {
     innerHeight: window.innerHeight,
   })}; expires=Thu, 01 Jan 2100 00:00:00 GMT; path=/; domain=.${
     window.location.hostname
-  }`;
+  }; samesite=strict`;
 }
 setScreenInfoCookie();
 $(window).resize(() => {

package/public/saltcorn.css

@@ -607,3 +607,7 @@ button.monospace-copy-btn {
 .mobile-thumbnail-container img {
   display: block;
 }
+
+i[class^="unicode-"], i[class*=" unicode-"] {
+  font-style: normal;
+}

package/routes/actions.js

@@ -564,10 +564,17 @@ router.get(
 
     const subtitle =
       span(
-        { class: "ms-3" },
+        { class: "ms-2" },
         trigger.action,
+        " ",
+        trigger.when_trigger,
         table ? ` on ` + a({ href: `/table/${table.name}` }, table.name) : ""
       ) +
+      a(
+        { href: `/actions/edit/${id}`, class: "ms-2" },
+        req.__("Edit"),
+        '&nbsp;<i class="fas fa-edit"></i>'
+      ) +
       a(
         { href: `/actions/testrun/${id}`, class: "ms-2" },
         req.__("Test run") + "&nbsp;&raquo;"

package/routes/admin.js

@@ -12,6 +12,7 @@ const {
   setTenant,
   admin_config_route,
   get_sys_info,
+  tenant_letsencrypt_name,
 } = require("./utils.js");
 const Table = require("@saltcorn/data/models/table");
 const Plugin = require("@saltcorn/data/models/plugin");
@@ -90,7 +91,10 @@ const {
 } = require("../markup/admin.js");
 const packagejson = require("../package.json");
 const Form = require("@saltcorn/data/models/form");
-const { get_latest_npm_version } = require("@saltcorn/data/models/config");
+const {
+  get_latest_npm_version,
+  isFixedConfig,
+} = require("@saltcorn/data/models/config");
 const { getMailTransport } = require("@saltcorn/data/models/email");
 const {
   getBaseDomain,
@@ -976,6 +980,40 @@ router.post(
     }
   })
 );
+
+router.post(
+  "/save-config",
+  isAdmin,
+  error_catcher(async (req, res) => {
+    const state = getState();
+
+    //TODO check this is a config key
+    const validKeyName = (k) =>
+      k !== "_csrf" && k !== "constructor" && k !== "__proto__";
+
+    for (const [k, v] of Object.entries(req.body)) {
+      if (!isFixedConfig(k) && typeof v !== "undefined" && validKeyName(k)) {
+        //TODO read value from type
+        await state.setConfig(k, v);
+      }
+    }
+
+    // checkboxes that are false are not sent in post body. Check here
+    const { boolcheck } = req.query;
+    const boolchecks =
+      typeof boolcheck === "undefined"
+        ? []
+        : Array.isArray(boolcheck)
+        ? boolcheck
+        : [boolcheck];
+    for (const k of boolchecks) {
+      if (typeof req.body[k] === "undefined" && validKeyName(k))
+        await state.setConfig(k, false);
+    }
+    res.json({ success: "ok" });
+  })
+);
+
 /**
  * Do Auto backup now
  */
@@ -1689,6 +1727,64 @@ const clearAllForm = (req) =>
     ],
   });
 
+router.post(
+  "/acq-ssl-tenant/:subdomain",
+  isAdmin,
+  error_catcher(async (req, res) => {
+    if (
+      db.is_it_multi_tenant() &&
+      db.getTenantSchema() === db.connectObj.default_schema
+    ) {
+      const { subdomain } = req.params;
+
+      const domain = getBaseDomain();
+
+      let altname = await tenant_letsencrypt_name(subdomain);
+
+      if (!altname || domain) {
+        req.json({ error: "Set Base URL for both tenant and root first." });
+        return;
+      }
+
+      try {
+        const file_store = db.connectObj.file_store;
+        const admin_users = await User.find({ role_id: 1 }, { orderBy: "id" });
+        // greenlock logic
+        const Greenlock = require("greenlock");
+        const greenlock = Greenlock.create({
+          packageRoot: path.resolve(__dirname, ".."),
+          configDir: path.join(file_store, "greenlock.d"),
+          maintainerEmail: admin_users[0].email,
+        });
+
+        await greenlock.sites.add({
+          subject: altname,
+        });
+        // letsencrypt
+        const tenant_letsencrypt_sites = getState().getConfig(
+          "tenant_letsencrypt_sites",
+          []
+        );
+        await getState().setConfig(tenant_letsencrypt_sites, [
+          altname,
+          ...tenant_letsencrypt_sites,
+        ]);
+
+        res.json({
+          success: true,
+          notify: "Certificate added, please restart server",
+        });
+      } catch (e) {
+        req.flash("error", e.message);
+        res.redirect("/useradmin/ssl");
+      }
+    } else {
+      req.flash("error", req.__("Not possible for tenant"));
+      res.redirect("/useradmin/ssl");
+    }
+  })
+);
+
 /**
  * Do Enable letsencrypt
  * @name post/enable-letsencrypt
@@ -1749,6 +1845,15 @@ router.post(
         });
         // letsencrypt
         await getState().setConfig("letsencrypt", true);
+        const tenant_letsencrypt_sites = getState().getConfig(
+          "tenant_letsencrypt_sites",
+          []
+        );
+        await getState().setConfig(tenant_letsencrypt_sites, [
+          ...altnames,
+          ...tenant_letsencrypt_sites,
+        ]);
+
         req.flash(
           "success",
           req.__(
@@ -3844,6 +3949,10 @@ admin_config_route({
     { section_header: "Progressive Web Application" },
     "pwa_enabled",
     { name: "pwa_display", showIf: { pwa_enabled: true } },
+    {
+      name: "pwa_share_to_enabled",
+      showIf: { pwa_enabled: true },
+    },
     { name: "pwa_set_colors", showIf: { pwa_enabled: true } },
     {
       name: "pwa_theme_color",

package/routes/fields.js

@@ -1158,6 +1158,8 @@ router.post(
     try {
       if (!field.calculated) {
         result = row[field.name];
+      } else if (field.stored && field.expression === "__aggregation") {
+        result = row[field.name];
       } else if (field.stored) {
         const f = get_async_expression_function(formula, fields);
         //are there join fields in formula?

package/routes/list.js

@@ -303,7 +303,10 @@ router.get(
             type: "breadcrumbs",
             crumbs: [
               { text: req.__("Tables"), href: "/table" },
-              { href: `/table/${table.id || table.name}`, text: table.name },
+              {
+                href: `/table/${table.id || encodeURIComponent(table.name)}`,
+                text: table.name,
+              },
               { text: req.__("Data") },
             ],
             right: div(
@@ -376,7 +379,7 @@ router.get(
                 })
               })   
               window.tabulator_table = new Tabulator("#jsGrid", {
-                  ajaxURL:"/api/${table.name}${
+                  ajaxURL:"/api/${encodeURIComponent(table.name)}${
                   table.versioned ? "?versioncount=on" : ""
                 }",                   
                   layout:"fitColumns", 

package/routes/menu.js

@@ -20,11 +20,19 @@ const { save_menu_items } = require("@saltcorn/data/models/config");
 const db = require("@saltcorn/data/db");
 
 const { renderForm } = require("@saltcorn/markup");
-const { script, domReady, div, ul, i } = require("@saltcorn/markup/tags");
+const {
+  script,
+  domReady,
+  div,
+  ul,
+  i,
+  style,
+} = require("@saltcorn/markup/tags");
 const { send_infoarch_page } = require("../markup/admin.js");
 const Table = require("@saltcorn/data/models/table");
 const Trigger = require("@saltcorn/data/models/trigger");
 const { run_action_column } = require("@saltcorn/data/plugin-helper");
+const path = require("path");
 
 /**
  * @type {object}
@@ -497,7 +505,7 @@ router.get(
           script: static_pre + "/jquery-menu-editor.min.js",
         },
         {
-          script: static_pre + "/iconset-fontawesome5-3-1.min.js",
+          script: "/menu/icon-options?format=bootstrap-iconpicker",
         },
         {
           script: static_pre + "/bootstrap-iconpicker.js",
@@ -526,7 +534,8 @@ router.get(
                 ),
                 div(
                   renderForm(form, req.csrfToken()),
-                  script(domReady(menuEditorScript(menu_items)))
+                  script(domReady(menuEditorScript(menu_items))),
+                  style(setIconStyle())
                 ),
               ],
             },
@@ -599,3 +608,45 @@ router.post(
     else res.status(404).json({ error: "Action not found" });
   })
 );
+
+const getIcons = () => {
+  return getState().icons;
+};
+
+const setIconStyle = () => {
+  const icons = getIcons();
+  return icons
+    .filter((icon) => icon.startsWith("unicode-"))
+    .map(
+      (icon) =>
+        `i.${icon}:after {content: '${String.fromCharCode(
+          parseInt(icon.substring(8, 12), 16)
+        )}'}`
+    )
+    .join("\n");
+};
+
+router.get(
+  "/icon-options",
+  isAdmin,
+  error_catcher(async (req, res) => {
+    const { format } = req.query;
+    const icons = getIcons();
+    switch (format) {
+      case "bootstrap-iconpicker":
+        res.type("text/javascript");
+        res.send(
+          `jQuery.iconset_fontawesome_5={iconClass:"",iconClassFix:"",version:"5.3.1",icons:${JSON.stringify(
+            icons
+          )}}`
+        );
+        break;
+      case "json":
+        res.json(icons);
+
+      default:
+        res.send("");
+        break;
+    }
+  })
+);

package/routes/notifications.js

@@ -13,6 +13,7 @@ const { getState } = require("@saltcorn/data/db/state");
 const Form = require("@saltcorn/data/models/form");
 const File = require("@saltcorn/data/models/file");
 const User = require("@saltcorn/data/models/user");
+const Trigger = require("@saltcorn/data/models/trigger");
 const { renderForm, post_btn } = require("@saltcorn/markup");
 const db = require("@saltcorn/data/db");
 
@@ -193,6 +194,32 @@ router.post(
   })
 );
 
+router.post(
+  "/share-handler",
+  error_catcher(async (req, res) => {
+    const role = req.user?.role_id || 100;
+    if (role === 100) {
+      req.flash("error", req.__("You must be logged in to share"));
+      res.redirect("/auth/login");
+    } else if (!getState().getConfig("pwa_share_to_enabled", false)) {
+      req.flash("error", req.__("Sharing not enabled"));
+      res.redirect("/");
+    } else {
+      Trigger.emitEvent("ReceiveMobileShareData", null, req.user, {
+        row: req.body,
+      });
+      req.flash(
+        "success",
+        req.__(
+          "Shared: %s",
+          req.body.title || req.body.text || req.body.url || ""
+        )
+      );
+      res.status(303).redirect("/");
+    }
+  })
+);
+
 router.get(
   "/manifest.json:opt_cache_bust?",
   error_catcher(async (req, res) => {
@@ -205,6 +232,19 @@ router.get(
     };
     const site_logo = state.getConfig("site_logo_id");
     const pwa_icons = state.getConfig("pwa_icons");
+    const pwa_share_to_enabled = state.getConfig("pwa_share_to_enabled", false);
+    if (pwa_share_to_enabled) {
+      manifest.share_target = {
+        action: "/notifications/share-handler",
+        method: "POST",
+        enctype: "multipart/form-data",
+        params: {
+          title: "title",
+          text: "text",
+          url: "url",
+        },
+      };
+    }
     if (Array.isArray(pwa_icons) && pwa_icons.length > 0)
       manifest.icons = pwa_icons.map(({ image, size, maskable }) => ({
         src: `/files/serve/${image}`,

package/routes/page.js

@@ -66,6 +66,7 @@ const runPage = async (page, req, res, tic) => {
           description: page.description,
           bodyClass: "page_" + db.sqlsanitize(page.name),
           no_menu: page.attributes?.no_menu,
+          requestFluidLayout: page.attributes?.request_fluid_layout,
         } || `${page.name} page`,
         add_edit_bar({
           role,
@@ -200,6 +201,7 @@ router.post(
           });
           res.json({ success: "ok", ...(result || {}) });
         } catch (e) {
+          getState().log(2, e?.stack)
           res.status(400).json({ error: e.message || e });
         }
       } else res.status(404).json({ error: "Action not found" });

package/routes/page_groupedit.js

@@ -678,7 +678,7 @@ router.post(
       req.flash(
         "success",
         req.__(
-          "Page %s added to menu. Adjust access permissions in Settings » Menu",
+          "Page %s added to menu. Adjust access permissions in <a href=\"/menu\">Settings &raquo; Menu</a>",
           group.name
         )
       );

package/routes/pageedit.js

@@ -143,6 +143,12 @@ const pagePropertiesForm = async (req, isNew) => {
         sublabel: req.__("Omit the menu from this page"),
         type: "Bool",
       },
+      {
+        name: "request_fluid_layout",
+        label: req.__("Fluid layout"),
+        sublabel: req.__("Request fluid layout from theme for a wider display for this page"),
+        type: "Bool",
+      },
     ],
   });
   return form;
@@ -229,6 +235,7 @@ const pageBuilderData = async (req, context) => {
   }
 
   //console.log(fixed_state_fields.ListTasks);
+  const icons = getState().icons;
   return {
     views: views.map((v) => v.select_option),
     images,
@@ -244,6 +251,7 @@ const pageBuilderData = async (req, context) => {
     page_id: context.id,
     mode: "page",
     roles,
+    icons,
     fixed_state_fields,
     next_button_label: "Done",
     fonts: getState().fonts,
@@ -427,6 +435,7 @@ router.get(
       form.hidden("id");
       form.values = page;
       form.values.no_menu = page.attributes?.no_menu;
+      form.values.request_fluid_layout = page.attributes?.request_fluid_layout;
       form.onChange = `saveAndContinue(this)`;
       res.sendWrap(
         req.__(`Page attributes`),
@@ -473,9 +482,16 @@ router.post(
         wrap(renderForm(form, req.csrfToken()), false, req)
       );
     } else {
-      const { id, columns, no_menu, html_file, ...pageRow } = form.values;
+      const {
+        id,
+        columns,
+        no_menu,
+        request_fluid_layout,
+        html_file,
+        ...pageRow
+      } = form.values;
       pageRow.min_role = +pageRow.min_role;
-      pageRow.attributes = { no_menu };
+      pageRow.attributes = { no_menu, request_fluid_layout };
       if (html_file) {
         pageRow.layout = {
           html_file: html_file,
@@ -528,7 +544,10 @@ const getEditNormalPage = async (req, res, page) => {
     version_tag: db.connectObj.version_tag,
   };
   res.sendWrap(
-    req.__(`%s configuration`, page.name),
+    {
+      title: req.__(`%s configuration`, page.name),
+      requestFluidLayout: true,
+    },
     wrap(renderBuilder(builderData, req.csrfToken()), true, req, page)
   );
 };
@@ -780,7 +799,7 @@ router.post(
     req.flash(
       "success",
       req.__(
-        "Page %s added to menu. Adjust access permissions in Settings » Menu",
+        'Page %s added to menu. Adjust access permissions in <a href="/menu">Settings &raquo; Menu</a>',
         page.name
       )
     );

package/routes/registry.js

@@ -135,25 +135,70 @@ router.get(
           },
         ],
       });
+    let cfg_link = "";
     switch (etype) {
       case "table":
         const tpack = await table_pack(
           all_tables.find((t) => t.name === ename)
         );
+        cfg_link = a(
+          { href: `/table/${encodeURIComponent(ename)}` },
+          `${ename} ${etype}`
+        );
         edContents = renderForm(mkForm(tpack), req.csrfToken());
         break;
       case "view":
+        cfg_link =
+          `${ename} ${etype}` +
+          a(
+            {
+              class: "ms-2",
+              href: `/viewedit/edit/${encodeURIComponent(ename)}`,
+            },
+            "Edit ",
+            i({ class: "fas fa-edit" })
+          ) +
+          a(
+            {
+              class: "ms-1 me-3",
+              href: `/viewedit/config/${encodeURIComponent(ename)}`,
+            },
+            "Configure ",
+            i({ class: "fas fa-cog" })
+          );
         const vpack = await view_pack(all_views.find((v) => v.name === ename));
         edContents = renderForm(mkForm(vpack), req.csrfToken());
         break;
       case "page":
+        cfg_link = a(
+          { href: `/pageedit/edit/${encodeURIComponent(ename)}` },
+          `${ename} ${etype}`
+        );
         const ppack = await page_pack(all_pages.find((v) => v.name === ename));
         edContents = renderForm(mkForm(ppack), req.csrfToken());
         break;
       case "trigger":
-        const trpack = await trigger_pack(
-          all_triggers.find((t) => t.name === ename)
-        );
+        const trigger = all_triggers.find((t) => t.name === ename);
+        const trpack = await trigger_pack(trigger);
+        cfg_link =
+          `${ename} ${etype}` +
+          a(
+            {
+              class: "ms-2",
+              href: `/actions/edit/${trigger?.id}`,
+            },
+            "Edit ",
+            i({ class: "fas fa-edit" })
+          ) +
+          a(
+            {
+              class: "ms-1 me-3",
+              href: `/actions/configure/${trigger?.id}`,
+            },
+            "Configure ",
+            i({ class: "fas fa-cog" })
+          );
+
         edContents = renderForm(mkForm(trpack), req.csrfToken());
         break;
     }
@@ -243,10 +288,11 @@ router.get(
           },
           {
             type: "card",
-            title:
-              ename && etype
-                ? `Registry editor: ${ename} ${etype}`
-                : "Registry editor",
+            title: cfg_link
+              ? `Registry editor: ${cfg_link}`
+              : ename && etype
+              ? `Registry editor: ${ename} ${etype}`
+              : "Registry editor",
             contents: edContents,
           },
         ],

package/routes/tables.js

@@ -926,7 +926,7 @@ router.get(
                 ? `/useradmin/`
                 : fields.length === 1
                 ? `javascript:;` // Fix problem with edition of table with only one column ID / Primary Key
-                : `/list/${table.name}`,
+                : `/list/${encodeURIComponent(table.name)}`,
           },
           i({ class: "fas fa-2x fa-edit" }),
           "<br/>",
@@ -949,7 +949,7 @@ router.get(
       div(
         { class: "mx-auto" },
         a(
-          { href: `/table/download/${table.name}` },
+          { href: `/table/download/${encodeURIComponent(table.name)}` },
           i({ class: "fas fa-2x fa-download" }),
           "<br/>",
           req.__("Download CSV")
@@ -1014,13 +1014,13 @@ router.get(
                 '<i class="fas fa-edit"></i>&nbsp;' + req.__("Rename table")
               ),
             post_dropdown_item(
-              `/table/recalc-stored/${table.name}`,
+              `/table/recalc-stored/${encodeURIComponent(table.name)}`,
               '<i class="fas fa-sync"></i>&nbsp;' +
                 req.__("Recalculate stored fields"),
               req
             ),
             post_dropdown_item(
-              `/table/delete-all-rows/${table.name}`,
+              `/table/delete-all-rows/${encodeURIComponent(table.name)}`,
               '<i class="far fa-trash-alt"></i>&nbsp;' +
                 req.__("Delete all rows"),
               req,
@@ -1111,6 +1111,7 @@ router.post(
     const v = req.body;
     if (typeof v.id === "undefined" && typeof v.external === "undefined") {
       // insert
+      v.name = v.name.trim()
       const { name, ...rest } = v;
       const alltables = await Table.find({});
       const existing_tables = [

package/routes/tenant.js

@@ -44,7 +44,12 @@ const {
 const db = require("@saltcorn/data/db");
 
 const { loadAllPlugins, loadAndSaveNewPlugin } = require("../load_plugins");
-const { isAdmin, error_catcher, is_ip_address } = require("./utils.js");
+const {
+  isAdmin,
+  error_catcher,
+  is_ip_address,
+  tenant_letsencrypt_name,
+} = require("./utils.js");
 const User = require("@saltcorn/data/models/user");
 const File = require("@saltcorn/data/models/file");
 const {
@@ -612,8 +617,18 @@ router.get(
       return;
     }
     const { subdomain } = req.params;
+
     // get tenant info
     const info = await get_tenant_info(subdomain);
+    const letsencrypt = getState().getConfig("letsencrypt", false);
+
+    let altname = await tenant_letsencrypt_name(subdomain);
+    const tenant_letsencrypt_sites = getState().getConfig(
+      "tenant_letsencrypt_sites",
+      []
+    );
+    const has_cert = tenant_letsencrypt_sites.includes(altname);
+    
     // get list of files
     let files;
     await db.runWithTenant(subdomain, async () => {
@@ -632,6 +647,7 @@ router.get(
             // TBD make more pretty view - in ideal with charts
             contents: [
               table(
+                { class: "table table-sm" },
                 tr(
                   th(req.__("First user E-mail")),
                   td(
@@ -723,6 +739,20 @@ router.get(
                   submitLabel: req.__("Save"),
                   submitButtonClass: "btn-outline-primary",
                   onChange: "remove_outline(this)",
+                  additionalButtons: [
+                    ...(letsencrypt && !has_cert
+                      ? [
+                          {
+                            label: req.__("Acquire LetsEncrypt certificate"),
+                            id: "btnAcqCert",
+                            class: "btn btn-secondary",
+                            onclick: `press_store_button(this);ajax_post('/admin/acq-ssl-tenant/${encodeURIComponent(
+                              subdomain
+                            )}')`,
+                          },
+                        ]
+                      : []),
+                  ],
                   fields: [
                     {
                       name: "base_url",

package/routes/utils.js

@@ -33,6 +33,7 @@ const {
 const path = require("path");
 const { UAParser } = require("ua-parser-js");
 const crypto = require("crypto");
+const { domain_sanitize } = require("@saltcorn/admin-models/models/tenant");
 
 const get_sys_info = async () => {
   const disks = await si.fsSize();
@@ -312,14 +313,17 @@ const getSessionStore = (pruneInterval) => {
       maxAge: 30 * 24 * 60 * 60 * 1000,
       sameSite: "strict",
     });
-  } else*/ if (db.isSQLite) {
+  } else*/
+  let sameSite = getState().getConfig("cookie_samesite", "None").toLowerCase();
+  if (sameSite === "unset") sameSite = undefined;
+  if (db.isSQLite) {
     var SQLiteStore = require("connect-sqlite3")(session);
     return session({
       store: new SQLiteStore({ db: "sessions.sqlite" }),
       secret: db.connectObj.session_secret || is.str.generate(),
       resave: false,
       saveUninitialized: false,
-      cookie: { maxAge: 30 * 24 * 60 * 60 * 1000, sameSite: "strict" }, // 30 days
+      cookie: { maxAge: 30 * 24 * 60 * 60 * 1000, sameSite }, // 30 days
     });
   } else {
     const pgSession = require("connect-pg-simple")(session);
@@ -333,7 +337,7 @@ const getSessionStore = (pruneInterval) => {
       secret: db.connectObj.session_secret || is.str.generate(),
       resave: false,
       saveUninitialized: false,
-      cookie: { maxAge: 30 * 24 * 60 * 60 * 1000 }, // 30 days
+      cookie: { maxAge: 30 * 24 * 60 * 60 * 1000, sameSite }, // 30 days
     });
   }
 };
@@ -369,6 +373,19 @@ const is_ip_address = (hostname) => {
   return hostname.split(".").every((s) => +s >= 0 && +s <= 255);
 };
 
+const tenant_letsencrypt_name = async (subdomain) => {
+  const saneDomain = domain_sanitize(subdomain);
+  let altname;
+  await db.runWithTenant(saneDomain, async () => {
+    altname = getState()
+      .getConfig("base_url", "")
+      .replace("https://", "")
+      .replace("http://", "")
+      .replace("/", "");
+  });
+  return altname;
+};
+
 const admin_config_route = ({
   router,
   path,
@@ -584,4 +601,5 @@ module.exports = {
   setRole,
   getEligiblePage,
   getRandomPage,
+  tenant_letsencrypt_name,
 };

package/routes/viewedit.js

@@ -286,7 +286,7 @@ const viewForm = async (req, tableOptions, roles, pages, values) => {
         parent_field: "attributes",
         attributes: {
           inline: true,
-          options: ["px", "%", "vw", "em", "rem"],
+          options: ["px", "%", "vw", "em", "rem", "cm"],
         },
       },
       {
@@ -306,7 +306,7 @@ const viewForm = async (req, tableOptions, roles, pages, values) => {
         parent_field: "attributes",
         attributes: {
           inline: true,
-          options: ["px", "%", "vw", "em", "rem"],
+          options: ["px", "%", "vw", "em", "rem", "cm"],
         },
       },
       {
@@ -586,7 +586,10 @@ const respondWorkflow = (view, wf, wfres, req, res, table) => {
             text: view.name,
             postLinkText: `[${view.viewtemplate}${
               table
-                ? ` on ${a({ href: `/table/` + table.name }, table.name)}`
+                ? ` on ${a(
+                    { href: `/table/` + encodeURIComponent(table.name) },
+                    table.name
+                  )}`
                 : ""
             }]`,
           },
@@ -761,7 +764,7 @@ router.post(
     req.flash(
       "success",
       req.__(
-        "View %s added to menu. Adjust access permissions in Settings » Menu",
+        'View %s added to menu. Adjust access permissions in <a href="/menu">Settings &raquo; Menu</a>',
         view.name
       )
     );

package/tests/api.test.js

@@ -3,9 +3,12 @@ const getApp = require("../app");
 const Table = require("@saltcorn/data/models/table");
 const Trigger = require("@saltcorn/data/models/trigger");
 const File = require("@saltcorn/data/models/file");
+const Field = require("@saltcorn/data/models/field");
+const User = require("@saltcorn/data/models/user");
+const { getState } = require("@saltcorn/data/db/state");
+
 const fs = require("fs").promises;
 
-const Field = require("@saltcorn/data/models/field");
 const {
   getStaffLoginCookie,
   getAdminLoginCookie,
@@ -14,10 +17,11 @@ const {
   succeedJsonWith,
   notAuthorized,
   toRedirect,
+  toInclude,
   succeedJsonWithWholeBody,
 } = require("../auth/testhelp");
 const db = require("@saltcorn/data/db");
-const User = require("@saltcorn/data/models/user");
+const { sleep } = require("@saltcorn/data/tests/mocks");
 
 beforeAll(async () => {
   await resetToFixtures();
@@ -505,3 +509,85 @@ describe("API action", () => {
     expect(counts.map((c) => c.thing)).toContain("no body");
   });
 });
+
+describe("test share handler", () => {
+  beforeAll(async () => {
+    await getState().setConfig("pwa_share_to_enabled", true);
+
+    const sharedData = await Table.create("shared_data");
+    await Field.create({
+      table: sharedData,
+      name: "title",
+      label: "Title",
+      type: "String",
+    });
+    await Field.create({
+      table: sharedData,
+      name: "user",
+      label: "user",
+      type: "String",
+    });
+    await Trigger.create({
+      action: "run_js_code",
+      when_trigger: "ReceiveMobileShareData",
+      name: "my_receive_share",
+      min_role: 100,
+      configuration: {
+        code: `
+        const sharedData = Table.findOne({ name: "shared_data" });
+        await sharedData.insertRow({
+          title: row.title, user: JSON.stringify(user)
+        });`,
+      },
+    });
+  });
+
+  it("shares as admin", async () => {
+    const app = await getApp({ disableCsrf: true });
+    const loginCookie = await getAdminLoginCookie();
+    await request(app)
+      .post("/notifications/share-handler")
+      .set("Cookie", loginCookie)
+      .send({ title: "share_as_admin" })
+      .expect(toRedirect("/"));
+    await sleep(1000);
+    const sharedData = Table.findOne({ name: "shared_data" });
+    const rows = await sharedData.getRows({});
+    const row = rows.find(
+      (r) =>
+        r.title === "share_as_admin" &&
+        r.user ===
+          '{"email":"admin@foo.com","id":1,"role_id":1,"language":null,"tenant":"public","attributes":{}}'
+    );
+    expect(row).toBeDefined();
+  });
+
+  it("pwa_disabled as admin", async () => {
+    const app = await getApp({ disableCsrf: true });
+    const loginCookie = await getAdminLoginCookie();
+    await getState().setConfig("pwa_share_to_enabled", false);
+    await request(app)
+      .post("/notifications/share-handler")
+      .set("Cookie", loginCookie)
+      .send({ title: "pwa_disabled_as_admin" })
+      .expect(toRedirect("/"));
+    await sleep(1000);
+    const sharedData = Table.findOne({ name: "shared_data" });
+    const rows = await sharedData.getRows({});
+    const row = rows.find((r) => r.title === "pwa_disabled_as_admin");
+    expect(row).toBeUndefined();
+  });
+
+  it("does not share as public", async () => {
+    const app = await getApp({ disableCsrf: true });
+    await request(app)
+      .post("/notifications/share-handler")
+      .send({ title: "does_not_share_as_public" })
+      .expect(toRedirect("/auth/login"));
+    await sleep(1000);
+    const sharedData = Table.findOne({ name: "shared_data" });
+    const rows = await sharedData.getRows({});
+    const row = rows.find((r) => r.title === "does_not_share_as_public");
+    expect(row).toBeUndefined();
+  });
+});

package/tests/auth.test.js

@@ -372,7 +372,7 @@ describe("User fields", () => {
           ],
         },
       },
-      min_role: 1,
+      min_role: 100,
     });
     await getState().setConfig("new_user_form", "newuser");
   });
@@ -508,7 +508,7 @@ describe("signup with custom login form", () => {
         viewname: "loginform",
         view_when_done: "publicissueboard",
       },
-      min_role: 1,
+      min_role: 100,
       //default_render_page: "loginpage",
     });
 
@@ -598,7 +598,7 @@ describe("signup with custom login form", () => {
         viewname: "loginform",
         view_when_done: "publicissueboard",
       },
-      min_role: 1,
+      min_role: 100,
       //default_render_page: "signuppage",
     });
     await getState().setConfig("signup_form", "signupform");

package/tests/plugin_install.test.js

@@ -161,7 +161,7 @@ describe("Stable versioning install", () => {
       name: "@christianhugoch/empty_sc_test_plugin",
     });
     expect(dbPlugin).not.toBe(null);
-    expect(dbPlugin.version).toBe("0.0.6");
+    expect(dbPlugin.version).toBe("0.0.1");
   });
 
   it("installs a fixed version", async () => {
@@ -178,7 +178,7 @@ describe("Stable versioning install", () => {
       name: "@christianhugoch/empty_sc_test_plugin",
     });
     expect(dbPlugin).not.toBe(null);
-    expect(dbPlugin.version).toBe("0.0.6");
+    expect(dbPlugin.version).toBe("0.0.1");
   });
 
   it("installs and downgrades a fixed version", async () => {
@@ -196,7 +196,7 @@ describe("Stable versioning install", () => {
       name: "@christianhugoch/empty_sc_test_plugin",
     });
     expect(dbPlugin).not.toBe(null);
-    expect(dbPlugin.version).toBe("0.0.6");
+    expect(dbPlugin.version).toBe("0.0.1");
   });
 });
 
@@ -276,7 +276,7 @@ describe("Stable versioning upgrade", () => {
       name: "@christianhugoch/empty_sc_test_plugin",
     });
     expect(newPlugin).not.toBe(null);
-    expect(newPlugin.version).toBe("0.0.6");
+    expect(newPlugin.version).toBe("0.0.1");
   });
 
   it("upgrades to fixed version", async () => {
@@ -344,6 +344,6 @@ describe("Stable versioning upgrade", () => {
       name: "@christianhugoch/empty_sc_test_plugin",
     });
     expect(newPlugin).not.toBe(null);
-    expect(newPlugin.version).toBe("0.0.6");
+    expect(newPlugin.version).toBe("0.0.1");
   });
 });

package/tests/plugins.test.js

@@ -236,7 +236,7 @@ describe("Pack Endpoints", () => {
       .send(
         "pack=les%22%3A+%5B%5D%2C+%22views%22%3A+%5B%5D%2C+%22plugins%22%3A+%5B%5D%2C+%22pages%22%3A+%5B%5D+%7D"
       )
-      .expect(toInclude("Unexpected token l in JSON at position 0"));
+      .expect(toInclude("Unexpected token"));
   });
   it("should install named", async () => {
     const loginCookie = await getAdminLoginCookie();
@@ -404,7 +404,7 @@ describe("Upgrade plugin to supported version", () => {
     const upgradedPlugin = await Plugin.findOne({
       name: "@christianhugoch/empty_sc_test_plugin",
     });
-    expect(upgradedPlugin.version).toBe("0.0.6");
+    expect(upgradedPlugin.version).toBe("0.0.1");
   });
 
   it("upgrades with a downgrade of the most current fixed version", async () => {
@@ -427,7 +427,7 @@ describe("Upgrade plugin to supported version", () => {
     const upgradedPlugin = await Plugin.findOne({
       name: "@christianhugoch/empty_sc_test_plugin",
     });
-    expect(upgradedPlugin.version).toBe("0.0.6");
+    expect(upgradedPlugin.version).toBe("0.0.1");
   });
 });
 
@@ -452,7 +452,16 @@ describe("install a different version dialog", () => {
         )}`
       )
       .set("Cookie", loginCookie)
-      .expect(toInclude(["0.0.1", "0.0.2", "0.0.3", "0.0.4", "0.0.5", "0.0.6"]))
-      .expect(toNotInclude("0.1.0"));
+      .expect(
+        toInclude([
+          "0.0.1",
+          "0.0.2",
+          "0.0.3",
+          "0.0.4",
+          "0.0.5",
+          "0.0.6",
+          "0.1.0",
+        ])
+      );
   });
 });

package/public/bootstrap-iconpicker.min.js

@@ -1,11 +0,0 @@
-/*!========================================================================
-* File: bootstrap-iconpicker.min.js v1.10.0 by @victor-valencia
-* https://victor-valencia.github.com/bootstrap-iconpicker
-* ========================================================================
-* Copyright 2013-2018 Victor Valencia Rico.
-* Licensed under MIT license.
-* https://github.com/victor-valencia/bootstrap-iconpicker/blob/master/LICENSE
-* ========================================================================
-*/
-
-!function($){"use strict";var Iconpicker=function(element,options){if("undefined"==typeof $.fn.popover||"undefined"==typeof $.fn.popover.Constructor.VERSION)throw new TypeError("Bootstrap iconpicker require Bootstrap popover");this.$element=$(element),this.options=$.extend({},Iconpicker.DEFAULTS,this.$element.data()),this.options=$.extend({},this.options,options)};Iconpicker.VERSION="1.10.0",Iconpicker.ICONSET_EMPTY={iconClass:"",iconClassFix:"",icons:[]},Iconpicker.ICONSET={_custom:null,elusiveicon:$.iconset_elusiveicon||Iconpicker.ICONSET_EMPTY,flagicon:$.iconset_flagicon||Iconpicker.ICONSET_EMPTY,fontawesome4:$.iconset_fontawesome_4||Iconpicker.ICONSET_EMPTY,fontawesome5:$.iconset_fontawesome_5||Iconpicker.ICONSET_EMPTY,glyphicon:$.iconset_glyphicon||Iconpicker.ICONSET_EMPTY,ionicon:$.iconset_ionicon||Iconpicker.ICONSET_EMPTY,mapicon:$.iconset_mapicon||Iconpicker.ICONSET_EMPTY,materialdesign:$.iconset_materialdesign||Iconpicker.ICONSET_EMPTY,octicon:$.iconset_octicon||Iconpicker.ICONSET_EMPTY,typicon:$.iconset_typicon||Iconpicker.ICONSET_EMPTY,weathericon:$.iconset_weathericon||Iconpicker.ICONSET_EMPTY},Iconpicker.DEFAULTS={align:"center",arrowClass:"btn-primary",arrowNextIconClass:"fas fa-arrow-right",arrowPrevIconClass:"fas fa-arrow-left",cols:4,icon:"",iconset:"fontawesome5",iconsetVersion:"lastest",header:!0,labelHeader:"{0} / {1}",footer:!0,labelFooter:"{0} - {1} of {2}",placement:"bottom",rows:4,search:!0,searchText:"Search icon",selectedClass:"btn-warning",unselectedClass:"btn-secondary"},Iconpicker.prototype.bindEvents=function(){var op=this.options,el=this;op.table.find(".btn-previous, .btn-next").off("click").on("click",function(e){if(e.preventDefault(),!$(this).hasClass("disabled")){var inc=parseInt($(this).val(),10);el.changeList(op.page+inc)}}),op.table.find(".btn-icon").off("click").on("click",function(e){e.preventDefault(),el.select($(this).val()),op.inline===!1?el.$element.popover("3.x"===$.fn.bsVersion()?"destroy":"dispose"):op.table.find("i[class$='"+$(this).val()+"']").parent().addClass(op.selectedClass)}),op.table.find(".search-control").off("keyup").on("keyup",function(){el.changeList(1)})},Iconpicker.prototype.changeList=function(page){this.filterIcons(),this.updateLabels(page),this.updateIcons(page),this.options.page=page,this.bindEvents()},Iconpicker.prototype.filterIcons=function(){var op=this.options,search=op.table.find(".search-control").val(),icons=[];if("lastest"!=op.iconsetVersion&&"undefined"!=typeof Iconpicker.ICONSET[op.iconset].allVersions?$.each(Iconpicker.ICONSET[op.iconset].allVersions,function(i,v){op.iconsetVersion==v.version&&(icons=v.icons)}):icons=Iconpicker.ICONSET[op.iconset].icons,""===search)op.icons=icons;else{var result=[];$.each(icons,function(i,v){v.toLowerCase().indexOf(search)>-1&&result.push(v)}),op.icons=result}},Iconpicker.prototype.removeAddClass=function(target,remove,add){return this.options.table.find(target).removeClass(remove).addClass(add),add},Iconpicker.prototype.reset=function(){this.updatePicker(),this.changeList(1)},Iconpicker.prototype.select=function(icon){var op=this.options,el=this.$element;op.selected=$.inArray(icon.replace(op.iconClassFix,""),op.icons),-1===op.selected&&(op.selected=0,icon=op.iconClassFix+op.icons[op.selected]),""!==icon&&op.selected>=0&&(op.icon=icon,op.inline===!1&&(el.find("input").val(icon),el.find("i").attr("class","").addClass(op.iconClass).addClass(icon)),icon===op.iconClassFix?el.trigger({type:"change",icon:"empty"}):(el.trigger({type:"change",icon:icon}),el.find("input").val(icon)),op.table.find("button."+op.selectedClass).removeClass(op.selectedClass))},Iconpicker.prototype.switchPage=function(icon){var op=this.options;if(op.selected=$.inArray(icon.replace(op.iconClassFix,""),op.icons),op.selected>=0){var page=Math.ceil((op.selected+1)/this.totalIconsPerPage());this.changeList(page)}""===icon?op.table.find("i."+op.iconClassFix).parent().addClass(op.selectedClass):op.table.find("i."+icon).parent().addClass(op.selectedClass)},Iconpicker.prototype.totalPages=function(){return Math.ceil(this.totalIcons()/this.totalIconsPerPage())},Iconpicker.prototype.totalIcons=function(){return this.options.icons.length},Iconpicker.prototype.totalIconsPerPage=function(){return 0===this.options.rows?this.options.icons.length:this.options.cols*this.options.rows},Iconpicker.prototype.updateArrows=function(page){var op=this.options,total_pages=this.totalPages();1===page?op.table.find(".btn-previous").addClass("disabled"):op.table.find(".btn-previous").removeClass("disabled"),page===total_pages||0===total_pages?op.table.find(".btn-next").addClass("disabled"):op.table.find(".btn-next").removeClass("disabled")},Iconpicker.prototype.updateIcons=function(page){var op=this.options,tbody=op.table.find("tbody").empty(),offset=(page-1)*this.totalIconsPerPage(),length=op.rows;0===op.rows&&(length=op.icons.length);for(var i=0;length>i;i++){for(var tr=$("<tr></tr>"),j=0;j<op.cols;j++){var pos=offset+i*op.cols+j,btn=$('<button class="btn '+op.unselectedClass+' btn-icon"></button>').hide();if(pos<op.icons.length){var v=op.iconClassFix+op.icons[pos];btn.val(v).attr("title",v).append('<i class="'+op.iconClass+" "+v+'"></i>').show(),op.icon===v&&btn.addClass(op.selectedClass).addClass("btn-icon-selected")}tr.append($("<td></td>").append(btn))}tbody.append(tr)}},Iconpicker.prototype.updateIconsCount=function(){var op=this.options;if(op.footer===!0){var icons_count=["<tr>",'   <td colspan="'+op.cols+'" class="text-center">','       <span class="icons-count"></span>',"   </td>","</tr>"];op.table.find("tfoot").empty().append(icons_count.join(""))}},Iconpicker.prototype.updateLabels=function(page){var op=this.options,total_icons=this.totalIcons(),total_pages=this.totalPages();op.table.find(".page-count").html(op.labelHeader.replace("{0}",0===total_pages?0:page).replace("{1}",total_pages));var offset=(page-1)*this.totalIconsPerPage(),total=page*this.totalIconsPerPage();op.table.find(".icons-count").html(op.labelFooter.replace("{0}",total_icons?offset+1:0).replace("{1}",total_icons>total?total:total_icons).replace("{2}",total_icons)),this.updateArrows(page)},Iconpicker.prototype.updatePagesCount=function(){var op=this.options;if(op.header===!0){for(var tr=$("<tr></tr>"),i=0;i<op.cols;i++){var td=$('<td class="text-center"></td>');if(0===i||i===op.cols-1){var arrow=['<button class="btn btn-arrow '+(0===i?"btn-previous":"btn-next")+" "+op.arrowClass+'" value="'+(0===i?-1:1)+'">','<span class="'+(0===i?op.arrowPrevIconClass:op.arrowNextIconClass)+'"></span>',"</button>"];td.append(arrow.join("")),tr.append(td)}else 0===tr.find(".page-count").length&&(td.attr("colspan",op.cols-2).append('<span class="page-count"></span>'),tr.append(td))}op.table.find("thead").empty().append(tr)}},Iconpicker.prototype.updatePicker=function(){var op=this.options;if(op.cols<4)throw"Iconpicker => The number of columns must be greater than or equal to 4. [option.cols = "+op.cols+"]";if(op.rows<0)throw"Iconpicker => The number of rows must be greater than or equal to 0. [option.rows = "+op.rows+"]";this.updatePagesCount(),this.updateSearch(),this.updateIconsCount()},Iconpicker.prototype.updateSearch=function(){var op=this.options,search=["<tr>",'   <td colspan="'+op.cols+'">','       <input type="text" class="form-control search-control" style="width: '+op.cols*("3.x"===$.fn.bsVersion()?39:41)+'px;" placeholder="'+op.searchText+'">',"   </td>","</tr>"];search=$(search.join("")),op.search===!0?search.show():search.hide(),op.table.find("thead").append(search)},Iconpicker.prototype.setAlign=function(value){this.$element.removeClass(this.options.align).addClass(value),this.options.align=value},Iconpicker.prototype.setArrowClass=function(value){this.options.arrowClass=this.removeAddClass(".btn-arrow",this.options.arrowClass,value)},Iconpicker.prototype.setArrowNextIconClass=function(value){this.options.arrowNextIconClass=this.removeAddClass(".btn-next > span",this.options.arrowNextIconClass,value)},Iconpicker.prototype.setArrowPrevIconClass=function(value){this.options.arrowPrevIconClass=this.removeAddClass(".btn-previous > span",this.options.arrowPrevIconClass,value)},Iconpicker.prototype.setCols=function(value){this.options.cols=value,this.reset()},Iconpicker.prototype.setFooter=function(value){var footer=this.options.table.find("tfoot");value===!0?footer.show():footer.hide(),this.options.footer=value},Iconpicker.prototype.setHeader=function(value){var header=this.options.table.find("thead");value===!0?header.show():header.hide(),this.options.header=value},Iconpicker.prototype.setIcon=function(value){this.select(value)},Iconpicker.prototype.setIconset=function(value){var op=this.options;$.isPlainObject(value)?(Iconpicker.ICONSET._custom=$.extend(Iconpicker.ICONSET_EMPTY,value),op.iconset="_custom"):Iconpicker.ICONSET.hasOwnProperty(value)?op.iconset=value:op.iconset=Iconpicker.DEFAULTS.iconset,op=$.extend(op,Iconpicker.ICONSET[op.iconset]),this.reset(),this.select(op.icon)},Iconpicker.prototype.setLabelHeader=function(value){this.options.labelHeader=value,this.updateLabels(this.options.page)},Iconpicker.prototype.setLabelFooter=function(value){this.options.labelFooter=value,this.updateLabels(this.options.page)},Iconpicker.prototype.setPlacement=function(value){this.options.placement=value},Iconpicker.prototype.setRows=function(value){this.options.rows=value,this.reset()},Iconpicker.prototype.setSearch=function(value){var search=this.options.table.find(".search-control");value===!0?search.show():search.hide(),search.val(""),this.changeList(1),this.options.search=value},Iconpicker.prototype.setSearchText=function(value){this.options.table.find(".search-control").attr("placeholder",value),this.options.searchText=value},Iconpicker.prototype.setSelectedClass=function(value){this.options.selectedClass=this.removeAddClass(".btn-icon-selected",this.options.selectedClass,value)},Iconpicker.prototype.setUnselectedClass=function(value){this.options.unselectedClass=this.removeAddClass(".btn-icon",this.options.unselectedClass,value)};var old=$.fn.iconpicker;$.fn.iconpicker=function(option,params){return this.each(function(){var $this=$(this),data=$this.data("bs.iconpicker"),options="object"==typeof option&&option;if(data||$this.data("bs.iconpicker",data=new Iconpicker(this,options)),"string"==typeof option){if("undefined"==typeof data[option])throw'Iconpicker => The "'+option+'" method does not exists.';data[option](params)}else{var op=data.options;op=$.extend(op,{inline:!1,page:1,selected:-1,table:$('<table class="table-icons"><thead></thead><tbody></tbody><tfoot></tfoot></table>')});var name="undefined"!=typeof $this.attr("name")?'name="'+$this.attr("name")+'"':"";"BUTTON"===$this.prop("tagName")?($this.empty().append("<i></i>").append('<input type="hidden" '+name+"></input>").append('<span class="caret"></span>').addClass("iconpicker "+("3.x"===$.fn.bsVersion()?"":"dropdown-toggle")),data.setIconset(op.iconset),$this.on("click",function(e){e.preventDefault(),$this.popover({animation:!1,trigger:"manual",html:!0,content:op.table,container:"body",placement:op.placement}).on("inserted.bs.popover",function(){var el=$this.data("bs.popover"),tip="3.x"===$.fn.bsVersion()?el.tip():$(el.getTipElement());tip.addClass("iconpicker-popover")}).on("shown.bs.popover",function(){data.switchPage(op.icon),data.bindEvents()}),$this.popover("show")})):(op.inline=!0,data.setIconset(op.iconset),$this.empty().append('<input type="hidden" '+name+"></input>").append(op.table).addClass("iconpicker").addClass(op.align),data.switchPage(op.icon),data.bindEvents())}})},$.fn.iconpicker.Constructor=Iconpicker,$.fn.iconpicker.noConflict=function(){return $.fn.iconpicker=old,this},$.fn.bsVersion=function(){return $.fn.popover.Constructor.VERSION.substr(0,2)+"x"},$(document).on("click","body",function(e){$(".iconpicker").each(function(){$(this).is(e.target)||0!==$(this).has(e.target).length||0!==$(".popover").has(e.target).length||$(this).popover("3.x"===$.fn.bsVersion()?"destroy":"dispose")})}),$('button[role="iconpicker"],div[role="iconpicker"]').iconpicker()}(jQuery);