From aec31458f41048fdbe32d600833184375bb3c62a Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Wed, 21 Jun 2017 10:47:25 +0100
Subject: [PATCH 01/35] Update version number for 2.4.8b

---
 ckan/__init__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ckan/__init__.py b/ckan/__init__.py
index 31137a9bcc6..a7fe7a81c97 100644
--- a/ckan/__init__.py
+++ b/ckan/__init__.py
@@ -1,4 +1,4 @@
-__version__ = '2.4.7'
+__version__ = '2.4.8b'
 
 __description__ = 'CKAN Software'
 __long_description__ = \

From c08b0c538295cd5c2f67f02297eccd91d0164f87 Mon Sep 17 00:00:00 2001
From: Yan <yan.rudenko@linkdigital.com.au>
Date: Sun, 26 Feb 2017 21:37:39 +0200
Subject: [PATCH 02/35] [#3457]Create new resource view if resource format
 changed

---
 ckan/logic/action/update.py | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/ckan/logic/action/update.py b/ckan/logic/action/update.py
index 4902530850f..d852c4caacf 100644
--- a/ckan/logic/action/update.py
+++ b/ckan/logic/action/update.py
@@ -124,6 +124,7 @@ def resource_update(context, data_dict):
     model = context['model']
     user = context['user']
     id = _get_or_bust(data_dict, "id")
+    old_resource = _get_action('resource_show')(context, {'id': id})
 
     resource = model.Resource.get(id)
     context["resource"] = resource
@@ -166,6 +167,19 @@ def resource_update(context, data_dict):
 
     resource = _get_action('resource_show')(context, {'id': id})
 
+    if old_resource['format'] != resource['format']:
+        q = model.Session.query(model.ResourceView) \
+            .filter(model.ResourceView.resource_id == resource['id'])
+        resources_view_id = q.all()
+        if resources_view_id:
+            for view_id in resources_view_id:
+                _get_action(
+                    'resource_view_delete')(context, {'id': view_id.id})
+        _get_action('package_create_default_resource_views')(
+            {'model': context['model'], 'user': context['user'],
+             'ignore_auth': True},
+            {'package': updated_pkg_dict})
+
     for plugin in plugins.PluginImplementations(plugins.IResourceController):
         plugin.after_update(context, resource)
 

From 3f0003e837940c382f63964d02e81b8c8aed125a Mon Sep 17 00:00:00 2001
From: Yan <yan.rudenko@linkdigital.com.au>
Date: Mon, 22 May 2017 15:36:23 +0300
Subject: [PATCH 03/35] Added test and modification to logic

---
 ckan/logic/action/update.py            |  7 --
 ckan/tests/logic/action/test_update.py | 96 ++++++++++++++++++++++++++
 2 files changed, 96 insertions(+), 7 deletions(-)

diff --git a/ckan/logic/action/update.py b/ckan/logic/action/update.py
index d852c4caacf..546a71af938 100644
--- a/ckan/logic/action/update.py
+++ b/ckan/logic/action/update.py
@@ -168,13 +168,6 @@ def resource_update(context, data_dict):
     resource = _get_action('resource_show')(context, {'id': id})
 
     if old_resource['format'] != resource['format']:
-        q = model.Session.query(model.ResourceView) \
-            .filter(model.ResourceView.resource_id == resource['id'])
-        resources_view_id = q.all()
-        if resources_view_id:
-            for view_id in resources_view_id:
-                _get_action(
-                    'resource_view_delete')(context, {'id': view_id.id})
         _get_action('package_create_default_resource_views')(
             {'model': context['model'], 'user': context['user'],
              'ignore_auth': True},
diff --git a/ckan/tests/logic/action/test_update.py b/ckan/tests/logic/action/test_update.py
index 0454d310946..a8fc30cbef5 100644
--- a/ckan/tests/logic/action/test_update.py
+++ b/ckan/tests/logic/action/test_update.py
@@ -723,6 +723,102 @@ def test_extra_gets_deleted_on_extra_only_update(self):
         assert_equals(res_returned['anotherfield'], 'second')
         assert 'newfield' not in res_returned
 
+    def test_resource_format_update(self):
+        dataset = factories.Dataset()
+
+        # Create resource without format
+        resource = factories.Resource(package=dataset,
+                                      url='http://localhost',
+                                      name='Test')
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=resource['id'])
+
+        assert_equals(len(res_views), 0)
+
+        # Update resource with format
+        resource = helpers.call_action(
+            'resource_update',
+            id=resource['id'],
+            format='CSV')
+
+        # Format changed
+        assert_equals(resource['format'], 'CSV')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=resource['id'])
+
+        # View for resource is created
+        assert_equals(len(res_views), 1)
+
+        second_resource = factories.Resource(
+            package=dataset,
+            url='http://localhost',
+            name='Test2',
+            format='CSV')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=second_resource['id'])
+
+        assert_equals(len(res_views), 1)
+
+        second_resource = helpers.call_action(
+            'resource_update',
+            id=second_resource['id'],
+            format='PNG')
+
+        # Format changed
+        assert_equals(second_resource['format'], 'PNG')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=second_resource['id'])
+
+        assert_equals(len(res_views), 2)
+
+        third_resource = factories.Resource(
+            package=dataset,
+            url='http://localhost',
+            name='Test2')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=third_resource['id'])
+
+        assert_equals(len(res_views), 0)
+
+        third_resource = helpers.call_action(
+            'resource_update',
+            id=third_resource['id'],
+            format='Test format')
+
+        # Format added
+        assert_equals(third_resource['format'], 'Test format')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=third_resource['id'])
+
+        # No view created, cause no such format
+        assert_equals(len(res_views), 0)
+
+        third_resource = helpers.call_action(
+            'resource_update',
+            id=third_resource['id'],
+            format='CSV')
+
+        # Format changed
+        assert_equals(third_resource['format'], 'CSV')
+
+        res_views = helpers.call_action(
+            'resource_view_list',
+            id=third_resource['id'])
+
+        # View is created
+        assert_equals(len(res_views), 1)
+
 
 class TestConfigOptionUpdate(object):
 

From b74d224ff8b5eb85a96eb3d8249be30e87cb1628 Mon Sep 17 00:00:00 2001
From: Yan <yan.rudenko@linkdigital.com.au>
Date: Mon, 22 May 2017 17:49:31 +0300
Subject: [PATCH 04/35] Added logic fix and test fix

---
 ckan/logic/action/update.py            |  9 +++++----
 ckan/tests/logic/action/test_update.py | 10 ++++++++++
 2 files changed, 15 insertions(+), 4 deletions(-)

diff --git a/ckan/logic/action/update.py b/ckan/logic/action/update.py
index 546a71af938..3e2929d0adf 100644
--- a/ckan/logic/action/update.py
+++ b/ckan/logic/action/update.py
@@ -124,10 +124,10 @@ def resource_update(context, data_dict):
     model = context['model']
     user = context['user']
     id = _get_or_bust(data_dict, "id")
-    old_resource = _get_action('resource_show')(context, {'id': id})
 
     resource = model.Resource.get(id)
     context["resource"] = resource
+    old_resource_format = resource.format
 
     if not resource:
         log.error('Could not find resource ' + id)
@@ -167,11 +167,12 @@ def resource_update(context, data_dict):
 
     resource = _get_action('resource_show')(context, {'id': id})
 
-    if old_resource['format'] != resource['format']:
-        _get_action('package_create_default_resource_views')(
+    if old_resource_format != resource['format']:
+        _get_action('resource_create_default_resource_views')(
             {'model': context['model'], 'user': context['user'],
              'ignore_auth': True},
-            {'package': updated_pkg_dict})
+            {'package': updated_pkg_dict,
+             'resource': resource})
 
     for plugin in plugins.PluginImplementations(plugins.IResourceController):
         plugin.after_update(context, resource)
diff --git a/ckan/tests/logic/action/test_update.py b/ckan/tests/logic/action/test_update.py
index a8fc30cbef5..ad1bf22617f 100644
--- a/ckan/tests/logic/action/test_update.py
+++ b/ckan/tests/logic/action/test_update.py
@@ -631,8 +631,17 @@ def setup(self):
         import ckan.model as model
         model.repo.rebuild_db()
 
+    @classmethod
+    def setup_class(cls):
+        if not p.plugin_loaded('image_view'):
+            p.load('image_view')
+        if not p.plugin_loaded('recline_view'):
+            p.load('recline_view')
+
     @classmethod
     def teardown_class(cls):
+        p.unload('image_view')
+        p.unload('recline_view')
         helpers.reset_db()
 
     def test_url_only(self):
@@ -723,6 +732,7 @@ def test_extra_gets_deleted_on_extra_only_update(self):
         assert_equals(res_returned['anotherfield'], 'second')
         assert 'newfield' not in res_returned
 
+    @helpers.change_config('ckan.views.default_views', 'image_view recline_view')
     def test_resource_format_update(self):
         dataset = factories.Dataset()
 

From 839ba128c432e8ee8afe5913da6725cda0a5ef93 Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Tue, 2 May 2017 13:09:29 +0300
Subject: [PATCH 05/35] Restrict access to `members` and `bulk_actions`

After this fix only users with permission `bulk_update_public` will
be able to visit `bulc_process` page and only those who have
`group_edit_permissions' will be able to visit `members` page
---
 ckan/controllers/group.py | 14 ++++++++++----
 ckan/logic/auth/update.py | 30 ++++++++++++++++++++++++------
 2 files changed, 34 insertions(+), 10 deletions(-)

diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index 345544d1e94..a6c0a184559 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -405,6 +405,7 @@ def bulk_process(self, id):
         data_dict = {'id': id}
 
         try:
+            self._check_access('bulk_update_public', context, data_dict)
             # Do not query for the group datasets when dictizing, as they will
             # be ignored and get requested on the controller anyway
             data_dict['include_datasets'] = False
@@ -413,7 +414,7 @@ def bulk_process(self, id):
         except NotFound:
             abort(404, _('Group not found'))
         except NotAuthorized:
-            abort(401, _('Unauthorized to read group %s') % id)
+            abort(403, _('User %r not authorized to edit %s') % (c.user, id))
 
         #use different form names so that ie7 can be detected
         form_names = set(["bulk_action.public", "bulk_action.delete",
@@ -673,16 +674,21 @@ def members(self, id):
                    'user': c.user or c.author}
 
         try:
+            data_dict = {'id': id}
+            self._check_access('group_edit_permissions', context, data_dict)
             c.members = self._action('member_list')(
                 context, {'id': id, 'object_type': 'user'}
             )
-            data_dict = {'id': id}
             data_dict['include_datasets'] = False
             c.group_dict = self._action('group_show')(context, data_dict)
-        except NotAuthorized:
-            abort(401, _('Unauthorized to delete group %s') % '')
         except NotFound:
             abort(404, _('Group not found'))
+        except NotAuthorized:
+            abort(
+                403,
+                _('User %r not authorized to edit members of %s') % (
+                    c.user, id))
+
         return self._render_template('group/members.html', group_type)
 
     def member_new(self, id):
diff --git a/ckan/logic/auth/update.py b/ckan/logic/auth/update.py
index ff527da0f92..c2f1ad37859 100644
--- a/ckan/logic/auth/update.py
+++ b/ckan/logic/auth/update.py
@@ -173,14 +173,32 @@ def group_edit_permissions(context, data_dict):
     user = context['user']
     group = logic_auth.get_group_object(context, data_dict)
 
-    authorized = authz.has_user_permission_for_group_or_org(group.id,
-                                                                user,
-                                                                'update')
+    authorized = authz.has_user_permission_for_group_or_org(
+        group.id, user, 'update')
 
     if not authorized:
-        return {'success': False,
-                'msg': _('User %s not authorized to edit permissions of group %s') %
-                        (str(user), group.id)}
+        return {
+            'success': False,
+            'msg': _('User %s not authorized to'
+                     ' edit permissions of group %s') %
+            (str(user), group.id)}
+    else:
+        return {'success': True}
+
+
+def organization_edit_permissions(context, data_dict):
+    user = context['user']
+    group = logic_auth.get_group_object(context, data_dict)
+
+    authorized = authz.has_user_permission_for_group_or_org(
+        group.id, user, 'update')
+
+    if not authorized:
+        return {
+            'success': False,
+            'msg': _('User %s not authorized to edit'
+                     ' permissions of organization %s') %
+            (str(user), group.id)}
     else:
         return {'success': True}
 

From 5b1e0e5ba09d6fc83cc9835b2bcdbeffb0a87e1c Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Tue, 2 May 2017 14:27:25 +0300
Subject: [PATCH 06/35] test fixes

---
 ckan/controllers/group.py |  4 ++--
 ckan/logic/auth/update.py | 17 -----------------
 2 files changed, 2 insertions(+), 19 deletions(-)

diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index a6c0a184559..c2c31cd0f9d 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -405,7 +405,7 @@ def bulk_process(self, id):
         data_dict = {'id': id}
 
         try:
-            self._check_access('bulk_update_public', context, data_dict)
+            self._check_access('bulk_update_public', context, {'org_id': id})
             # Do not query for the group datasets when dictizing, as they will
             # be ignored and get requested on the controller anyway
             data_dict['include_datasets'] = False
@@ -675,7 +675,7 @@ def members(self, id):
 
         try:
             data_dict = {'id': id}
-            self._check_access('group_edit_permissions', context, data_dict)
+            check_access('group_edit_permissions', context, data_dict)
             c.members = self._action('member_list')(
                 context, {'id': id, 'object_type': 'user'}
             )
diff --git a/ckan/logic/auth/update.py b/ckan/logic/auth/update.py
index c2f1ad37859..c6aff43d94a 100644
--- a/ckan/logic/auth/update.py
+++ b/ckan/logic/auth/update.py
@@ -186,23 +186,6 @@ def group_edit_permissions(context, data_dict):
         return {'success': True}
 
 
-def organization_edit_permissions(context, data_dict):
-    user = context['user']
-    group = logic_auth.get_group_object(context, data_dict)
-
-    authorized = authz.has_user_permission_for_group_or_org(
-        group.id, user, 'update')
-
-    if not authorized:
-        return {
-            'success': False,
-            'msg': _('User %s not authorized to edit'
-                     ' permissions of organization %s') %
-            (str(user), group.id)}
-    else:
-        return {'success': True}
-
-
 @logic.auth_allow_anonymous_access
 def user_update(context, data_dict):
     user = context['user']

From 109d47c1fe852085eb9bf3ba8e34d6bc6e57e3b1 Mon Sep 17 00:00:00 2001
From: Jinfei Fan <fanjinfei@hotmail.com>
Date: Wed, 7 Jun 2017 14:11:07 -0400
Subject: [PATCH 07/35] fix broken language toggle url when there is params in
 current url

---
 ckan/lib/helpers.py                            |  7 ++++++-
 ckan/templates/snippets/language_selector.html |  3 +--
 ckan/tests/controllers/test_package.py         | 10 ++++++++++
 3 files changed, 17 insertions(+), 3 deletions(-)

diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index ba6ee213798..0868edda8b1 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -116,7 +116,7 @@ def get_site_protocol_and_host():
     If `ckan.site_url` is set like this::
 
         ckan.site_url = http://example.com
-    
+
     Then this function would return a tuple `('http', 'example.com')`
     If the setting is missing, `(None, None)` is returned instead.
 
@@ -307,6 +307,11 @@ def full_current_url():
     return (url_for(request.environ['CKAN_CURRENT_URL'], qualified=True))
 
 
+def current_url():
+    ''' Returns current url unquoted'''
+    return urllib.unquote(request.environ['CKAN_CURRENT_URL'])
+
+
 def lang():
     ''' Return the language code for the current locale eg `en` '''
     return request.environ.get('CKAN_LANG')
diff --git a/ckan/templates/snippets/language_selector.html b/ckan/templates/snippets/language_selector.html
index dfe62c1686a..fa48b643ce2 100644
--- a/ckan/templates/snippets/language_selector.html
+++ b/ckan/templates/snippets/language_selector.html
@@ -1,10 +1,9 @@
-{% set current_url = request.environ.CKAN_CURRENT_URL %}
 {% set current_lang = request.environ.CKAN_LANG %}
 <form class="form-inline form-select lang-select" action="{% url_for controller='util', action='redirect' %}" data-module="select-switch" method="POST">
   <label for="field-lang-select">{{ _('Language') }}</label>
   <select id="field-lang-select" name="url" data-module="autocomplete" data-module-dropdown-class="lang-dropdown" data-module-container-class="lang-container">
     {% for locale in h.get_available_locales() %}
-      <option value="{% url_for current_url, locale=locale %}" {% if locale == current_lang %}selected="selected"{% endif %}>
+      <option value="{% url_for h.current_url(), locale=locale.short_name %}" {% if locale.identifier == current_lang %}selected="selected"{% endif %}>
         {{ locale.display_name or locale.english_name }}
       </option>
     {% endfor %}
diff --git a/ckan/tests/controllers/test_package.py b/ckan/tests/controllers/test_package.py
index 3b312bf90e0..1847c9db8e0 100644
--- a/ckan/tests/controllers/test_package.py
+++ b/ckan/tests/controllers/test_package.py
@@ -496,6 +496,16 @@ def test_search_basic(self):
 
         assert dataset1['name'] in page.body.decode('utf8')
 
+    def test_search_language_toggle(self):
+        dataset1 = factories.Dataset()
+
+        offset = url_for(controller='package', action='search', q=dataset1['name'])
+        app = self._get_test_app()
+        page = app.get(offset)
+
+        assert dataset1['name'] in page.body.decode('utf8')
+        assert ('q=' + dataset1['name']) in page.body.decode('utf8')
+
     def test_search_sort_by_blank(self):
         factories.Dataset()
 

From 549b6c9cd903438c974b39f7da887ba6600f6220 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Sat, 17 Jun 2017 12:53:46 +0200
Subject: [PATCH 08/35] [#3528] Allow underscore chars in URL slug preview

In the UI for creating a dataset, if an underscore was typed into the 'title' field, in the URL slug preview it was replaced with a hyphen, whereas in the API, the 'name' allows underscores.

Now both when creating a dataset through the UI and the API, underscores are allowed for dataset name.
---
 ckan/public/base/javascript/plugins/jquery.url-helpers.js | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/ckan/public/base/javascript/plugins/jquery.url-helpers.js b/ckan/public/base/javascript/plugins/jquery.url-helpers.js
index 6ff9e6e4c7c..f92d62923da 100644
--- a/ckan/public/base/javascript/plugins/jquery.url-helpers.js
+++ b/ckan/public/base/javascript/plugins/jquery.url-helpers.js
@@ -119,14 +119,14 @@
       '4f0 4f1 4f2 4f3 4f4 4f5 4f6 4f7 4f8 4f9 4fa 4fb 4fc 4fd 4fe 4ff ' +
       '50a 50b 50c 50d 50e 50f 51a 51b 51c 51d 53a 53b 53c 53d 53e 53f ' +
       '54a 54b 54c 54d 54e 54f 56a 56b 56c 56d 56e 56f 57a 57b 57c 57d ' +
-      '57e 57f').split(' ');
+      '57e 57f 5f').split(' ');
 
   var replacement = ('- 0 1 2 3 4 5 6 7 8 9 A B C D E F G H I P Q R S T ' +
       'U V W X Y a b c d e f g h i p q r s t u v w x y A a A a A a C c C c ' +
       'D d E e E e E e E e G g G g H h H h I i I i IJ ij J j K k k L l L l ' +
       'N n N n N n n O o OE oe R r R r R r S s T t T t T t U u U u U u W w ' +
-      'Y y Y Z b B b b b b C C c D E F f G Y h i I K k A a A a E e E e I i ' + 
-      'R r R r U u U u S s n d 8 8 Z z A a E e O o Y y l n t j db qp < ? ? ' + 
+      'Y y Y Z b B b b b b C C c D E F f G Y h i I K k A a A a E e E e I i ' +
+      'R r R r U u U u S s n d 8 8 Z z A a E e O o Y y l n t j db qp < ? ? ' +
       'B U A E e J j a a a b c e d d e e g g g Y x u h h i i w m n n N o oe ' +
       'm o r R R S f f f f t t u Z Z 3 3 ? ? 5 C O B a e i o u c d A ' +
       'E H i A B r A E Z H O I E E T r E S I I J jb A B B r D E X 3 N N P ' +
@@ -154,7 +154,7 @@
       'h H h E e E e I X x K k jt jt H h H h H h M m l A a A a AE ae E e ' +
       'e e E e X X 3 3 3 3 N n N n O o O o O o E e Y y Y y Y y H h R r bI ' +
       'bi F f X x X x H h G g T t Q q W w d r L Iu O y m o N U Y S d h l ' +
-      'lu d y w 2 n u y un').split(' ');
+      'lu d y w 2 n u y un _').split(' ');
 
   // Map the Unicode characters to their counterparts in an object.
   var map = {};

From e1a6bf1e7ec495a63fe40d8459f70c4df76022bb Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Sat, 17 Jun 2017 12:54:14 +0200
Subject: [PATCH 09/35] [#3528] Add additional test for slugify

---
 .../public/base/test/spec/plugins/jquery.url-helpers.spec.js | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.js b/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.js
index 11f820bc34c..7737cac2d21 100644
--- a/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.js
+++ b/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.js
@@ -43,5 +43,10 @@ describe('jQuery.url', function () {
       var target = jQuery.url.slugify('éåøç');
       assert.equal(target, 'eaoc');
     });
+
+    it('should allow underscore characters', function() {
+      var target = jQuery.url.slugify('apples_pears');
+      assert.equal(target, 'apples_pears');
+    });
   });
 });

From 6cde19900ac5964b27f414b9762c349f7f81ab52 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Tue, 20 Jun 2017 14:08:34 +0200
Subject: [PATCH 10/35] [#3593] Fix filter results button not working for
 organization/group

On mobile, filters are initially hidden for datasets in Datasets page, and pages for a particular Organization and Group.

When the button is clicked, a modal is shown with the filters. This works as expected for Datasets page, but not for datasets in Organization/Group pages.
---
 ckan/templates/group/read.html        | 11 ++++++++---
 ckan/templates/organization/read.html | 11 ++++++++---
 2 files changed, 16 insertions(+), 6 deletions(-)

diff --git a/ckan/templates/group/read.html b/ckan/templates/group/read.html
index 865d13839bc..5abca7e114f 100644
--- a/ckan/templates/group/read.html
+++ b/ckan/templates/group/read.html
@@ -32,7 +32,12 @@
 
 {% block secondary_content %}
   {{ super() }}
-  {% for facet in c.facet_titles %}
-    {{ h.snippet('snippets/facet_list.html', title=c.facet_titles[facet], name=facet, extras={'id':c.group_dict.id}) }}
-  {% endfor %}
+  <div class="filters">
+    <div>
+      {% for facet in c.facet_titles %}
+        {{ h.snippet('snippets/facet_list.html', title=c.facet_titles[facet], name=facet, extras={'id':c.group_dict.id}) }}
+      {% endfor %}
+    </div>
+    <a class="close no-text hide-filters"><i class="fa fa-times-circle"></i><span class="text">close</span></a>
+  </div>
 {% endblock %}
diff --git a/ckan/templates/organization/read.html b/ckan/templates/organization/read.html
index a0c08735a23..ecd1c4341a1 100644
--- a/ckan/templates/organization/read.html
+++ b/ckan/templates/organization/read.html
@@ -35,7 +35,12 @@
 {% endblock %}
 
 {% block organization_facets %}
-  {% for facet in c.facet_titles %}
-    {{ h.snippet('snippets/facet_list.html', title=c.facet_titles[facet], name=facet, extras={'id':c.group_dict.id}) }}
-  {% endfor %}
+  <div class="filters">
+    <div>
+      {% for facet in c.facet_titles %}
+        {{ h.snippet('snippets/facet_list.html', title=c.facet_titles[facet], name=facet, extras={'id':c.group_dict.id}) }}
+      {% endfor %}
+    </div>
+    <a class="close no-text hide-filters"><i class="fa fa-times-circle"></i><span class="text">close</span></a>
+  </div>
 {% endblock %}

From 50bf21ea374aecff996001483d44f891e4006e89 Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Wed, 21 Jun 2017 11:56:43 +0100
Subject: [PATCH 11/35] This version of CKAN still requires URLs in resources

---
 ckan/tests/logic/action/test_update.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ckan/tests/logic/action/test_update.py b/ckan/tests/logic/action/test_update.py
index ad1bf22617f..43530cac732 100644
--- a/ckan/tests/logic/action/test_update.py
+++ b/ckan/tests/logic/action/test_update.py
@@ -750,6 +750,7 @@ def test_resource_format_update(self):
         resource = helpers.call_action(
             'resource_update',
             id=resource['id'],
+            url='http://localhost',
             format='CSV')
 
         # Format changed
@@ -777,6 +778,7 @@ def test_resource_format_update(self):
         second_resource = helpers.call_action(
             'resource_update',
             id=second_resource['id'],
+            url='http://localhost',
             format='PNG')
 
         # Format changed
@@ -802,6 +804,7 @@ def test_resource_format_update(self):
         third_resource = helpers.call_action(
             'resource_update',
             id=third_resource['id'],
+            url='http://localhost',
             format='Test format')
 
         # Format added
@@ -817,6 +820,7 @@ def test_resource_format_update(self):
         third_resource = helpers.call_action(
             'resource_update',
             id=third_resource['id'],
+            url='http://localhost',
             format='CSV')
 
         # Format changed

From fb07b44a3c15a377e805e23c7f15c674e5ca9af4 Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Wed, 21 Jun 2017 12:58:10 +0100
Subject: [PATCH 12/35] Add new helper to allowed functions

---
 ckan/lib/helpers.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index 0868edda8b1..ca55ae3a476 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -2142,6 +2142,7 @@ def license_options(existing_license_id=None):
     'debug_inspect',
     'dict_list_reduce',
     'full_current_url',
+    'current_url',
     'popular',
     'debug_full_info_as_list',
     'get_facet_title',

From 72d00ba11e061c54d8bd9448504691c1e71c5ed3 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Sun, 18 Jun 2017 16:25:03 +0200
Subject: [PATCH 13/35] [#2501] Allow slug preview to work with autocomplete
 fields

---
 ckan/public/base/javascript/modules/slug-preview.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ckan/public/base/javascript/modules/slug-preview.js b/ckan/public/base/javascript/modules/slug-preview.js
index 63fb08d94e7..c82688cfb20 100644
--- a/ckan/public/base/javascript/modules/slug-preview.js
+++ b/ckan/public/base/javascript/modules/slug-preview.js
@@ -18,7 +18,7 @@ this.ckan.module('slug-preview-target', {
 
       // Watch for updates to the target field and update the hidden slug field
       // triggering the "change" event manually.
-      el.on('keyup.slug-preview', function (event) {
+      el.on('keyup.slug-preview input.slug-preview', function (event) {
         sandbox.publish('slug-target-changed', this.value);
         //slug.val(this.value).trigger('change');
       });

From 0aa68b7e9afb3ef68754bd4e68e71a6c584f30f3 Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Tue, 27 Jun 2017 11:22:46 +0100
Subject: [PATCH 14/35] [#3644] Fix activity test to use utcnow

---
 ckan/tests/logic/action/test_update.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ckan/tests/logic/action/test_update.py b/ckan/tests/logic/action/test_update.py
index 43530cac732..4fb83b42df8 100644
--- a/ckan/tests/logic/action/test_update.py
+++ b/ckan/tests/logic/action/test_update.py
@@ -241,7 +241,7 @@ def test_user_update_activity_stream(self):
         '''Test that the right activity is emitted when updating a user.'''
 
         user = factories.User()
-        before = datetime.datetime.now()
+        before = datetime.datetime.utcnow()
 
         # FIXME we have to pass the email address and password to user_update
         # even though we're not updating those fields, otherwise validation
@@ -258,7 +258,7 @@ def test_user_update_activity_stream(self):
         assert latest_activity['activity_type'] == 'changed user'
         assert latest_activity['object_id'] == user['id']
         assert latest_activity['user_id'] == user['id']
-        after = datetime.datetime.now()
+        after = datetime.datetime.utcnow()
         timestamp = datetime_from_string(latest_activity['timestamp'])
         assert timestamp >= before and timestamp <= after
 

From e668866c605fa336b6b42f554b42b4559db2cf32 Mon Sep 17 00:00:00 2001
From: iewil <liwei@data.gov.sg>
Date: Fri, 23 Jun 2017 18:04:04 +0800
Subject: [PATCH 15/35] Changed required permission from 'update' to
 'manage_group'

---
 ckan/logic/auth/create.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ckan/logic/auth/create.py b/ckan/logic/auth/create.py
index 581e192bc0b..4b8167e9baf 100644
--- a/ckan/logic/auth/create.py
+++ b/ckan/logic/auth/create.py
@@ -211,7 +211,7 @@ def _check_group_auth(context, data_dict):
         groups = groups - set(pkg_groups)
 
     for group in groups:
-        if not authz.has_user_permission_for_group_or_org(group.id, user, 'update'):
+        if not authz.has_user_permission_for_group_or_org(group.id, user, 'manage_group'):
             return False
 
     return True

From 781a13c589b7ea31b75ea1d61a868970bc77cb7a Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Fri, 23 Jun 2017 11:02:40 +0100
Subject: [PATCH 16/35] Catch invalid sort param exception

Providing a sort param like `sort=title xx desc` or `sort=title xx`
causes an exception due to an uncaught `ValidationError`
---
 ckan/controllers/group.py            | 26 ++++++++++++++++++--------
 ckan/tests/controllers/test_group.py | 14 ++++++++++++++
 2 files changed, 32 insertions(+), 8 deletions(-)

diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index c2c31cd0f9d..3185c78d7e3 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -170,14 +170,24 @@ def index(self):
             context['user_id'] = c.userobj.id
             context['user_is_admin'] = c.userobj.sysadmin
 
-        data_dict_global_results = {
-            'all_fields': False,
-            'q': q,
-            'sort': sort_by,
-            'type': group_type or 'group',
-        }
-        global_results = self._action('group_list')(context,
-                                                    data_dict_global_results)
+        try:
+            data_dict_global_results = {
+                'all_fields': False,
+                'q': q,
+                'sort': sort_by,
+                'type': group_type or 'group',
+            }
+            global_results = self._action('group_list')(context,
+                                                        data_dict_global_results)
+        except ValidationError as e:
+            if e.error_dict and e.error_dict.get('message'):
+                msg = e.error_dict['message']
+            else:
+                msg = str(e)
+            h.flash_error(msg)
+            c.page = h.Page([], 0)
+            return render(self._index_template(group_type),
+                          extra_vars={'group_type': group_type})
 
         data_dict_page_results = {
             'all_fields': True,
diff --git a/ckan/tests/controllers/test_group.py b/ckan/tests/controllers/test_group.py
index 3c285c539fd..102e953f39e 100644
--- a/ckan/tests/controllers/test_group.py
+++ b/ckan/tests/controllers/test_group.py
@@ -34,6 +34,20 @@ def test_page_thru_list_of_orgs(self):
         assert orgs[0]['name'] not in response2
         assert orgs[-1]['name'] in response2
 
+    def test_invalid_sort_param_does_not_crash(self):
+        app = self._get_test_app()
+        group_url = url_for(controller='group',
+                            action='index',
+                            sort='title desc nope')
+
+        app.get(url=group_url)
+
+        group_url = url_for(controller='group',
+                            action='index',
+                            sort='title nope desc nope')
+
+        app.get(url=group_url)
+
 
 def _get_group_new_page(app):
     user = factories.User()

From b90a24fd35062c6d0d49bb6d9d951f9221d56b81 Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Fri, 23 Jun 2017 11:22:35 +0100
Subject: [PATCH 17/35] pep8 fix

---
 ckan/controllers/group.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index 3185c78d7e3..a3096e06156 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -177,8 +177,8 @@ def index(self):
                 'sort': sort_by,
                 'type': group_type or 'group',
             }
-            global_results = self._action('group_list')(context,
-                                                        data_dict_global_results)
+            global_results = self._action('group_list')(
+                context, data_dict_global_results)
         except ValidationError as e:
             if e.error_dict and e.error_dict.get('message'):
                 msg = e.error_dict['message']

From cae93e72c719cf8321d0b7b8474cd9f9f696786e Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 21 Jun 2017 18:53:12 +0300
Subject: [PATCH 18/35] Choose direction of recreated relationship depending on
 its type

---
 ckan/model/package.py                         |  4 +-
 .../models/test_package_relationships.py      | 69 +++++++++++++------
 2 files changed, 52 insertions(+), 21 deletions(-)

diff --git a/ckan/model/package.py b/ckan/model/package.py
index 9bd7d695c6e..35873401b04 100644
--- a/ckan/model/package.py
+++ b/ckan/model/package.py
@@ -227,16 +227,18 @@ def add_relationship(self, type_, related_package, comment=u''):
         if type_ in package_relationship.PackageRelationship.get_forward_types():
             subject = self
             object_ = related_package
+            direction = "forward"
         elif type_ in package_relationship.PackageRelationship.get_reverse_types():
             type_ = package_relationship.PackageRelationship.reverse_to_forward_type(type_)
             assert type_
             subject = related_package
             object_ = self
+            direction = "reverse"
         else:
             raise KeyError, 'Package relationship type: %r' % type_
 
         rels = self.get_relationships(with_package=related_package,
-                                      type=type_, active=False, direction="forward")
+                                      type=type_, active=False, direction=direction)
         if rels:
             rel = rels[0]
             if comment:
diff --git a/ckan/tests/legacy/models/test_package_relationships.py b/ckan/tests/legacy/models/test_package_relationships.py
index 63ba65f2b52..3258d70649a 100644
--- a/ckan/tests/legacy/models/test_package_relationships.py
+++ b/ckan/tests/legacy/models/test_package_relationships.py
@@ -6,7 +6,7 @@ class TestCreation:
     @classmethod
     def teardown(self):
         model.repo.rebuild_db()
-        
+
     def test_normal_creation(self):
         create = CreateTestData
         create.create_arbitrary([{'name':u'the-parent', 'title':u'The Parent'},
@@ -53,7 +53,7 @@ def test_reverse_creation(self):
         assert pr.comment == u'Some comment', pr.comment
         assert pr.subject == thechild
         assert pr.object == theparent
-        
+
     def test_types(self):
         create = CreateTestData
         create.create_arbitrary([{'name':u'pkga', 'title':u'The Parent'},
@@ -71,7 +71,7 @@ def test_types(self):
         #       pkga derives_from pkgb
         #       pkgb child_of pkga
         #       pkgb depends_on pkga
-        
+
         pkga = model.Package.by_name(u'pkga')
         pkgb = model.Package.by_name(u'pkgb')
         assert len(pkga.relationships_as_subject) == 2, pkga.relationships_as_subject
@@ -128,12 +128,12 @@ def test_usage(self):
         assert pkga_subject_query.count() == 2
         for rel in pkga_subject_query:
             assert rel.subject == self.pkga
-            
+
         pkgb_object_query = model.PackageRelationship.by_object(self.pkgb)
         assert pkgb_object_query.count() == 3, pkgb_object_query.count()
         for rel in pkgb_object_query:
             assert rel.object == self.pkgb
-        
+
 class TestComplicated:
     @classmethod
     def setup_class(self):
@@ -198,24 +198,26 @@ def setup_class(self):
     def teardown_class(self):
         model.repo.rebuild_db()
 
+    def _check(self, rels, subject, type, object):
+        for rel in rels:
+            if rel.subject.name == subject and rel.type == type and rel.object.name == object:
+                return
+        assert 0, 'Could not find relationship in: %r' % rels
+
     def test_01_rels(self):
         "audit the simpsons family relationships"
         rels = model.Package.by_name(u'homer').get_relationships()
         assert len(rels) == 5, '%i: %s' % (len(rels), [rel for rel in rels])
-        def check(rels, subject, type, object):
-            for rel in rels:
-                if rel.subject.name == subject and rel.type == type and rel.object.name == object:
-                    return
-            assert 0, 'Could not find relationship in: %r' % rels
-        check(rels, 'homer', 'child_of', 'abraham')
-        check(rels, 'bart', 'child_of', 'homer')
-        check(rels, 'lisa', 'child_of', 'homer')
-        check(rels, 'homer_derived', 'derives_from', 'homer')
-        check(rels, 'homer', 'depends_on', 'beer')
+
+        self._check(rels, 'homer', 'child_of', 'abraham')
+        self._check(rels, 'bart', 'child_of', 'homer')
+        self._check(rels, 'lisa', 'child_of', 'homer')
+        self._check(rels, 'homer_derived', 'derives_from', 'homer')
+        self._check(rels, 'homer', 'depends_on', 'beer')
         rels = model.Package.by_name(u'bart').get_relationships()
         assert len(rels) == 2, len(rels)
-        check(rels, 'bart', 'child_of', 'homer')
-        check(rels, 'bart', 'child_of', 'marge')
+        self._check(rels, 'bart', 'child_of', 'homer')
+        self._check(rels, 'bart', 'child_of', 'marge')
 
     def test_02_deletion(self):
         "delete bart is child of homer"
@@ -223,12 +225,12 @@ def test_02_deletion(self):
         assert len(rels) == 2
         assert rels[0].state == model.State.ACTIVE
 
-    
+
         model.repo.new_revision()
         rels[0].delete()
         rels[1].delete()
         model.repo.commit_and_remove()
-        
+
         rels = model.Package.by_name(u'bart').get_relationships()
         assert len(rels) == 0
 
@@ -277,7 +279,34 @@ def test_04_relationship_display(self):
         bart = model.Package.by_name(u"bart")
         assert len(bart.get_relationships_printable()) == 2, len(bart.get_relationships_printable())
 
+    def test_05_revers_recreation(self):
+        homer = model.Package.by_name(u"homer")
+        homer_derived = model.Package.by_name(u"homer_derived")
+        rels = homer.get_relationships(with_package=homer_derived)
+        self._check(rels, 'homer_derived', 'derives_from', 'homer')
 
+        model.repo.new_revision()
+        rels[0].delete()
+        model.repo.commit_and_remove()
+        rels = homer.get_relationships(with_package=homer_derived)
+        assert len(homer.get_relationships(with_package=homer_derived)) == 0, \
+            'expectiong homer to have no relationships'
 
+        model.repo.new_revision()
+        homer.add_relationship(u"derives_from", homer_derived)
+        model.repo.commit_and_remove()
+        rels = homer.get_relationships(with_package=homer_derived)
+        assert len(homer.get_relationships(with_package=homer_derived)) == 1, \
+            'expectiong homer to have newly created relationship'
+        self._check(rels, 'homer', 'derives_from', 'homer_derived')
 
-
+        model.repo.new_revision()
+        rels[0].delete()
+        model.repo.commit_and_remove()
+        model.repo.new_revision()
+        homer.add_relationship(u"has_derivation", homer_derived)
+        model.repo.commit_and_remove()
+        rels = homer.get_relationships(with_package=homer_derived)
+        assert len(homer.get_relationships(with_package=homer_derived)) == 1, \
+            'expectiong homer to have recreated initial relationship'
+        self._check(rels, 'homer_derived', 'derives_from', 'homer')

From 76f1c3ad203d1068e12a2825f407b8db7a80115f Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Fri, 16 Jun 2017 21:46:59 +0200
Subject: [PATCH 19/35] [#2228] Fix render_datetime error for year before 1900

There is a bug in Python in datetime.strftime where if a passed year is before 1900 it will raise a ValueError
---
 ckan/lib/helpers.py | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index ca55ae3a476..78bc881c457 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -999,6 +999,20 @@ def render_datetime(datetime_, date_format=None, with_hours=False):
         return ''
     # if date_format was supplied we use it
     if date_format:
+
+        # See http://bugs.python.org/issue1777412
+        if datetime_.year < 1900:
+            date_format = date_format.replace('%y', str(datetime_.year)[-2:])
+            date_format = date_format.replace('%Y', str(datetime_.year))
+
+            # "2017" can be any year, since it will be replaced with the one
+            # provided in "date_format"
+            datetime_ = datetime.datetime(2017, datetime_.month, datetime_.day,
+                                          datetime_.hour, datetime_.minute,
+                                          datetime_.second)
+
+            return datetime_.strftime(date_format)
+
         return datetime_.strftime(date_format)
     # the localised date
     return formatters.localised_nice_date(datetime_, show_date=True,

From f90cdb158b8625604ebef04424c56ffe2a18a954 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Fri, 16 Jun 2017 21:47:38 +0200
Subject: [PATCH 20/35] [#2228] Add additional test for render_datetime

---
 ckan/tests/legacy/lib/test_helpers.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ckan/tests/legacy/lib/test_helpers.py b/ckan/tests/legacy/lib/test_helpers.py
index dc35fb1adea..fd1e930b841 100644
--- a/ckan/tests/legacy/lib/test_helpers.py
+++ b/ckan/tests/legacy/lib/test_helpers.py
@@ -34,6 +34,10 @@ def test_render_datetime_blank(self):
         res = h.render_datetime(None)
         assert_equal(res, '')
 
+    def test_render_datetime_year_before_1900(self):
+        res = h.render_datetime('1875-04-13T20:40:20.123456', date_format='%Y')
+        assert_equal(res, '1875')
+
     def test_datetime_to_date_str(self):
         res = datetime.datetime(2008, 4, 13, 20, 40, 20, 123456).isoformat()
         assert_equal(res, '2008-04-13T20:40:20.123456')

From ec961c45c830fba25dfc3c1a10da039f0a3380aa Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Wed, 28 Jun 2017 10:10:23 +0200
Subject: [PATCH 21/35] [#2228] Use regexp to replace year

---
 ckan/lib/helpers.py | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index 78bc881c457..bfe3ba217ea 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -1002,12 +1002,16 @@ def render_datetime(datetime_, date_format=None, with_hours=False):
 
         # See http://bugs.python.org/issue1777412
         if datetime_.year < 1900:
-            date_format = date_format.replace('%y', str(datetime_.year)[-2:])
-            date_format = date_format.replace('%Y', str(datetime_.year))
+            year = str(datetime_.year)
 
-            # "2017" can be any year, since it will be replaced with the one
-            # provided in "date_format"
-            datetime_ = datetime.datetime(2017, datetime_.month, datetime_.day,
+            date_format = re.sub('(?<!%)((%%)*)%y',
+                                 r'\g<1>{year}'.format(year=year[-2:]),
+                                 date_format)
+            date_format = re.sub('(?<!%)((%%)*)%Y',
+                                 r'\g<1>{year}'.format(year=year),
+                                 date_format)
+
+            datetime_ = datetime.datetime(2016, datetime_.month, datetime_.day,
                                           datetime_.hour, datetime_.minute,
                                           datetime_.second)
 

From f9a5fb84efb28240b8420e342fd65ba1a8730580 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Wed, 28 Jun 2017 10:10:50 +0200
Subject: [PATCH 22/35] [#2228] Add additional test for render_datetime

---
 ckan/tests/legacy/lib/test_helpers.py | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/ckan/tests/legacy/lib/test_helpers.py b/ckan/tests/legacy/lib/test_helpers.py
index fd1e930b841..953d095f1f6 100644
--- a/ckan/tests/legacy/lib/test_helpers.py
+++ b/ckan/tests/legacy/lib/test_helpers.py
@@ -38,6 +38,16 @@ def test_render_datetime_year_before_1900(self):
         res = h.render_datetime('1875-04-13T20:40:20.123456', date_format='%Y')
         assert_equal(res, '1875')
 
+        res = h.render_datetime('1875-04-13T20:40:20.123456', date_format='%y')
+        assert_equal(res, '75')
+
+    def test_render_datetime_year_before_1900_escape_percent(self):
+        res = h.render_datetime('1875-04-13', date_format='%%%y')
+        assert_equal(res, '%75')
+
+        res = h.render_datetime('1875-04-13', date_format='%%%Y')
+        assert_equal(res, '%1875')
+
     def test_datetime_to_date_str(self):
         res = datetime.datetime(2008, 4, 13, 20, 40, 20, 123456).isoformat()
         assert_equal(res, '2008-04-13T20:40:20.123456')

From 66755563c8f74335ddfc435bc861c4c3896262bb Mon Sep 17 00:00:00 2001
From: Carl Lange <carl@flax.ie>
Date: Wed, 18 May 2016 09:28:57 +0100
Subject: [PATCH 23/35] Don't a 500 when printing the validation errors.

If there's no 'resources' key, or the error is on a different resource,
just prints the base error_dict.
---
 ckan/logic/action/create.py | 6 ++++--
 ckan/logic/action/update.py | 6 ++++--
 2 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/ckan/logic/action/create.py b/ckan/logic/action/create.py
index 3e1cb635003..5f8714402c7 100644
--- a/ckan/logic/action/create.py
+++ b/ckan/logic/action/create.py
@@ -306,8 +306,10 @@ def resource_create(context, data_dict):
         _get_action('package_update')(context, pkg_dict)
         context.pop('defer_commit')
     except ValidationError, e:
-        errors = e.error_dict['resources'][-1]
-        raise ValidationError(errors)
+        try:
+            raise ValidationError(e.error_dict['resources'][-1])
+        except (KeyError, IndexError):
+            raise ValidationError(e.error_dict)
 
     ## Get out resource_id resource from model as it will not appear in
     ## package_show until after commit
diff --git a/ckan/logic/action/update.py b/ckan/logic/action/update.py
index 3e2929d0adf..5dd76f084d5 100644
--- a/ckan/logic/action/update.py
+++ b/ckan/logic/action/update.py
@@ -159,8 +159,10 @@ def resource_update(context, data_dict):
         updated_pkg_dict = _get_action('package_update')(context, pkg_dict)
         context.pop('defer_commit')
     except ValidationError, e:
-        errors = e.error_dict['resources'][n]
-        raise ValidationError(errors)
+        try:
+            raise ValidationError(e.error_dict['resources'][-1])
+        except (KeyError, IndexError):
+            raise ValidationError(e.error_dict)
 
     upload.upload(id, uploader.get_max_resource_size())
     model.repo.commit()

From 1783e7fe9ed2375a94fb696726de9498becb0cf6 Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Thu, 29 Jun 2017 19:30:20 +0300
Subject: [PATCH 24/35] Updated changelog

---
 CHANGELOG.rst | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index c97cfe438de..1881ca9ff94 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -7,6 +7,20 @@
 Changelog
 ---------
 
+v2.4.8 2017-06-29
+=================
+
+* Fix activity test to use utcnow (#3644)
+* Changed required permission from 'update' to 'manage_group' (#3631)
+* Catch invalid sort param exception (#3630)
+* Choose direction of recreated package relationship depending on its type (#3626)
+* Fix render_datetime for dates before year 1900 (#3611)
+* Fix KeyError in 'package_create' (#3027)
+* Allow slug preview to work with autocomplete fields (#2501)
+* Fix filter results button not working for organization/group (#3620)
+* Allow underscores in URL slug preview on create dataset (#3612)
+* Create new resource view if resource format changed (#3515)
+
 v2.4.7 2017-03-22
 =================
 

From a4cf4d0a272f35fe09d789c376d6ebb9127d078c Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 5 Jul 2017 11:50:11 +0300
Subject: [PATCH 25/35] Fix of incorrect output of datapusher logs

---
 CHANGELOG.rst       |  1 +
 ckan/lib/helpers.py | 11 +++++++++--
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index 1881ca9ff94..b2ab0e077eb 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -20,6 +20,7 @@ v2.4.8 2017-06-29
 * Fix filter results button not working for organization/group (#3620)
 * Allow underscores in URL slug preview on create dataset (#3612)
 * Create new resource view if resource format changed (#3515)
+* Fixed incorrect escaping in `mail_to`
 
 v2.4.7 2017-03-22
 =================
diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index bfe3ba217ea..30a0aa022bb 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -17,8 +17,7 @@
 from urllib import urlencode
 
 from paste.deploy.converters import asbool
-from webhelpers.html import escape, HTML, literal, url_escape
-from webhelpers.html.tools import mail_to
+from webhelpers.html import HTML, literal, url_escape
 from webhelpers.html.tags import *
 from lib.markdown import markdown
 from webhelpers import paginate
@@ -45,6 +44,7 @@
 from ckan.common import (
     _, ungettext, g, c, request, session, json, OrderedDict
 )
+from markupsafe import Markup, escape
 
 get_available_locales = i18n.get_available_locales
 get_locales_dict = i18n.get_locales_dict
@@ -2099,6 +2099,13 @@ def license_options(existing_license_id=None):
         for license_id in license_ids]
 
 
+def mail_to(email_address, name):
+    email = escape(email_address)
+    author = escape(name)
+    html = Markup(u'<a href=mailto:{0}>{1}</a>'.format(email, author))
+    return html
+
+
 # these are the functions that will end up in `h` template helpers
 __allowed_functions__ = [
     # functions defined in ckan.lib.helpers

From 437c7c498ad6d167187c5a4394716bea844fdb86 Mon Sep 17 00:00:00 2001
From: Aleksandar Jovanov <aleksandar.jovanov@keitaro.com>
Date: Sat, 1 Jul 2017 16:15:30 +0200
Subject: [PATCH 26/35] [#3661] Fix issue upon creating new org/group through
 UI form

---
 ckan/templates/macros/form.html | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/ckan/templates/macros/form.html b/ckan/templates/macros/form.html
index 934e1c9ba93..f434a43c1a0 100644
--- a/ckan/templates/macros/form.html
+++ b/ckan/templates/macros/form.html
@@ -118,7 +118,7 @@
 {% macro markdown(name, id='', label='', value='', placeholder='', error="", classes=[], attrs={}, is_required=false) %}
   {% set classes = (classes|list) %}
   {% do classes.append('control-full') %}
-  {% set markdown_tooltip = "<pre><p>__Bold text__ or _italic text_</p><p># title<br>## secondary title<br>### etc</p><p>* list<br>* of<br>* items</p><p>http://auto.link.ed/</p></pre><p><b><a href='http://daringfireball.net/projects/markdown/syntax' target='_blank'>Full markdown syntax</a></b></p><p class='muted'><b>Please note:</b> HTML tags are stripped out for security reasons</p>" %} 
+  {% set markdown_tooltip = "<pre><p>__Bold text__ or _italic text_</p><p># title<br>## secondary title<br>### etc</p><p>* list<br>* of<br>* items</p><p>http://auto.link.ed/</p></pre><p><b><a href='http://daringfireball.net/projects/markdown/syntax' target='_blank'>Full markdown syntax</a></b></p><p class='muted'><b>Please note:</b> HTML tags are stripped out for security reasons</p>" %}
 
   {%- set extra_html = caller() if caller -%}
   {% call input_block(id or name, label or name, error, classes, control_classes=["editor"], extra_html=extra_html, is_required=is_required) %}
@@ -406,14 +406,14 @@
 #}
 {% macro image_upload(data, errors, field_url='image_url', field_upload='image_upload', field_clear='clear_upload',
                       is_url=false, is_upload=false, is_upload_enabled=false, placeholder=false,
-                      url_label='', upload_label='')  %}
+                      url_label='', upload_label='', field_name='image_url')  %}
   {% set placeholder = placeholder if placeholder else _('http://example.com/my-image.jpg') %}
   {% set url_label = url_label or _('Image URL')  %}
   {% set upload_label = upload_label or _('Image')  %}
 
   {% if is_upload_enabled %}
   <div class="image-upload" data-module="image-upload" data-module-is_url="{{ 'true' if is_url else 'false' }}" data-module-is_upload="{{ 'true' if is_upload else 'false' }}"
-       data-module-field_url="{{ field_url }}" data-module-field_upload="{{ field_upload }}" data-module-field_clear="{{ field_clear }}" data-module-upload_label="{{ upload_label }}">
+       data-module-field_url="{{ field_url }}" data-module-field_upload="{{ field_upload }}" data-module-field_clear="{{ field_clear }}" data-module-upload_label="{{ upload_label }}" data-module-field_name="{{ field_name }}">
   {% endif %}
 
   {{ input(field_url, label=url_label, id='field-image-url', placeholder=placeholder, value=data.get(field_url), error=errors.get(field_url), classes=['control-full']) }}

From 46a87476fe6f50d02e80d138378ec4640cda285a Mon Sep 17 00:00:00 2001
From: amercader <amercadero@gmail.com>
Date: Wed, 5 Jul 2017 11:59:38 +0100
Subject: [PATCH 27/35] Update changelog

---
 CHANGELOG.rst | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index b2ab0e077eb..5da91c0ea68 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -10,6 +10,7 @@ Changelog
 v2.4.8 2017-06-29
 =================
 
+* Fix in organization / group form image URL field (#3661)
 * Fix activity test to use utcnow (#3644)
 * Changed required permission from 'update' to 'manage_group' (#3631)
 * Catch invalid sort param exception (#3630)

From 52639528b2ab7ba16670dbfb487b8e2488078687 Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 12 Jul 2017 16:04:41 +0300
Subject: [PATCH 28/35] clean Package::get from openid

---
 ckan/model/user.py | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/ckan/model/user.py b/ckan/model/user.py
index 2d2a37f4348..c75e2d6cd93 100644
--- a/ckan/model/user.py
+++ b/ckan/model/user.py
@@ -53,13 +53,8 @@ def by_email(cls, email):
 
     @classmethod
     def get(cls, user_reference):
-        # double slashes in an openid often get turned into single slashes
-        # by browsers, so correct that for the openid lookup
-        corrected_openid_user_ref = cls.DOUBLE_SLASH.sub('://\\1',
-                                                         user_reference)
         query = meta.Session.query(cls).autoflush(False)
         query = query.filter(or_(cls.name == user_reference,
-                                 cls.openid == corrected_openid_user_ref,
                                  cls.id == user_reference))
         return query.first()
 

From 675af28266492b079aad1e64912e2e93a2c25909 Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 12 Jul 2017 16:45:01 +0300
Subject: [PATCH 29/35] fixed legacy test after openid removal

---
 ckan/tests/legacy/models/test_user.py | 22 +++++++++++++---------
 1 file changed, 13 insertions(+), 9 deletions(-)

diff --git a/ckan/tests/legacy/models/test_user.py b/ckan/tests/legacy/models/test_user.py
index 63e83442f22..c95d2ceda46 100644
--- a/ckan/tests/legacy/models/test_user.py
+++ b/ckan/tests/legacy/models/test_user.py
@@ -1,5 +1,9 @@
+# encoding: utf-8
+
+from nose import SkipTest
 from nose.tools import assert_equal
 
+
 from ckan.tests.legacy import *
 import ckan.model as model
 from ckan.lib.create_test_data import CreateTestData
@@ -12,8 +16,8 @@ class TestUser:
     def setup_class(self):
         CreateTestData.create_user('brian', password='pass',
                                    fullname='Brian', email='brian@brian.com')
-        CreateTestData.create_user(openid='http://sandra.owndomain.com/',
-                                   fullname='Sandra')
+        CreateTestData.create_user('sandra', password='pass',
+                                   fullname='Sandra', email='sandra@sandra.com')
 
     @classmethod
     def teardown_class(self):
@@ -26,7 +30,7 @@ def test_0_basic(self):
         assert_equal(out.fullname, 'Brian')
         assert_equal(out.email, u'brian@brian.com')
 
-        out = model.User.by_openid(u'http://sandra.owndomain.com/')
+        out = model.User.by_name(u'sandra')
         assert_equal(out.fullname, u'Sandra')
 
     def test_1_timestamp_any_existing(self):
@@ -35,24 +39,25 @@ def test_1_timestamp_any_existing(self):
 
     def test_2_timestamp_new(self):
         user = model.User()
-        openid = u'http://xyz.com'
-        user.name = openid
+        name = u'xyz'
+        user.name = name
         model.Session.add(user)
         model.repo.commit_and_remove()
 
-        out = model.User.by_name(openid)
+        out = model.User.by_name(name)
         assert len(str(out.created)) > 5, out.created
 
     def test_3_get(self):
         out = model.User.get(u'brian')
         assert out.fullname == u'Brian'
 
-        out = model.User.get(u'http://sandra.owndomain.com/')
+        out = model.User.get(u'sandra')
         assert out.fullname == u'Sandra'
 
     def test_4_get_openid_missing_slash(self):
+        raise SkipTest(u'OpenID is not used anymore')
         # browsers seem to lose the double slash
-        out = model.User.get(u'http:/sandra.owndomain.com/')
+        out = model.User.get(u'sandra')
         assert out
         assert out.fullname == u'Sandra'
 
@@ -186,4 +191,3 @@ def test_search(self):
                  'tester' in test_names and
                  'testsysadmin' in test_names ), \
                  "Search for test should find tester and testsysadmin (only)"
-

From 9204f5b165462f38c616e4a146cd5cc45af0eb84 Mon Sep 17 00:00:00 2001
From: kmbn <github@nevermindtheumlauts.com>
Date: Thu, 20 Jul 2017 11:10:53 +0200
Subject: [PATCH 30/35] Fix dataset count display for groups

Dataset counts were not displayed at all for group items because
the template checked `packages` rather than `package_count`.
---
 ckan/templates/group/snippets/group_item.html | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/ckan/templates/group/snippets/group_item.html b/ckan/templates/group/snippets/group_item.html
index ae69eb707c7..407f631825a 100644
--- a/ckan/templates/group/snippets/group_item.html
+++ b/ckan/templates/group/snippets/group_item.html
@@ -28,9 +28,9 @@ <h3 class="media-heading">{{ group.display_name }}</h3>
     {% endif %}
   {% endblock %}
   {% block datasets %}
-    {% if group.packages %}
-      <strong class="count">{{ ungettext('{num} Dataset', '{num} Datasets', group.packages).format(num=group.packages) }}</strong>
-    {% elif group.packages == 0 %}
+    {% if group.package_count %}
+      <strong class="count">{{ ungettext('{num} Dataset', '{num} Datasets', group.package_count).format(num=group.package_count) }}</strong>
+    {% elif group.package_count == 0 %}
       <span class="count">{{ _('0 Datasets') }}</span>
     {% endif %}
   {% endblock %}

From c199268355fef821a86125d98163ea9fe27d1b91 Mon Sep 17 00:00:00 2001
From: kmbn <github@nevermindtheumlauts.com>
Date: Thu, 20 Jul 2017 10:20:34 +0200
Subject: [PATCH 31/35] Make autocomplete more responsive

---
 ckan/public/base/javascript/modules/autocomplete.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ckan/public/base/javascript/modules/autocomplete.js b/ckan/public/base/javascript/modules/autocomplete.js
index ed7c676051f..a7b292d3c07 100644
--- a/ckan/public/base/javascript/modules/autocomplete.js
+++ b/ckan/public/base/javascript/modules/autocomplete.js
@@ -24,7 +24,7 @@ this.ckan.module('autocomplete', function (jQuery, _) {
       label: false,
       items: 10,
       source: null,
-      interval: 1000,
+      interval: 300,
       dropdownClass: '',
       containerClass: '',
       i18n: {

From cda499a35f92c29f459bf7a00ff5fe110c9c3fac Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Fri, 21 Jul 2017 13:56:10 +0300
Subject: [PATCH 32/35] Updated CHANGELOG

---
 CHANGELOG.rst | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index 5da91c0ea68..46a3c4e659e 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -22,6 +22,9 @@ v2.4.8 2017-06-29
 * Allow underscores in URL slug preview on create dataset (#3612)
 * Create new resource view if resource format changed (#3515)
 * Fixed incorrect escaping in `mail_to`
+* Autocomplete fields are more responsive - 300ms timeout instead of 1s (#3693)
+* Fixed dataset count display for groups (#3711)
+* Restrict access to form pages (#3684)
 
 v2.4.7 2017-03-22
 =================

From 21cefbb732c993f731d67be27ed534a5d2d7734a Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Fri, 21 Jul 2017 14:00:05 +0300
Subject: [PATCH 33/35] Restrict access to form pages

---
 ckan/controllers/group.py   |  6 +++++-
 ckan/controllers/package.py | 17 +++++++++--------
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index a3096e06156..a043a617fe5 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -707,7 +707,11 @@ def member_new(self, id):
         context = {'model': model, 'session': model.Session,
                    'user': c.user or c.author}
 
-        #self._check_access('group_delete', context, {'id': id})
+        try:
+            self._check_access('group_member_create', context, {'id': id})
+        except NotAuthorized:
+            abort(403, _('Unauthorized to create group %s members') % '')
+
         try:
             data_dict = {'id': id}
             data_dict['include_datasets'] = False
diff --git a/ckan/controllers/package.py b/ckan/controllers/package.py
index e2f4ba23f29..bf9d459eaec 100644
--- a/ckan/controllers/package.py
+++ b/ckan/controllers/package.py
@@ -583,6 +583,15 @@ def new(self, data=None, errors=None, error_summary=None):
 
     def resource_edit(self, id, resource_id, data=None, errors=None,
                       error_summary=None):
+        context = {'model': model, 'session': model.Session,
+                   'api_version': 3, 'for_edit': True,
+                   'user': c.user, 'auth_user_obj': c.userobj}
+        data_dict = {'id': id}
+
+        try:
+            check_access('package_update', context, data_dict)
+        except NotAuthorized:
+            abort(403, _('User %r not authorized to edit %s') % (c.user, id))
 
         if request.method == 'POST' and not data:
             data = data or clean_dict(dict_fns.unflatten(tuplize_dict(parse_params(
@@ -590,10 +599,6 @@ def resource_edit(self, id, resource_id, data=None, errors=None,
             # we don't want to include save as it is part of the form
             del data['save']
 
-            context = {'model': model, 'session': model.Session,
-                       'api_version': 3, 'for_edit': True,
-                       'user': c.user or c.author, 'auth_user_obj': c.userobj}
-
             data['package_id'] = id
             try:
                 if resource_id:
@@ -610,10 +615,6 @@ def resource_edit(self, id, resource_id, data=None, errors=None,
                 abort(401, _('Unauthorized to edit this resource'))
             redirect(h.url_for(controller='package', action='resource_read',
                                id=id, resource_id=resource_id))
-
-        context = {'model': model, 'session': model.Session,
-                   'api_version': 3, 'for_edit': True,
-                   'user': c.user or c.author, 'auth_user_obj': c.userobj}
         pkg_dict = get_action('package_show')(context, {'id': id})
         if pkg_dict['state'].startswith('draft'):
             # dataset has not yet been fully created

From a3080cbab4fe67b4226fbee93785a8139ca4a42f Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 2 Aug 2017 08:46:03 +0300
Subject: [PATCH 34/35] Update version number

---
 CHANGELOG.rst    | 2 +-
 ckan/__init__.py | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index 46a3c4e659e..54c4515c370 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -7,7 +7,7 @@
 Changelog
 ---------
 
-v2.4.8 2017-06-29
+v2.4.8 2017-08-02
 =================
 
 * Fix in organization / group form image URL field (#3661)
diff --git a/ckan/__init__.py b/ckan/__init__.py
index a7fe7a81c97..b2fc98b4f90 100644
--- a/ckan/__init__.py
+++ b/ckan/__init__.py
@@ -1,4 +1,4 @@
-__version__ = '2.4.8b'
+__version__ = '2.4.8'
 
 __description__ = 'CKAN Software'
 __long_description__ = \

From d7942d58b244c453cc39054e616e0e418bb1ddc6 Mon Sep 17 00:00:00 2001
From: Sergey Motornyuk <sergey.motornyuk@linkdigital.com.au>
Date: Wed, 2 Aug 2017 08:46:47 +0300
Subject: [PATCH 35/35] Rebuild front-end

---
 ckan/public/base/javascript/modules/autocomplete.min.js         | 2 +-
 ckan/public/base/javascript/modules/slug-preview.min.js         | 2 +-
 ckan/public/base/javascript/plugins/jquery.url-helpers.min.js   | 2 +-
 .../base/test/spec/plugins/jquery.url-helpers.spec.min.js       | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/ckan/public/base/javascript/modules/autocomplete.min.js b/ckan/public/base/javascript/modules/autocomplete.min.js
index b6321b6976f..ba3d7dbc93d 100644
--- a/ckan/public/base/javascript/modules/autocomplete.min.js
+++ b/ckan/public/base/javascript/modules/autocomplete.min.js
@@ -1,4 +1,4 @@
-this.ckan.module('autocomplete',function(jQuery,_){return{options:{tags:false,key:false,label:false,items:10,source:null,interval:1000,dropdownClass:'',containerClass:'',i18n:{noMatches:_('No matches found'),emptySearch:_('Start typing…'),inputTooShort:function(data){return _('Input is too short, must be at least one character').ifPlural(data.min,'Input is too short, must be at least %(min)d characters');}}},initialize:function(){jQuery.proxyAll(this,/_on/,/format/);this.setupAutoComplete();},setupAutoComplete:function(){var settings={width:'resolve',formatResult:this.formatResult,formatNoMatches:this.formatNoMatches,formatInputTooShort:this.formatInputTooShort,dropdownCssClass:this.options.dropdownClass,containerCssClass:this.options.containerClass};if(!this.el.is('select')){if(this.options.tags){settings.tags=this._onQuery;}else{settings.query=this._onQuery;settings.createSearchChoice=this.formatTerm;}
+this.ckan.module('autocomplete',function(jQuery,_){return{options:{tags:false,key:false,label:false,items:10,source:null,interval:300,dropdownClass:'',containerClass:'',i18n:{noMatches:_('No matches found'),emptySearch:_('Start typing…'),inputTooShort:function(data){return _('Input is too short, must be at least one character').ifPlural(data.min,'Input is too short, must be at least %(min)d characters');}}},initialize:function(){jQuery.proxyAll(this,/_on/,/format/);this.setupAutoComplete();},setupAutoComplete:function(){var settings={width:'resolve',formatResult:this.formatResult,formatNoMatches:this.formatNoMatches,formatInputTooShort:this.formatInputTooShort,dropdownCssClass:this.options.dropdownClass,containerCssClass:this.options.containerClass};if(!this.el.is('select')){if(this.options.tags){settings.tags=this._onQuery;}else{settings.query=this._onQuery;settings.createSearchChoice=this.formatTerm;}
 settings.initSelection=this.formatInitialValue;}
 else{if(/MSIE (\d+\.\d+);/.test(navigator.userAgent)){var ieversion=new Number(RegExp.$1);if(ieversion<=7){return}}}
 var select2=this.el.select2(settings).data('select2');if(this.options.tags&&select2&&select2.search){select2.search.on('keydown',this._onKeydown);}
diff --git a/ckan/public/base/javascript/modules/slug-preview.min.js b/ckan/public/base/javascript/modules/slug-preview.min.js
index c9bb6f77f47..f7bb91ccd3a 100644
--- a/ckan/public/base/javascript/modules/slug-preview.min.js
+++ b/ckan/public/base/javascript/modules/slug-preview.min.js
@@ -1,3 +1,3 @@
-this.ckan.module('slug-preview-target',{initialize:function(){var sandbox=this.sandbox;var options=this.options;var el=this.el;sandbox.subscribe('slug-preview-created',function(preview){el.after(preview);});if(el.val()==''){sandbox.subscribe('slug-preview-modified',function(){el.off('.slug-preview');});el.on('keyup.slug-preview',function(event){sandbox.publish('slug-target-changed',this.value);});}}});this.ckan.module('slug-preview-slug',function(jQuery,_){return{options:{prefix:'',placeholder:'<slug>',i18n:{url:_('URL'),edit:_('Edit')}},initialize:function(){var sandbox=this.sandbox;var options=this.options;var el=this.el;var _=sandbox.translate;var slug=el.slug();var parent=slug.parents('.control-group');var preview;if(!(parent.length)){return;}
+this.ckan.module('slug-preview-target',{initialize:function(){var sandbox=this.sandbox;var options=this.options;var el=this.el;sandbox.subscribe('slug-preview-created',function(preview){el.after(preview);});if(el.val()==''){sandbox.subscribe('slug-preview-modified',function(){el.off('.slug-preview');});el.on('keyup.slug-preview input.slug-preview',function(event){sandbox.publish('slug-target-changed',this.value);});}}});this.ckan.module('slug-preview-slug',function(jQuery,_){return{options:{prefix:'',placeholder:'<slug>',i18n:{url:_('URL'),edit:_('Edit')}},initialize:function(){var sandbox=this.sandbox;var options=this.options;var el=this.el;var _=sandbox.translate;var slug=el.slug();var parent=slug.parents('.control-group');var preview;if(!(parent.length)){return;}
 if(!parent.hasClass('error')){preview=parent.slugPreview({prefix:options.prefix,placeholder:options.placeholder,i18n:{'URL':this.i18n('url'),'Edit':this.i18n('edit')}});slug.keypress(function(){if(event.charCode){sandbox.publish('slug-preview-modified',preview[0]);}});sandbox.publish('slug-preview-created',preview[0]);if(jQuery('html').hasClass('ie7')){jQuery('.btn').on('click',preview,function(){jQuery('.controls').ie7redraw();});preview.hide();setTimeout(function(){preview.show();jQuery('.controls').ie7redraw();},10);}}
 sandbox.subscribe('slug-target-changed',function(value){slug.val(value).trigger('change');});}};});
\ No newline at end of file
diff --git a/ckan/public/base/javascript/plugins/jquery.url-helpers.min.js b/ckan/public/base/javascript/plugins/jquery.url-helpers.min.js
index bb194ff1d71..904a62a40ef 100644
--- a/ckan/public/base/javascript/plugins/jquery.url-helpers.min.js
+++ b/ckan/public/base/javascript/plugins/jquery.url-helpers.min.js
@@ -1,3 +1,3 @@
 (function($,window){$.url={escape:function(string){return window.encodeURIComponent(string||'').replace(/%20/g,'+');},slugify:function(string,trim){var str='';var index=0;var length=string.length;var map=this.map;for(;index<length;index+=1){str+=map[string.charCodeAt(index).toString(16)]||'-';}
-str=str.toLowerCase();return trim===false?str:str.replace(/\-+/g,'-').replace(/^-|-$/g,'');}};var unicode=('20 30 31 32 33 34 35 36 37 38 39 41 42 43 44 45 46 '+'47 48 49 50 51 52 53 54 55 56 57 58 59 61 62 63 64 65 66 67 68 69 70 '+'71 72 73 74 75 76 77 78 79 100 101 102 103 104 105 106 107 108 109 '+'110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 '+'126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 '+'142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 '+'158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 '+'174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 '+'190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 '+'206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 '+'222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 '+'238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 '+'254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 '+'270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 '+'286 287 288 289 290 291 292 293 294 295 296 297 298 299 363 364 '+'365 366 367 368 369 386 388 389 390 391 392 393 394 395 396 397 '+'398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 '+'414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 '+'430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 '+'446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 '+'462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 '+'478 479 480 481 490 491 492 493 494 495 496 497 498 499 500 501 '+'502 503 504 505 506 507 508 509 510 511 512 513 514 515 531 532 '+'533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 '+'549 550 551 552 553 554 555 556 561 562 563 564 565 566 567 568 '+'569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 '+'585 586 587 4a 4b 4c 4d 4e 4f 5a 6a 6b 6c 6d 6e 6f 7a a2 a3 a5 a7 '+'a9 aa ae b2 b3 b5 b6 b9 c0 c1 c2 c3 c4 c5 c6 c7 c8 c9 ca cb cc cd '+'ce cf d0 d1 d2 d3 d4 d5 d6 d7 d8 d9 da db dc dd de df e0 e1 e2 e3 '+'e4 e5 e6 e7 e8 e9 ea eb ec ed ee ef f0 f1 f2 f3 f4 f5 f6 f8 f9 fa '+'fb fc fd ff 10a 10b 10c 10d 10e 10f 11a 11b 11c 11d 11e 11f 12a '+'12b 12c 12d 12e 12f 13a 13b 13c 13d 13e 13f 14a 14b 14c 14d 14e '+'14f 15a 15b 15c 15d 15e 15f 16a 16b 16c 16d 16e 16f 17a 17b 17c '+'17d 17e 17f 18a 18b 18c 18d 18e 18f 19a 19b 19c 19d 19e 19f 1a0 '+'1a1 1a2 1a3 1a4 1a5 1a6 1a7 1a8 1a9 1aa 1ab 1ac 1ad 1ae 1af 1b0 '+'1b1 1b2 1b3 1b4 1b5 1b6 1b7 1b8 1b9 1ba 1bb 1bc 1bd 1be 1bf 1c4 '+'1c5 1c6 1c7 1c8 1c9 1ca 1cb 1cc 1cd 1ce 1cf 1d0 1d1 1d2 1d3 1d4 '+'1d5 1d6 1d7 1d8 1d9 1da 1db 1dc 1dd 1de 1df 1e0 1e1 1e2 1e3 1e4 '+'1e5 1e6 1e7 1e8 1e9 1ea 1eb 1ec 1ed 1ee 1ef 1f0 1f1 1f2 1f3 1f4 '+'1f5 1f6 1f7 1f8 1f9 1fa 1fb 1fc 1fd 1fe 1ff 20a 20b 20c 20d 20e '+'20f 21a 21b 21c 21d 21e 21f 22a 22b 22c 22d 22e 22f 23a 23b 23c '+'23d 23e 23f 24a 24b 24c 24d 24e 24f 25a 25b 25c 25d 25e 25f 26a '+'26b 26c 26d 26e 26f 27a 27b 27c 27d 27e 27f 28a 28b 28c 28d 28e '+'28f 29a 29b 29c 29d 29e 29f 2a0 2a1 2a2 2a3 2a4 2a5 2a6 2a7 2a8 '+'2a9 2aa 2ab 2ac 2ae 2af 2b0 2b1 2b2 2b3 2b4 2b5 2b6 2b7 2b8 2df '+'2e0 2e1 2e2 2e3 2e4 36a 36b 36c 36d 36e 36f 37b 37c 37d 38a 38c '+'38e 38f 39a 39b 39c 39d 39e 39f 3a0 3a1 3a3 3a4 3a5 3a6 3a7 3a8 '+'3a9 3aa 3ab 3ac 3ad 3ae 3af 3b0 3b1 3b2 3b3 3b4 3b5 3b6 3b7 3b8 '+'3b9 3ba 3bb 3bc 3bd 3be 3bf 3c0 3c1 3c2 3c3 3c4 3c5 3c6 3c7 3c8 '+'3c9 3ca 3cb 3cc 3cd 3ce 3d0 3d1 3d2 3d3 3d4 3d5 3d6 3d7 3d8 3d9 '+'3da 3db 3dc 3dd 3de 3df 3e2 3e3 3e4 3e5 3e6 3e7 3e8 3e9 3ea 3eb '+'3ec 3ed 3ee 3ef 3f0 3f1 3f2 3f3 3f4 3f5 3f6 3f7 3f8 3f9 3fa 3fb '+'3fc 3fd 3fe 3ff 40a 40b 40c 40d 40e 40f 41a 41b 41c 41d 41e 41f '+'42a 42b 42c 42d 42e 42f 43a 43b 43c 43d 43e 43f 44a 44b 44c 44d '+'44e 44f 45a 45b 45c 45d 45e 45f 46a 46b 46c 46d 46e 46f 47a 47b '+'47c 47d 47e 47f 48a 48b 48c 48d 48e 48f 49a 49b 49c 49d 49e 49f '+'4a0 4a1 4a2 4a3 4a4 4a5 4a6 4a7 4a8 4a9 4aa 4ab 4ac 4ad 4ae 4af '+'4b0 4b1 4b2 4b3 4b4 4b5 4b6 4b7 4b8 4b9 4ba 4bb 4bc 4bd 4be 4bf '+'4c0 4c1 4c2 4c3 4c4 4c5 4c6 4c7 4c8 4c9 4ca 4cb 4cc 4cd 4ce 4cf '+'4d0 4d1 4d2 4d3 4d4 4d5 4d6 4d7 4d8 4d9 4da 4db 4dc 4dd 4de 4df '+'4e0 4e1 4e2 4e3 4e4 4e5 4e6 4e7 4e8 4e9 4ea 4eb 4ec 4ed 4ee 4ef '+'4f0 4f1 4f2 4f3 4f4 4f5 4f6 4f7 4f8 4f9 4fa 4fb 4fc 4fd 4fe 4ff '+'50a 50b 50c 50d 50e 50f 51a 51b 51c 51d 53a 53b 53c 53d 53e 53f '+'54a 54b 54c 54d 54e 54f 56a 56b 56c 56d 56e 56f 57a 57b 57c 57d '+'57e 57f').split(' ');var replacement=('- 0 1 2 3 4 5 6 7 8 9 A B C D E F G H I P Q R S T '+'U V W X Y a b c d e f g h i p q r s t u v w x y A a A a A a C c C c '+'D d E e E e E e E e G g G g H h H h I i I i IJ ij J j K k k L l L l '+'N n N n N n n O o OE oe R r R r R r S s T t T t T t U u U u U u W w '+'Y y Y Z b B b b b b C C c D E F f G Y h i I K k A a A a E e E e I i '+'R r R r U u U u S s n d 8 8 Z z A a E e O o Y y l n t j db qp < ? ? '+'B U A E e J j a a a b c e d d e e g g g Y x u h h i i w m n n N o oe '+'m o r R R S f f f f t t u Z Z 3 3 ? ? 5 C O B a e i o u c d A '+'E H i A B r A E Z H O I E E T r E S I I J jb A B B r D E X 3 N N P '+'C T y O X U h W W a 6 B r d e x 3 N N P C T Y qp x U h W W e e h r '+'e s i i j jb W w Tb tb IC ic A a IA ia Y y O o V v V v Oy oy C c R '+'r F f H h X x 3 3 d d d d R R R R JT JT E e JT jt JX JX U D Q N T '+'2 F r p z 2 n x U B j t n C R 8 R O P O S w f q n t q t n p h a n '+'a u j u 2 n 2 n g l uh p o S u J K L M N O Z j k l m n o z c f Y s '+'c a r 2 3 u p 1 A A A A A A AE C E E E E I I I I D N O O O O O X O '+'U U U U Y p b a a a a a a ae c e e e e i i i i o n o o o o o o u u '+'u u y y C c C c D d E e G g G g I i I i I i l L l L l L n n O o O '+'o S s S s S s U u U u U u z Z z Z z f D d d q E e l h w N n O O o '+'P P P p R S s E l t T t T U u U U Y y Z z 3 3 3 3 2 5 5 5 p DZ Dz '+'dz Lj Lj lj NJ Nj nj A a I i O o U u U u U u U u U u e A a A a AE '+'ae G g G g K k Q q Q q 3 3 J dz dZ DZ g G h p N n A a AE ae O o I '+'i O o O o T t 3 3 H h O o O o O o A C c L T s Q q R r Y y e 3 3 3 '+'3 j i I I I h w R r R R r r u v A M Y Y B G H j K L q ? c dz d3 dz '+'ts tf tc fn ls lz ww u u h h j r r r R W Y x Y 1 s x c h m r t v x '+'c c c I O Y O K A M N E O TT P E T Y O X Y O I Y a e n i v a b y d '+'e c n 0 1 k j u v c o tt p s o t u q X Y w i u o u w b e Y Y Y O w '+'x Q q C c F f N N W w q q h e S s X x 6 6 t t x e c j O E E p p C '+'M M p C C C Hb Th K N Y U K jI M H O TT b bI b E IO R K JI M H O N '+'b bI b e io r Hb h k n y u mY my Im Im 3 3 O o W w W W H H B b P p '+'K k K k K k K k H h H h Ih ih O o C c T t Y y Y y X x TI ti H h H '+'h H h E e E e I X x K k jt jt H h H h H h M m l A a A a AE ae E e '+'e e E e X X 3 3 3 3 N n N n O o O o O o E e Y y Y y Y y H h R r bI '+'bi F f X x X x H h G g T t Q q W w d r L Iu O y m o N U Y S d h l '+'lu d y w 2 n u y un').split(' ');var map={};for(var index=0,length=unicode.length;index<length;index+=1){map[unicode[index]]=replacement[index];}
+str=str.toLowerCase();return trim===false?str:str.replace(/\-+/g,'-').replace(/^-|-$/g,'');}};var unicode=('20 30 31 32 33 34 35 36 37 38 39 41 42 43 44 45 46 '+'47 48 49 50 51 52 53 54 55 56 57 58 59 61 62 63 64 65 66 67 68 69 70 '+'71 72 73 74 75 76 77 78 79 100 101 102 103 104 105 106 107 108 109 '+'110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 '+'126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 '+'142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 '+'158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 '+'174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 '+'190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 '+'206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 '+'222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 '+'238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 '+'254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 '+'270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 '+'286 287 288 289 290 291 292 293 294 295 296 297 298 299 363 364 '+'365 366 367 368 369 386 388 389 390 391 392 393 394 395 396 397 '+'398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 '+'414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 '+'430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 '+'446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 '+'462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 '+'478 479 480 481 490 491 492 493 494 495 496 497 498 499 500 501 '+'502 503 504 505 506 507 508 509 510 511 512 513 514 515 531 532 '+'533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 '+'549 550 551 552 553 554 555 556 561 562 563 564 565 566 567 568 '+'569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 '+'585 586 587 4a 4b 4c 4d 4e 4f 5a 6a 6b 6c 6d 6e 6f 7a a2 a3 a5 a7 '+'a9 aa ae b2 b3 b5 b6 b9 c0 c1 c2 c3 c4 c5 c6 c7 c8 c9 ca cb cc cd '+'ce cf d0 d1 d2 d3 d4 d5 d6 d7 d8 d9 da db dc dd de df e0 e1 e2 e3 '+'e4 e5 e6 e7 e8 e9 ea eb ec ed ee ef f0 f1 f2 f3 f4 f5 f6 f8 f9 fa '+'fb fc fd ff 10a 10b 10c 10d 10e 10f 11a 11b 11c 11d 11e 11f 12a '+'12b 12c 12d 12e 12f 13a 13b 13c 13d 13e 13f 14a 14b 14c 14d 14e '+'14f 15a 15b 15c 15d 15e 15f 16a 16b 16c 16d 16e 16f 17a 17b 17c '+'17d 17e 17f 18a 18b 18c 18d 18e 18f 19a 19b 19c 19d 19e 19f 1a0 '+'1a1 1a2 1a3 1a4 1a5 1a6 1a7 1a8 1a9 1aa 1ab 1ac 1ad 1ae 1af 1b0 '+'1b1 1b2 1b3 1b4 1b5 1b6 1b7 1b8 1b9 1ba 1bb 1bc 1bd 1be 1bf 1c4 '+'1c5 1c6 1c7 1c8 1c9 1ca 1cb 1cc 1cd 1ce 1cf 1d0 1d1 1d2 1d3 1d4 '+'1d5 1d6 1d7 1d8 1d9 1da 1db 1dc 1dd 1de 1df 1e0 1e1 1e2 1e3 1e4 '+'1e5 1e6 1e7 1e8 1e9 1ea 1eb 1ec 1ed 1ee 1ef 1f0 1f1 1f2 1f3 1f4 '+'1f5 1f6 1f7 1f8 1f9 1fa 1fb 1fc 1fd 1fe 1ff 20a 20b 20c 20d 20e '+'20f 21a 21b 21c 21d 21e 21f 22a 22b 22c 22d 22e 22f 23a 23b 23c '+'23d 23e 23f 24a 24b 24c 24d 24e 24f 25a 25b 25c 25d 25e 25f 26a '+'26b 26c 26d 26e 26f 27a 27b 27c 27d 27e 27f 28a 28b 28c 28d 28e '+'28f 29a 29b 29c 29d 29e 29f 2a0 2a1 2a2 2a3 2a4 2a5 2a6 2a7 2a8 '+'2a9 2aa 2ab 2ac 2ae 2af 2b0 2b1 2b2 2b3 2b4 2b5 2b6 2b7 2b8 2df '+'2e0 2e1 2e2 2e3 2e4 36a 36b 36c 36d 36e 36f 37b 37c 37d 38a 38c '+'38e 38f 39a 39b 39c 39d 39e 39f 3a0 3a1 3a3 3a4 3a5 3a6 3a7 3a8 '+'3a9 3aa 3ab 3ac 3ad 3ae 3af 3b0 3b1 3b2 3b3 3b4 3b5 3b6 3b7 3b8 '+'3b9 3ba 3bb 3bc 3bd 3be 3bf 3c0 3c1 3c2 3c3 3c4 3c5 3c6 3c7 3c8 '+'3c9 3ca 3cb 3cc 3cd 3ce 3d0 3d1 3d2 3d3 3d4 3d5 3d6 3d7 3d8 3d9 '+'3da 3db 3dc 3dd 3de 3df 3e2 3e3 3e4 3e5 3e6 3e7 3e8 3e9 3ea 3eb '+'3ec 3ed 3ee 3ef 3f0 3f1 3f2 3f3 3f4 3f5 3f6 3f7 3f8 3f9 3fa 3fb '+'3fc 3fd 3fe 3ff 40a 40b 40c 40d 40e 40f 41a 41b 41c 41d 41e 41f '+'42a 42b 42c 42d 42e 42f 43a 43b 43c 43d 43e 43f 44a 44b 44c 44d '+'44e 44f 45a 45b 45c 45d 45e 45f 46a 46b 46c 46d 46e 46f 47a 47b '+'47c 47d 47e 47f 48a 48b 48c 48d 48e 48f 49a 49b 49c 49d 49e 49f '+'4a0 4a1 4a2 4a3 4a4 4a5 4a6 4a7 4a8 4a9 4aa 4ab 4ac 4ad 4ae 4af '+'4b0 4b1 4b2 4b3 4b4 4b5 4b6 4b7 4b8 4b9 4ba 4bb 4bc 4bd 4be 4bf '+'4c0 4c1 4c2 4c3 4c4 4c5 4c6 4c7 4c8 4c9 4ca 4cb 4cc 4cd 4ce 4cf '+'4d0 4d1 4d2 4d3 4d4 4d5 4d6 4d7 4d8 4d9 4da 4db 4dc 4dd 4de 4df '+'4e0 4e1 4e2 4e3 4e4 4e5 4e6 4e7 4e8 4e9 4ea 4eb 4ec 4ed 4ee 4ef '+'4f0 4f1 4f2 4f3 4f4 4f5 4f6 4f7 4f8 4f9 4fa 4fb 4fc 4fd 4fe 4ff '+'50a 50b 50c 50d 50e 50f 51a 51b 51c 51d 53a 53b 53c 53d 53e 53f '+'54a 54b 54c 54d 54e 54f 56a 56b 56c 56d 56e 56f 57a 57b 57c 57d '+'57e 57f 5f').split(' ');var replacement=('- 0 1 2 3 4 5 6 7 8 9 A B C D E F G H I P Q R S T '+'U V W X Y a b c d e f g h i p q r s t u v w x y A a A a A a C c C c '+'D d E e E e E e E e G g G g H h H h I i I i IJ ij J j K k k L l L l '+'N n N n N n n O o OE oe R r R r R r S s T t T t T t U u U u U u W w '+'Y y Y Z b B b b b b C C c D E F f G Y h i I K k A a A a E e E e I i '+'R r R r U u U u S s n d 8 8 Z z A a E e O o Y y l n t j db qp < ? ? '+'B U A E e J j a a a b c e d d e e g g g Y x u h h i i w m n n N o oe '+'m o r R R S f f f f t t u Z Z 3 3 ? ? 5 C O B a e i o u c d A '+'E H i A B r A E Z H O I E E T r E S I I J jb A B B r D E X 3 N N P '+'C T y O X U h W W a 6 B r d e x 3 N N P C T Y qp x U h W W e e h r '+'e s i i j jb W w Tb tb IC ic A a IA ia Y y O o V v V v Oy oy C c R '+'r F f H h X x 3 3 d d d d R R R R JT JT E e JT jt JX JX U D Q N T '+'2 F r p z 2 n x U B j t n C R 8 R O P O S w f q n t q t n p h a n '+'a u j u 2 n 2 n g l uh p o S u J K L M N O Z j k l m n o z c f Y s '+'c a r 2 3 u p 1 A A A A A A AE C E E E E I I I I D N O O O O O X O '+'U U U U Y p b a a a a a a ae c e e e e i i i i o n o o o o o o u u '+'u u y y C c C c D d E e G g G g I i I i I i l L l L l L n n O o O '+'o S s S s S s U u U u U u z Z z Z z f D d d q E e l h w N n O O o '+'P P P p R S s E l t T t T U u U U Y y Z z 3 3 3 3 2 5 5 5 p DZ Dz '+'dz Lj Lj lj NJ Nj nj A a I i O o U u U u U u U u U u e A a A a AE '+'ae G g G g K k Q q Q q 3 3 J dz dZ DZ g G h p N n A a AE ae O o I '+'i O o O o T t 3 3 H h O o O o O o A C c L T s Q q R r Y y e 3 3 3 '+'3 j i I I I h w R r R R r r u v A M Y Y B G H j K L q ? c dz d3 dz '+'ts tf tc fn ls lz ww u u h h j r r r R W Y x Y 1 s x c h m r t v x '+'c c c I O Y O K A M N E O TT P E T Y O X Y O I Y a e n i v a b y d '+'e c n 0 1 k j u v c o tt p s o t u q X Y w i u o u w b e Y Y Y O w '+'x Q q C c F f N N W w q q h e S s X x 6 6 t t x e c j O E E p p C '+'M M p C C C Hb Th K N Y U K jI M H O TT b bI b E IO R K JI M H O N '+'b bI b e io r Hb h k n y u mY my Im Im 3 3 O o W w W W H H B b P p '+'K k K k K k K k H h H h Ih ih O o C c T t Y y Y y X x TI ti H h H '+'h H h E e E e I X x K k jt jt H h H h H h M m l A a A a AE ae E e '+'e e E e X X 3 3 3 3 N n N n O o O o O o E e Y y Y y Y y H h R r bI '+'bi F f X x X x H h G g T t Q q W w d r L Iu O y m o N U Y S d h l '+'lu d y w 2 n u y un _').split(' ');var map={};for(var index=0,length=unicode.length;index<length;index+=1){map[unicode[index]]=replacement[index];}
 $.url.map=map;})(this.jQuery,this);
\ No newline at end of file
diff --git a/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.min.js b/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.min.js
index 892cb4b869d..a800dfe32e4 100644
--- a/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.min.js
+++ b/ckan/public/base/test/spec/plugins/jquery.url-helpers.spec.min.js
@@ -1 +1 @@
-describe('jQuery.url',function(){describe('.escape()',function(){it('should escape special characters',function(){var target=jQuery.url.escape('&<>=?#/');assert.equal(target,'%26%3C%3E%3D%3F%23%2F');});it('should convert spaces to + rather than %20',function(){var target=jQuery.url.escape(' ');assert.equal(target,'+');});});describe('.slugify()',function(){it('should replace spaces with hyphens',function(){var target=jQuery.url.slugify('apples and pears');assert.equal(target,'apples-and-pears');});it('should lowecase all characters',function(){var target=jQuery.url.slugify('APPLES AND PEARS');assert.equal(target,'apples-and-pears');});it('should convert unknown characters to hyphens',function(){var target=jQuery.url.slugify('apples & pears');assert.equal(target,'apples-pears');});it('should nomalise hyphens',function(){var target=jQuery.url.slugify('apples---pears');assert.equal(target,'apples-pears','remove duplicate hyphens');target=jQuery.url.slugify('--apples-pears');assert.equal(target,'apples-pears','strip preceding hyphens');target=jQuery.url.slugify('apples-pears--');assert.equal(target,'apples-pears','strip trailing hyphens');});it('should try and asciify unicode characters',function(){var target=jQuery.url.slugify('éåøç');assert.equal(target,'eaoc');});});});
\ No newline at end of file
+describe('jQuery.url',function(){describe('.escape()',function(){it('should escape special characters',function(){var target=jQuery.url.escape('&<>=?#/');assert.equal(target,'%26%3C%3E%3D%3F%23%2F');});it('should convert spaces to + rather than %20',function(){var target=jQuery.url.escape(' ');assert.equal(target,'+');});});describe('.slugify()',function(){it('should replace spaces with hyphens',function(){var target=jQuery.url.slugify('apples and pears');assert.equal(target,'apples-and-pears');});it('should lowecase all characters',function(){var target=jQuery.url.slugify('APPLES AND PEARS');assert.equal(target,'apples-and-pears');});it('should convert unknown characters to hyphens',function(){var target=jQuery.url.slugify('apples & pears');assert.equal(target,'apples-pears');});it('should nomalise hyphens',function(){var target=jQuery.url.slugify('apples---pears');assert.equal(target,'apples-pears','remove duplicate hyphens');target=jQuery.url.slugify('--apples-pears');assert.equal(target,'apples-pears','strip preceding hyphens');target=jQuery.url.slugify('apples-pears--');assert.equal(target,'apples-pears','strip trailing hyphens');});it('should try and asciify unicode characters',function(){var target=jQuery.url.slugify('éåøç');assert.equal(target,'eaoc');});it('should allow underscore characters',function(){var target=jQuery.url.slugify('apples_pears');assert.equal(target,'apples_pears');});});});
\ No newline at end of file