d59e44a190
default to allow_css = false
12 years ago
4d35660f3c
sanitize CSS
...
rather than removing it entirely
12 years ago
d7b1e8b45b
test style
12 years ago
5f7f1c51ec
remove unused security warning
12 years ago
c49f04545a
don't use `result.safe` to communicate incomplete information
12 years ago
028ce17c62
fix tagName comparison
12 years ago
a7dc526b2b
testing for sanitize
12 years ago
3897b1c39f
don't populate sanitized.safe by default
...
since it's potentially expensive.
walk nodes in is_safe
12 years ago
6384502e47
sanitize untrusted HTML output
...
rather than checking is_safe
12 years ago
3d0957c7bc
trust latex
...
If mathjax is insecure, we have big problems.
And we already trust mathjax in markdown cells,
so this is consistent.
12 years ago
4b01948200
check trust of data-attributes in sanitization
12 years ago
367b4f85c2
wrap caja.sanitizeAttribs to trust data-* attributes
12 years ago
c298670a4b
use html-sanitizer instead of html-css
...
always scrub css (for now)
12 years ago
eec5d427a4
add cmp_tree, in case caja log can't be trusted
...
(spoiler: it can't)
12 years ago
0da66543a0
move security js test
12 years ago
890c0be1dd
always sanitize markdown
...
don't check if it's safe or not
12 years ago
2a0451fdde
use google-caja for sanitization
12 years ago
07cdb1e195
Adding first round of security tests of is_safe.
12 years ago
3b262912a1
Display safe HTML+SVG even if untrusted, but don't set trusted=1.
12 years ago
31c9e08fa8
Don't render insecure Markdown and show warning.
12 years ago
fa3f998295
Adding security.js with 1st attempt at is_safe.
12 years ago
6f4263dc74
Removing conditionals that are not needed.
12 years ago
6c8cccf9e3
fix test suite
...
is_hidden expects the file to actually exist, so I've rearranged the
logic such that is_hidden is called only after it's clear that the file
exists.
12 years ago
e374ca5ebb
Refactoring Notebook.command_mode.
12 years ago
9c5f9e3a35
Merge pull request #5265 from ellisonbg/timeout-error
...
Missing class def for TimeoutError
12 years ago
c6ddfbd0bf
Merge pull request #5267 from minrk/normalize-paths
...
normalize unicode in notebook API tests
12 years ago
b1c87debde
Adding comment about this fix.
12 years ago
052955a84a
normalize unicode in notebook API tests
...
was failing comparison on OS X
12 years ago
dd55efc45d
Missing class def for TimeoutError.
12 years ago
92967c0baf
Addressing things in completer.js.
12 years ago
af7dd15181
Removing old keyboard handling from IPython.utils.
12 years ago
929f5bc8ea
Fixing references to IPython.keycodes.
12 years ago
c76ab1d836
Adding basic tests for keyboard.js
12 years ago
ec6ea72873
Adding utility functions.
12 years ago
ff1492f8c9
Creating new base/js/keyboard.js
12 years ago
d6f2dfefea
log refusal to serve hidden files dirs
12 years ago
ede116bee7
Get cell after first conditional
12 years ago
479bc6b37a
Check down too.
12 years ago
bebe51c158
Don't allow edit mode up arrow to continue past index == 0
12 years ago
1ce7d5ec80
tour: put the right arrow on the right side
12 years ago
8c5b32c987
Merge pull request #5223 from minrk/tiny-images
...
use on-load event to trigger resizable images
12 years ago
fa6bbe66f3
Merge pull request #5153 from takluyver/dashboard-sorting
...
Dashboard sorting
closes #5151
closes #5152
12 years ago
6d0d34d7ed
entering edit mode now requires focus_cell
12 years ago
a01c112b0f
allow custom headers on all pages
12 years ago
bdbf2fe9d5
more robust forward and back tour transitions
12 years ago
ccf6128962
addressing Fernando's feedback
12 years ago
431c4dfeb6
correct instructions for updating components
12 years ago
95bd36be10
don't automatically advance the tour
12 years ago
9d1595aebb
more refinement of the tour contents
12 years ago
405017875e
tidy up and add to the tour
...
@takluyver found some typos which I fixed now
12 years ago
d11d9b4830
tidying up the tour explanation of modes
12 years ago
3a43d776c2
End tour via 'x' in upper right corner of window
12 years ago
1ee52fcbbc
pause/play buttons for starting/stopping the tour
12 years ago
5725bf80f5
use minified tour
12 years ago
600facc92d
allow tour restarting
12 years ago
abe4732aa0
fix typo in tour.js
12 years ago
5fead3cdd7
starting the tour from the menu works now
...
JavaScript makes me fond of this phrase:
When there's nothing left to burn, you have to set yourself on fire.
12 years ago
d7b569390f
more work on the tour
12 years ago
a765132684
add the tour to the page
12 years ago
52766703b4
fix typo for the location of bower.json
12 years ago
3cf601b58e
initial bootstrap tour
...
One way to get it to play currently is with a cell like this:
%%javascript
$.getScript('/static/notebook/js/tour.js')
provided that you have Bootstrap Tour installed in the components
12 years ago
15fac2c1d6
make input_area css generic to cells
...
removes otherwise-identical text_cell_input class in text cells
12 years ago
983271a36f
use on-load event to trigger resizable images
...
instead of timeout, which could get incorrect size information.
closes #5219
12 years ago
88460cd212
Merge pull request #5175 from jdfreder/html-take2
...
Audit .html() calls take #2
12 years ago
88fc1a0737
Merge pull request #5146 from jdfreder/modal-fix
...
Dual mode bug fixes.
12 years ago
39d39d0ea6
s/trigger_edit_mode/edit_mode
12 years ago
c41fe67da2
Re-added removed refresh
12 years ago
3bcee30e8c
Added comments to kbm and shrunk focus_cell lines
12 years ago
69e760841a
Move should cancel blur into codecell
12 years ago
4fdc99e111
Remove notebook load log succes
12 years ago
a6f883d7f2
Couple of whiteboard logic implementation misses
12 years ago
9451589e38
implemented whiteboard logic
12 years ago
673577cf6c
Merge pull request #5207 from Zaharid/childfireevent
...
Children fire event
12 years ago
8c1c18461c
Fix a couple of static analysis warnings
12 years ago
3698563794
Make hidden directories configurable
12 years ago
c75d4e9962
Don't attempt locale-aware sorting for now.
...
On Python 2, locale.strxfrm() can't handle unicode.
12 years ago
4fe9f8d057
Case insensitive sorting in the dashboard.
...
Closes gh-5151
12 years ago
c1e8ddc64e
Hide directories beginning with _ from the dashboard.
...
Closes gh-5152
12 years ago
f8ab13b675
Merge pull request #5215 from ivanov/running-kernels
...
Dashboard "Running" Tab
12 years ago
938f4bdfc4
small whitespace cleanup, renamed drag_info
...
in the dashboard, I've renamed drag_info to notebook_list_info, so
applying style to notebook_list_info and running_list_info can be done
in one place.
12 years ago
eb4e674598
remove redundant checks in code
12 years ago
14239c01e4
use explicit running header name + jquery's toggle
12 years ago
40ac479ae1
Merge pull request #5203 from minrk/test-log-warn
...
capture some logging/warning output in some tests
12 years ago
0884716a7d
Re-added widget textbox blur fix FF
12 years ago
bfc51c2a29
Final touches?
12 years ago
c5fb037e41
Reorg index and focus_editor params on edit_mode func
12 years ago
048ca30b0c
Remove fixes that are implemented correct in new CM
12 years ago
e847a31348
Always refresh the CM editor upon TextCell unrender.
12 years ago
b976804051
Moved edit_mode canceling logic back into cell.
12 years ago
ff37fb7a36
Standardized comments and removed last logs
12 years ago
64ae25508d
Removed change that is no longer needed
12 years ago
70086d352f
s/unfocus/blur
12 years ago
c7860d8bc8
Post in person review
...
Removed logic for reverse ordered events
Removed almost all of the log statements
Removed list for should unfocus callbacks
Removed all the logic in focus_editor
Only call focus_editor if the keyboard was used to enter edit mode
12 years ago
3595c099c2
Fixed rebase problems
12 years ago
10d79a9102
Added cell unfocus event canceller API
12 years ago
a6aaa8a886
Use is_focused for element kbman removal event
12 years ago
6f7c502157
Fixed lots of bugs
...
Half overhaul of notebook focus events...
12 years ago
206d35a89e
DEBUG
...
Added lots of log calls and a couple small 'fixes' (attempts)
12 years ago
7913305312
jshint
12 years ago
0059c317c3
Merge pull request #5216 from minrk/notebook-dir-cli
...
fixup positional arg handling in notebook app
12 years ago
4038421da6
Merge pull request #5221 from jdfreder/ctuple
...
Change widget children List to Tuple.
12 years ago
bdde544d47
don't forget base_url when updating address bar in rename
12 years ago
7d1da4c550
refer to notebooks, not kernels.
12 years ago
d8b6a1a0ba
don't validate ContainerWidget.children
...
just use a plain Tuple, so we don't have to define a new Trait
12 years ago
b74b10e308
added IPython.session_list
...
before this, kernel_list and notebook_list each fetched and held onto
their own copy of the sessions.
12 years ago
6c1ef48f1a
Merge pull request #5173 from jdfreder/movewidgets
...
Moved widget files into static/widgets/*
12 years ago
cc1ba8b1f7
remove incorrect is instance check in children_changed
12 years ago
c89ec19fca
don't check shape of ContainerWidget.children
12 years ago
7855de2f13
s/CTuple/Tuple
12 years ago
dedbc3b0e1
Changed children list to CTuple.
...
Also removed some unused refences in the widget code
and added support for tuples in the pack/unpack code.
12 years ago
0117b587ab
Merge pull request #4985 from damianavila/closebrackets
...
Enable autoCloseBrackets in CodeMirror by default.
12 years ago
bb7f27541f
write config instead of direct assignment from the command-line
...
Gross.
12 years ago
6e09314027
fixup positional arg parsing in notebook app
...
- `ipnb .` triggers override of sub-config, even when the parent isn't changed
- `ipnb /path/nb.ipynb` sets notebook_dir to `/path`
12 years ago
06c689caa3
remove reiterated repetitively redundant "actively"
12 years ago
a2b9c75e93
don't double-join the notebook path
12 years ago
a27168ae3b
refresh of Notebook list should reload sessions
12 years ago
af90cd8c62
fix typo in method name
12 years ago
cb1bb62272
ok, Running tab is working now
12 years ago
c73acb300f
Merge pull request #5200 from Carreau/jinja-no-cache
...
Allow to pass option to jinja env
12 years ago
816df5bb34
Allow to pass option to jinja env
...
Mainly to pass cache_size=-1 while developping not to cache templates
12 years ago
439003d709
Children fire event
...
Now when a container widget is displayed, the _handle_displayed method
of each of its children is fired.
12 years ago
e02308e436
capture logging in a few tests
...
this could probably be made more general,
but these were the two places I noticed log output.
12 years ago
371afec677
Merge pull request #5112 from minrk/completion-band-aid
...
Band-aid for completion in the notebook: not the ideal solution, but will have to do the job for now so that typing while completing works.
closes #4860
12 years ago
708c30c912
Merge pull request #5136 from minrk/interact-default
...
set default value from signature defaults in interact
12 years ago
edb8d68331
Merge pull request #5132 from minrk/oops-pdf-transform
...
remove application/pdf->pdf transform in javascript
12 years ago
7a35e2a0be
Merge pull request #5116 from minrk/os_path
...
reorganize who knows what about paths
12 years ago
28423647a2
Updated require references to point to new files
12 years ago
e0ba52c802
Moved widget files into static/widgets/*
...
Since they do not depend on anything ntoebook related
12 years ago
612acd2e08
Merge pull request #5170 from jdfreder/widget-throttle-trait
...
Added msg_throttle sync=True widget traitlet
12 years ago
386274488d
don't create notebook_dir if it doesn't exist
12 years ago
d37780c6a6
use config instead of App.instance to propagate notebook_dir
...
Should behave more logically (I hope).
12 years ago
f9e8824fef
use NotebookManager APIs in nbconvert handler
12 years ago
cb25736a24
reorganize who knows what about paths
...
- add NotebookApp.notebook_dir
- add KernelManager.root_dir
- remove NotebookManager.notebook_dir, move to FileNBM.notebook_dir
Default value for KM.root_dir and fNBM.notebook_dir is NotebookApp.notebook_dir, but they can be configured separately.
SessionManager passes the API path to KernelManager,
which is responsible for turning it into the kernel's cwd.
12 years ago
eda4569099
Merge pull request #5037 from jdfreder/ff-widget-align
...
FF Fix: alignment and scale of text widget
12 years ago
ef3f61f906
Use set_rendered to set the error msg of the cell.
12 years ago
946212d5fa
Treat set_rendered as unsafe.
12 years ago
407fc0a017
s/with with/with
12 years ago
6a224d131b
Move todos into set_rendered
12 years ago
62f318c777
undo failed changes
...
before raising
otherwise, invalid values were still accepted
12 years ago
37cb0fbdee
remove websocket url
...
websockets should follow the kernel URL
(normal behavior is unchanged, only unused configurability is removed)
12 years ago
b51cc50357
further tests for default values in interact
...
both valid and invalid
12 years ago
acfc2d5308
set default value from dict
12 years ago
3b109de563
minimal KernelList
12 years ago
4bd315bda0
Merge pull request #5147 from minrk/static-url-version
...
Some template URL changes
12 years ago
b3c1164798
put Running tab on the page
12 years ago
db4960769b
Merge pull request #5100 from minrk/base_kernel_url
...
remove base_kernel_url
12 years ago
ad03225cf6
Audit .html() calls take #2
12 years ago
82bbcf166d
Fixed .. typo
12 years ago
0e56051a01
Added parentheses to emphasize order of op.
12 years ago
0eebd9e05b
Added msg_throttle sync=True widget traitlet
12 years ago
cecf7cf06f
Fixed radio button selector for new radio button class
12 years ago
d1d863af86
fab css
12 years ago
3b8beec541
Added a class for RadioButtons container
...
with appropriate top padding...
12 years ago
033ea6d88c
Added bottom margin to text widget
12 years ago
efc01b8854
remove append_json reference
...
we never had such a method
12 years ago
7b5c834649
fix IPython typo, closes #5155
12 years ago
69cba774d9
Some template static_url tweaks
...
- don't try to include version in static_urls that don't point to files
- use full static_urls (with extension) for backbone and underscore, so version can be computed
closes #5141
12 years ago
a7fb5e1e55
Merge pull request #5114 from minrk/empty-button
...
use non-breaking space for button with no description
12 years ago
e91ef370dd
remove no-op adding abbreviations from always-empty dict
12 years ago
8a2d92010a
set default value from signature defaults in interact
...
If available, use the default value from the signature for the initial condition,
when using range/choice abbreviations.
Not affected:
- single-value abbreviations (`@interact(a=5)` sets `a=5`)
- explicit Widgets
12 years ago
ea8896399b
remove application/pdf->pdf transform in javascript
...
We have the old transforms because they were added before we realized it was a bad idea. We should not add new ones.
12 years ago
d6986cf4ec
Merge pull request #4778 from minrk/install-nbextensions
...
add APIs for installing notebook extensions
12 years ago
1ed5b184fb
test installing nbextensions with symlink
12 years ago
8353e85e48
test check_nbextension
12 years ago
e903297a15
clarify with all in check_nbextension
12 years ago
475ac234b4
typo
12 years ago
df0743c41c
Merge pull request #5097 from minrk/logging-some-more
...
minor notebook logging changes
12 years ago
59d3a8ff5f
handle empty string in ToggleButtonsWidget
12 years ago
9c452998ea
add utils.escape_html
12 years ago
0eff2bb651
handle space-only strings, not just zero-length
12 years ago
c50096334c
use non-breaking space for button with no description
...
to preserve button's size
reverses some inappropriate replacements of .html with .text.
closes #5113
12 years ago
fd346d1790
fix remove event in KeyboardManager.register_events
...
only call enable on remove when focused.
fixes a bug where command mode could be entered inappropriately
when non-focused elements are removed from the page
(see first `@interact` example).
12 years ago
3306e386d6
Merge pull request #4925 from khinsen/notebook-manager-api
...
Notebook manager API fixes
remove various `_model` suffixes
12 years ago
a1e263785c
band-aid for completion
...
Unlike @Carreau's attempt at using proper CodeMirror completion,
this is just a band-aid to get the existing completion back to working for 2.0.
This adds a keypress handler on the completer,
which then calls insert with the charCode of the key press event,
replacing the final `elif` branch of the keydown handler.
This cannot be done with keydown,
since keydown doesn't know what character is incoming,
only the hardware key that is struck.
12 years ago
a184724bdb
remove base_kernel_url
12 years ago
e5df456949
minor notebook logging changes
...
log refer only on 4XX, and never log user agent
This function was ported from nbviewer, and some of the choices were not quite right for the notebook server.
12 years ago
24c27ce5e5
Merge pull request #5059 from jdfreder/widgets-patch-fix
...
Fix incorrect `Patch` logic in widget code
12 years ago
46c88a8875
Merge pull request #5075 from jdfreder/flex-model-2
...
More flexible box model fixes
12 years ago
fdb8ab37ae
Rearrange the NotebookManager methods for clarity
...
Methods are organized into three categories:
- Methods that must be implemented in subclasses
- Methods that have default implementations, but can
be overridden if required.
- Support methods meant to be called by methods in subclasses
12 years ago
b1c6ba2c97
Move method increment_filename from FileNotebookManager to NotebookManager
...
The implementation requires only a minor change (call notebook_exists
rather than checking for file existence) to be universally usable
in other notebook managers.
12 years ago
0a430f5840
Add method notebook_exists to NotebookManager.
...
It is called by IPython.html.notebook.NotebookHandler.get,
so it must be implemented by every notebook handler.
12 years ago
26e3e31ad8
NotebookManager API: rename *notebook_model methods to *notebook
12 years ago
1c564131c5
Fixed, set on recieve update triggering echos.
12 years ago
3d408f5241
Added a test to make sure full state was not getting sent.
12 years ago
7b2787e508
Fixed typo
12 years ago
f4f2c92285
Keep a running diff instead of forcing a full state update
12 years ago
770d2bd3a0
Only send diff message if diff isn't corrupt.
...
Diff will corrupt if more then one model.set(...) call is made
before model.save (or view.touch() in our case).
12 years ago
fbf700e5d2
Fixed typo in new test
12 years ago
a173e684c6
Added test that shows the problem.
12 years ago
5667947f9d
Revert "Let backbone get changed attrs"
...
This reverts commit 4dd4990ff146508894353e390601c659d2638ed3.
12 years ago
36b576b0bd
Let backbone get changed attrs
12 years ago
cd72883fc7
Revert "Fix incorrect usage of attrs"
...
This reverts commit 04aa0885bb143fd0409fe133ca572004ffa6dc0e.
12 years ago
0d80363240
Fix incorrect usage of attrs
12 years ago
04c38db197
fab css
12 years ago
81f37ab49f
Added align-start to widget container.
12 years ago
30e3ec1cc1
fab css
12 years ago
b7326707da
output_scroll can't be a vbox.
12 years ago
38c369c0d8
Updating JS tests README.md.
12 years ago
92da2088cd
fab css
12 years ago
59eb13d80d
Align-start widget subarea
12 years ago
MinRK
Brian E. Granger
Paul Ivanov
Thomas Kluyver
Jonathan Frederic
Matthias BUSSONNIER
Paul Ivanov
zah
Fernando Perez
Jonathan Frederic
Konrad Hinsen