diff --git a/ckan/config/deployment.ini_tmpl b/ckan/config/deployment.ini_tmpl
index f9d25c4eed9..0cad20aaac2 100644
--- a/ckan/config/deployment.ini_tmpl
+++ b/ckan/config/deployment.ini_tmpl
@@ -111,6 +111,11 @@ ckan.site_url =
 ## Favicon (default is the CKAN software favicon)
 ckan.favicon = /images/icons/ckan.ico
 
+## The gravatar default to use.  This can be any of the pre-defined strings
+## as defined on http://en.gravatar.com/site/implement/images/ (e.g. "identicon"
+## or "mm").  Or it can be a url, e.g. "http://example.com/images/avatar.jpg"
+ckan.gravatar_default = identicon
+
 ## Solr support
 #solr_url = http://127.0.0.1:8983/solr
 
diff --git a/ckan/controllers/group.py b/ckan/controllers/group.py
index bcf064c2d40..b7f8efe2413 100644
--- a/ckan/controllers/group.py
+++ b/ckan/controllers/group.py
@@ -18,7 +18,6 @@
 
 log = logging.getLogger(__name__)
 
-
 class GroupController(BaseController):
 
     ## hooks for subclasses
@@ -244,28 +243,14 @@ def edit(self, id, data=None, errors=None, error_summary=None):
 
     def _get_group_type(self, id):
         """
-        Given the id of a group it determines the plugin to load
-        based on the group's type name (type). The plugin found
-        will be returned, or None if there is no plugin associated with
-        the type.
-
-        Uses a minimal context to do so.  The main use of this method
-        is for figuring out which plugin to delegate to.
-
-        aborts if an exception is raised.
+        Given the id of a group it determines the type of a group given
+        a valid id/name for the group.
         """
-        global _controller_behaviour_for
-
-        context = {'model': model, 'session': model.Session,
-                   'user': c.user or c.author}
-        try:
-            data = get_action('group_show')(context, {'id': id})
-        except NotFound:
-            abort(404, _('Group not found'))
-        except NotAuthorized:
-            abort(401, _('Unauthorized to read group %s') % id)
-        return data['type']
+        group = model.Group.get( id )
+        if not group:
+            return None
 
+        return group.type
 
     def _save_new(self, context, group_type=None):
         try:
diff --git a/ckan/controllers/package.py b/ckan/controllers/package.py
index 9504f765d90..dd9e7f358ef 100644
--- a/ckan/controllers/package.py
+++ b/ckan/controllers/package.py
@@ -325,6 +325,7 @@ def new(self, data=None, errors=None, error_summary=None):
         errors = errors or {}
         error_summary = error_summary or {}
         vars = {'data': data, 'errors': errors, 'error_summary': error_summary}
+        c.errors_json = json.dumps(errors)
 
         self._setup_template_variables(context, {'id': id})
 
@@ -370,6 +371,7 @@ def edit(self, id, data=None, errors=None, error_summary=None):
 
         errors = errors or {}
         vars = {'data': data, 'errors': errors, 'error_summary': error_summary}
+        c.errors_json = json.dumps(errors)
 
         self._setup_template_variables(context, {'id': id}, package_type=package_type)
 
@@ -450,8 +452,6 @@ def _get_package_type(self, id):
 
         aborts if an exception is raised.
         """
-        global _controller_behaviour_for
-
         context = {'model': model, 'session': model.Session,
                    'user': c.user or c.author}
         try:
diff --git a/ckan/controllers/user.py b/ckan/controllers/user.py
index b7f74533e7b..f446c21c790 100644
--- a/ckan/controllers/user.py
+++ b/ckan/controllers/user.py
@@ -11,7 +11,7 @@
 from ckan.logic import NotFound, NotAuthorized, ValidationError
 from ckan.logic import check_access, get_action
 from ckan.logic import tuplize_dict, clean_dict, parse_params
-from ckan.logic.schema import user_new_form_schema, user_edit_form_schema 
+from ckan.logic.schema import user_new_form_schema, user_edit_form_schema
 from ckan.logic.action.get import user_activity_list_html
 from ckan.lib.captcha import check_recaptcha, CaptchaError
 
@@ -28,7 +28,7 @@ def __before__(self, action, **env):
             if c.action not in ('login','request_reset','perform_reset',):
                 abort(401, _('Not authorized to see this page'))
 
-    ## hooks for subclasses 
+    ## hooks for subclasses
     new_user_form = 'user/new_user_form.html'
     edit_user_form = 'user/edit_user_form.html'
 
@@ -207,10 +207,10 @@ def edit(self, id=None, data=None, errors=None, error_summary=None):
             abort(404, _('User not found'))
 
         user_obj = context.get('user_obj')
-        
+
         if not (ckan.authz.Authorizer().is_sysadmin(unicode(c.user)) or c.user == user_obj.name):
             abort(401, _('User %s not authorized to edit %s') % (str(c.user), id))
-        
+
         errors = errors or {}
         vars = {'data': data, 'errors': errors, 'error_summary': error_summary}
 
@@ -255,7 +255,7 @@ def login(self):
             return render('user/login.html')
         else:
             return render('user/logout_first.html')
-    
+
     def logged_in(self):
         if c.user:
             context = {'model': model,
@@ -277,14 +277,14 @@ def logged_in(self):
             h.flash_error('Login failed. Bad username or password.' + \
                           ' (Or if using OpenID, it hasn\'t been associated with a user account.)')
             h.redirect_to(controller='user', action='login')
-          
+
     def logged_out(self):
         c.user = None
         response.delete_cookie("ckan_user")
         response.delete_cookie("ckan_display_name")
         response.delete_cookie("ckan_apikey")
         return render('user/logout.html')
-    
+
     def request_reset(self):
         if request.method == 'POST':
             id = request.params.get('user')
@@ -346,7 +346,7 @@ def perform_reset(self, id):
 
         if request.method == 'POST':
             try:
-                context['reset_password'] = True 
+                context['reset_password'] = True
                 new_password = self._get_form_password()
                 user_dict['password'] = new_password
                 user_dict['reset_key'] = c.reset_key
@@ -374,7 +374,7 @@ def _format_about(self, about):
             log.error('Could not print "about" field Field: %r Error: %r', about, e)
             html = _('Error: Could not parse About text')
         return html
-    
+
     def _get_form_password(self):
         password1 = request.params.getone('password1')
         password2 = request.params.getone('password2')
@@ -384,4 +384,4 @@ def _get_form_password(self):
             elif not password1 == password2:
                 raise ValueError(_("The passwords you entered do not match."))
             return password1
-        
+
diff --git a/ckan/lib/alphabet_paginate.py b/ckan/lib/alphabet_paginate.py
index f30f5f9c78d..0afa88f3ff1 100644
--- a/ckan/lib/alphabet_paginate.py
+++ b/ckan/lib/alphabet_paginate.py
@@ -45,11 +45,14 @@ def __init__(self, collection, alpha_attribute, page, other_text, paging_thresho
         self.controller_name = controller_name
         self.available = dict( (c,0,) for c in "ABCDEFGHIJKLMNOPQRSTUVWXYZ" )
         for c in self.collection:
-            x = c[0] if isinstance( c, unicode ) else getattr(c, self.alpha_attribute)[0]
+            if isinstance(c, unicode):
+                x = c[0]
+            elif isinstance(c, dict):
+                x = c[self.alpha_attribute][0]
+            else:
+                x = getattr(c, self.alpha_attribute)[0]
             self.available[x] = self.available.get(x, 0) + 1
 
-
-
     def pager(self, q=None):
         '''Returns pager html - for navigating between the pages.
            e.g. Something like this:
diff --git a/ckan/lib/authenticator.py b/ckan/lib/authenticator.py
index 8eea54ae347..b56711a3427 100644
--- a/ckan/lib/authenticator.py
+++ b/ckan/lib/authenticator.py
@@ -5,7 +5,7 @@
 
 class OpenIDAuthenticator(object):
     implements(IAuthenticator)
-    
+
     def authenticate(self, environ, identity):
         if 'repoze.who.plugins.openid.userid' in identity:
             openid = identity.get('repoze.who.plugins.openid.userid')
@@ -15,16 +15,16 @@ def authenticate(self, environ, identity):
             else:
                 return user.name
         return None
-    
+
 
 class UsernamePasswordAuthenticator(object):
     implements(IAuthenticator)
-    
+
     def authenticate(self, environ, identity):
         if not 'login' in identity or not 'password' in identity:
             return None
         user = User.by_name(identity.get('login'))
-        if user is None: 
+        if user is None:
             return None
         if user.validate_password(identity.get('password')):
             return user.name
diff --git a/ckan/lib/create_test_data.py b/ckan/lib/create_test_data.py
index b90fbc3bd3e..be6cb04f446 100644
--- a/ckan/lib/create_test_data.py
+++ b/ckan/lib/create_test_data.py
@@ -22,7 +22,7 @@ class CreateTestData(cli.CkanCommand):
     tag_names = []
     group_names = set()
     user_refs = []
-    
+
     pkg_core_fields = ['name', 'title', 'version', 'url', 'notes',
                        'author', 'author_email',
                        'maintainer', 'maintainer_email',
@@ -89,7 +89,7 @@ def create_test_user(cls):
 
     @classmethod
     def create_arbitrary(cls, package_dicts, relationships=[],
-            extra_user_names=[], extra_group_names=[], 
+            extra_user_names=[], extra_group_names=[],
             admins=[]):
         '''Creates packages and a few extra objects as well at the
         same time if required.
@@ -101,7 +101,7 @@ def create_arbitrary(cls, package_dicts, relationships=[],
         @param extra_group_names - a list of group names to create. No
                                properties get set though.
         @param admins - a list of user names to make admins of all the
-                               packages created.                           
+                               packages created.
         '''
         assert isinstance(relationships, (list, tuple))
         assert isinstance(extra_user_names, (list, tuple))
@@ -111,11 +111,11 @@ def create_arbitrary(cls, package_dicts, relationships=[],
         new_user_names = extra_user_names
         new_group_names = set()
         new_groups = {}
-        
-        rev = model.repo.new_revision() 
+
+        rev = model.repo.new_revision()
         rev.author = cls.author
         rev.message = u'Creating test packages.'
-        
+
         admins_list = defaultdict(list) # package_name: admin_names
         if package_dicts:
             if isinstance(package_dicts, dict):
@@ -131,7 +131,7 @@ def create_arbitrary(cls, package_dicts, relationships=[],
                     if isinstance(val, str):
                         val = unicode(val)
                     if attr=='name':
-                        continue                
+                        continue
                     if attr in cls.pkg_core_fields:
                         pass
                     elif attr == 'download_url':
@@ -160,7 +160,7 @@ def create_arbitrary(cls, package_dicts, relationships=[],
                             if not tag:
                                 tag = model.Tag(name=tag_name)
                                 cls.tag_names.append(tag_name)
-                                model.Session.add(tag)    
+                                model.Session.add(tag)
                             pkg.add_tag(tag)
                             model.Session.flush()
                     elif attr == 'groups':
@@ -208,8 +208,8 @@ def create_arbitrary(cls, package_dicts, relationships=[],
             model.repo.commit_and_remove()
 
         needs_commit = False
-        
-        rev = model.repo.new_revision() 
+
+        rev = model.repo.new_revision()
         for group_name in extra_group_names:
             group = model.Group(name=unicode(group_name))
             model.Session.add(group)
@@ -258,7 +258,7 @@ def create_arbitrary(cls, package_dicts, relationships=[],
             needs_commit = False
 
         if relationships:
-            rev = model.repo.new_revision() 
+            rev = model.repo.new_revision()
             rev.author = cls.author
             rev.message = u'Creating package relationships.'
 
@@ -270,7 +270,7 @@ def pkg(pkg_name):
                 needs_commit = True
 
             model.repo.commit_and_remove()
-        
+
 
     @classmethod
     def create_groups(cls, group_dicts, admin_user_name=None, auth_profile=""):
@@ -324,7 +324,7 @@ def create(cls, auth_profile="", package_type=None):
 
         cls.pkg_names = [u'annakarenina', u'warandpeace']
         pkg1 = model.Package(name=cls.pkg_names[0], type=package_type)
-        if auth_profile == "publisher":        
+        if auth_profile == "publisher":
             pkg1.group = publisher_group
         model.Session.add(pkg1)
         pkg1.title = u'A Novel By Tolstoy'
@@ -368,7 +368,7 @@ def create(cls, auth_profile="", package_type=None):
 u with umlaut \xfc
 66-style quote \u201c
 foreign word: th\xfcmb
- 
+
 Needs escaping:
 left arrow <
 
@@ -379,7 +379,7 @@ def create(cls, auth_profile="", package_type=None):
         tag1 = model.Tag(name=u'russian')
         tag2 = model.Tag(name=u'tolstoy')
 
-        if auth_profile == "publisher":        
+        if auth_profile == "publisher":
             pkg2.group = publisher_group
 
         # Flexible tag, allows spaces, upper-case,
@@ -407,12 +407,12 @@ def create(cls, auth_profile="", package_type=None):
                              type=auth_profile or 'group')
         for obj in [david, roger]:
             model.Session.add(obj)
-        
+
         cls.group_names.add(u'david')
         cls.group_names.add(u'roger')
 
         model.Session.flush()
-        
+
         model.Session.add(model.Member(table_id=pkg1.id, table_name='package', group=david))
         model.Session.add(model.Member(table_id=pkg2.id, table_name='package', group=david))
         model.Session.add(model.Member(table_id=pkg1.id, table_name='package', group=roger))
@@ -447,7 +447,7 @@ def create(cls, auth_profile="", package_type=None):
 
         # Create a couple of authorization groups
         for ag_name in [u'anauthzgroup', u'anotherauthzgroup']:
-            ag=model.AuthorizationGroup.by_name(ag_name) 
+            ag=model.AuthorizationGroup.by_name(ag_name)
             if not ag: #may already exist, if not create
                 ag=model.AuthorizationGroup(name=ag_name)
                 model.Session.add(ag)
@@ -559,7 +559,7 @@ def get_all_data(cls):
               'groups':'ukgov test1 test2 penguin',
               'license':'odc-by',
               'notes':u'''From <http://www.gpoaccess.gov/gils/about.html>
-              
+
 > The Government Information Locator Service (GILS) is an effort to identify, locate, and describe publicly available Federal
 > Because this collection is decentralized, the GPO
 
@@ -604,7 +604,7 @@ def get_all_data(cls):
              {'name':'uk-government-expenditure',
               'title':'UK Government Expenditure',
               'tags':'workshop-20081101,uk,gov,expenditure,finance,public,funding,penguin'.split(','),
-              'groups':'ukgov penguin',              
+              'groups':'ukgov penguin',
               'notes':'''Discussed at [Workshop on Public Information, 2008-11-02](http://okfn.org/wiki/PublicInformation).
 
 Overview is available in Red Book, or Financial Statement and Budget Report (FSBR), [published by the Treasury](http://www.hm-treasury.gov.uk/budget.htm).''',
@@ -613,7 +613,7 @@ def get_all_data(cls):
              {'name':'se-publications',
               'title':'Sweden - Government Offices of Sweden - Publications',
               'url':'http://www.sweden.gov.se/sb/d/574',
-              'groups':'penguin',              
+              'groups':'penguin',
               'tags':u'country-sweden,format-pdf,access-www,documents,publications,government,eutransparency,penguin,CAPITALS,surprise.,greek omega \u03a9,japanese katakana \u30a1'.split(','),
               'license':'',
               'notes':'''### About
@@ -627,7 +627,7 @@ def get_all_data(cls):
               },
              {'name':'se-opengov',
               'title':'Opengov.se',
-              'groups':'penguin',              
+              'groups':'penguin',
               'url':'http://www.opengov.se/',
               'download_url':'http://www.opengov.se/data/open/',
               'tags':'country-sweden,government,data,penguin'.split(','),
diff --git a/ckan/lib/dictization/__init__.py b/ckan/lib/dictization/__init__.py
index 66d4abf6dec..42f748b07d6 100644
--- a/ckan/lib/dictization/__init__.py
+++ b/ckan/lib/dictization/__init__.py
@@ -3,7 +3,7 @@
 import sqlalchemy
 from pylons import config
 
-# NOTE   
+# NOTE
 # The functions in this file contain very generic methods for dictizing objects
 # and saving dictized objects. If a specialised use is needed please do NOT extend
 # these functions.  Copy code from here as needed.
@@ -68,7 +68,7 @@ def obj_list_dictize(obj_list, context, sort_key=lambda x:x):
     return sorted(result_list, key=sort_key)
 
 def obj_dict_dictize(obj_dict, context, sort_key=lambda x:x):
-    '''Get a dict whose values are model objects 
+    '''Get a dict whose values are model objects
     and represent it as a list of dicts'''
 
     result_list = []
@@ -93,7 +93,7 @@ def get_unique_constraints(table, context):
 
 def table_dict_save(table_dict, ModelClass, context):
     '''Given a dict and a model class, update or create a sqlalchemy object.
-    This will use an existing object if "id" is supplied OR if any unique 
+    This will use an existing object if "id" is supplied OR if any unique
     constraints are met. e.g supplying just a tag name will get out that tag obj.
     '''
 
@@ -107,7 +107,7 @@ def table_dict_save(table_dict, ModelClass, context):
     unique_constriants = get_unique_constraints(table, context)
 
     id = table_dict.get("id")
-    
+
     if id:
         obj = session.query(ModelClass).get(id)
 
diff --git a/ckan/lib/dictization/model_dictize.py b/ckan/lib/dictization/model_dictize.py
index ee3d268250c..39e36b27ed1 100644
--- a/ckan/lib/dictization/model_dictize.py
+++ b/ckan/lib/dictization/model_dictize.py
@@ -12,7 +12,7 @@
 
 ## package save
 
-def group_list_dictize(obj_list, context, 
+def group_list_dictize(obj_list, context,
                        sort_key=lambda x:x['display_name'], reverse=False):
 
     active = context.get('active', True)
@@ -93,10 +93,10 @@ def _execute_with_revision(q, rev_table, context):
     But you can provide revision_id, revision_date or pending in the
     context and it will filter to an earlier time or the latest unmoderated
     object revision.
-    
+
     Raises NotFound if context['revision_id'] is provided, but the revision
     ID does not exist.
-    
+
     Returns [] if there are no results.
 
     '''
@@ -113,7 +113,7 @@ def _execute_with_revision(q, rev_table, context):
         if not revision:
             raise NotFound
         revision_date = revision.timestamp
-    
+
     if revision_date:
         q = q.where(rev_table.c.revision_timestamp <= revision_date)
         q = q.where(rev_table.c.expired_timestamp > revision_date)
@@ -133,7 +133,7 @@ def package_dictize(pkg, context):
     but you can provide revision_id, revision_date or pending in the
     context and it will filter to an earlier time or the latest unmoderated
     object revision.
-    
+
     May raise NotFound. TODO: understand what the specific set of
     circumstances are that cause this.
     '''
@@ -148,7 +148,7 @@ def package_dictize(pkg, context):
     #resources
     res_rev = model.resource_revision_table
     resource_group = model.resource_group_table
-    q = select([res_rev], from_obj = res_rev.join(resource_group, 
+    q = select([res_rev], from_obj = res_rev.join(resource_group,
                resource_group.c.id == res_rev.c.resource_group_id))
     q = q.where(resource_group.c.package_id == pkg.id)
     result = _execute_with_revision(q, res_rev, context)
@@ -156,7 +156,7 @@ def package_dictize(pkg, context):
     #tags
     tag_rev = model.package_tag_revision_table
     tag = model.tag_table
-    q = select([tag, tag_rev.c.state, tag_rev.c.revision_timestamp], 
+    q = select([tag, tag_rev.c.state, tag_rev.c.revision_timestamp],
         from_obj=tag_rev.join(tag, tag.c.id == tag_rev.c.tag_id)
         ).where(tag_rev.c.package_id == pkg.id)
     result = _execute_with_revision(q, tag_rev, context)
@@ -171,7 +171,8 @@ def package_dictize(pkg, context):
     group = model.group_table
     q = select([group],
                from_obj=member_rev.join(group, group.c.id == member_rev.c.group_id)
-               ).where(member_rev.c.table_id == pkg.id)
+               ).where(member_rev.c.table_id == pkg.id)\
+                .where(member_rev.c.state == 'active')
     result = _execute_with_revision(q, member_rev, context)
     result_dict["groups"] = obj_list_dictize(result, context)
     #relations
@@ -182,7 +183,7 @@ def package_dictize(pkg, context):
     q = select([rel_rev]).where(rel_rev.c.object_package_id == pkg.id)
     result = _execute_with_revision(q, rel_rev, context)
     result_dict["relationships_as_object"] = obj_list_dictize(result, context)
-    
+
     # Extra properties from the domain object
     # We need an actual Package object for this, not a PackageRevision
     if isinstance(pkg,PackageRevision):
@@ -279,9 +280,10 @@ def tag_dictize(tag, context):
 
     result_dict = table_dictize(tag, context)
     result_dict["packages"] = obj_list_dictize(tag.packages, context)
+
     return result_dict
 
-def user_list_dictize(obj_list, context, 
+def user_list_dictize(obj_list, context,
                       sort_key=lambda x:x['name'], reverse=False):
 
     result_list = []
@@ -302,13 +304,13 @@ def user_dictize(user, context):
         result_dict = table_dictize(user, context)
 
     del result_dict['password']
-    
+
     result_dict['display_name'] = user.display_name
     result_dict['email_hash'] = user.email_hash
     result_dict['number_of_edits'] = user.number_of_edits()
     result_dict['number_administered_packages'] = user.number_administered_packages()
 
-    return result_dict 
+    return result_dict
 
 def task_status_dictize(task_status, context):
     return table_dictize(task_status, context)
@@ -316,23 +318,23 @@ def task_status_dictize(task_status, context):
 ## conversion to api
 
 def group_to_api1(group, context):
-    
+
     dictized = group_dictize(group, context)
-    dictized["extras"] = dict((extra["key"], json.loads(extra["value"])) 
+    dictized["extras"] = dict((extra["key"], json.loads(extra["value"]))
                               for extra in dictized["extras"])
     dictized["packages"] = sorted([package["name"] for package in dictized["packages"]])
     return dictized
 
 def group_to_api2(group, context):
-    
+
     dictized = group_dictize(group, context)
-    dictized["extras"] = dict((extra["key"], json.loads(extra["value"])) 
+    dictized["extras"] = dict((extra["key"], json.loads(extra["value"]))
                               for extra in dictized["extras"])
     dictized["packages"] = sorted([package["id"] for package in dictized["packages"]])
     return dictized
 
 def tag_to_api1(tag, context):
-    
+
     dictized = tag_dictize(tag, context)
     return sorted([package["name"] for package in dictized["packages"]])
 
diff --git a/ckan/lib/dictization/model_save.py b/ckan/lib/dictization/model_save.py
index f4ee8a0c9e1..77d20ad2b10 100644
--- a/ckan/lib/dictization/model_save.py
+++ b/ckan/lib/dictization/model_save.py
@@ -8,7 +8,7 @@ def resource_dict_save(res_dict, context):
     model = context["model"]
     session = context["session"]
     trigger_url_change = False
-    
+
     id = res_dict.get("id")
     obj = None
     if id:
@@ -21,7 +21,7 @@ def resource_dict_save(res_dict, context):
 
     table = class_mapper(model.Resource).mapped_table
     fields = [field.name for field in table.c]
-    
+
     for key, value in res_dict.iteritems():
         if isinstance(value, list):
             continue
@@ -68,7 +68,7 @@ def package_resource_list_save(res_dicts, package, context):
         else:
             resource.state = 'deleted'
         resource_list.append(resource)
-    tag_package_tag = dict((package_tag.tag, package_tag) 
+    tag_package_tag = dict((package_tag.tag, package_tag)
                             for package_tag in
                             package.package_tag_all)
 
@@ -89,7 +89,7 @@ def package_extras_save(extra_dicts, obj, context):
     for extra_dict in extra_dicts:
         if extra_dict.get("deleted"):
             continue
-        
+
         if extra_dict['value'] is None:
             pass
         elif extras_as_string:
@@ -146,10 +146,10 @@ def package_tag_list_save(tag_dicts, package, context):
     session = context["session"]
     pending = context.get('pending')
 
-    tag_package_tag = dict((package_tag.tag, package_tag) 
+    tag_package_tag = dict((package_tag.tag, package_tag)
                             for package_tag in
                             package.package_tag_all)
-    
+
     tag_package_tag_inactive = dict(
         [ (tag,pt) for tag,pt in tag_package_tag.items() if
             pt.state in ['deleted', 'pending-deleted'] ]
@@ -199,7 +199,7 @@ def package_membership_list_save(group_dicts, package, context):
 
     members = session.query(model.Member).filter_by(table_id = package.id)
 
-    group_member = dict((member.group, member) 
+    group_member = dict((member.group, member)
                          for member in
                          members)
     groups = set()
@@ -233,7 +233,7 @@ def package_membership_list_save(group_dicts, package, context):
         member_obj.state = 'active'
         session.add(member_obj)
 
-    
+
 def relationship_list_save(relationship_dicts, package, attr, context):
 
     allow_partial_update = context.get("allow_partial_update", False)
@@ -248,7 +248,7 @@ def relationship_list_save(relationship_dicts, package, attr, context):
 
     relationships = []
     for relationship_dict in relationship_dicts:
-        obj = table_dict_save(relationship_dict, 
+        obj = table_dict_save(relationship_dict,
                               model.PackageRelationship, context)
         relationships.append(obj)
 
@@ -263,7 +263,7 @@ def relationship_list_save(relationship_dicts, package, attr, context):
 
 def package_dict_save(pkg_dict, context):
     import uuid
-    
+
     model = context["model"]
     package = context.get("package")
     allow_partial_update = context.get("allow_partial_update", False)
@@ -319,13 +319,21 @@ def group_member_save(context, group_dict, member_table_name):
         group_id=group.id,
     ).all()
 
-    entity_member = dict(((member.table_id, member.capacity), member) for member in members)
+    processed = {
+        'added': [],
+        'removed': []
+    }
 
+    entity_member = dict(((member.table_id, member.capacity), member) for member in members)
     for entity_id in set(entity_member.keys()) - set(entities.keys()):
+        if entity_member[entity_id].state != 'deleted':
+            processed['removed'].append(entity_id[0])
         entity_member[entity_id].state = 'deleted'
         session.add(entity_member[entity_id])
 
     for entity_id in set(entity_member.keys()) & set(entities.keys()):
+        if entity_member[entity_id].state != 'active':
+            processed['added'].append(entity_id[0])
         entity_member[entity_id].state = 'active'
         session.add(entity_member[entity_id])
 
@@ -333,12 +341,16 @@ def group_member_save(context, group_dict, member_table_name):
         member = Member(group=group, group_id=group.id, table_id=entity_id[0],
                         table_name=member_table_name[:-1],
                         capacity=entity_id[1])
+        processed['added'].append(entity_id[0])
         session.add(member)
 
+    return processed
+
 
 def group_dict_save(group_dict, context):
-    import uuid 
-    
+    from ckan.lib.search import rebuild
+    import uuid
+
     model = context["model"]
     session = context["session"]
     group = context.get("group")
@@ -346,19 +358,27 @@ def group_dict_save(group_dict, context):
 
     Group = model.Group
     if group:
-        group_dict["id"] = group.id 
+        group_dict["id"] = group.id
 
     group = table_dict_save(group_dict, Group, context)
     if not group.id:
         group.id = str(uuid.uuid4())
-        
+
     context['group'] = group
 
-    group_member_save(context, group_dict, 'packages')
+    pkgs_edited = group_member_save(context, group_dict, 'packages')
     group_member_save(context, group_dict, 'users')
     group_member_save(context, group_dict, 'groups')
     group_member_save(context, group_dict, 'tags')
 
+    # We will get a list of packages that we have either added or
+    # removed from the group, and trigger a re-index.
+    package_ids = pkgs_edited['removed']
+    package_ids.extend( pkgs_edited['added'] )
+    if package_ids:
+        session.commit()
+        map( rebuild, package_ids )
+
     extras = group_extras_save(group_dict.get("extras", {}), context)
     if extras or not allow_partial_update:
         old_extras = set(group.extras.keys())
@@ -366,8 +386,7 @@ def group_dict_save(group_dict, context):
         for key in old_extras - new_extras:
             del group.extras[key]
         for key in new_extras:
-            group.extras[key] = extras[key] 
-
+            group.extras[key] = extras[key]
 
     return group
 
@@ -377,11 +396,11 @@ def user_dict_save(user_dict, context):
     model = context['model']
     session = context['session']
     user = context.get('user_obj')
-    
+
     User = model.User
     if user:
         user_dict['id'] = user.id
-    
+
     if 'password' in user_dict and not len(user_dict['password']):
         del user_dict['password']
 
@@ -409,7 +428,7 @@ def package_api_to_dict(api1_dict, context):
             updated_extras.update(value)
 
             new_value = []
-            
+
             for extras_key, extras_value in updated_extras.iteritems():
                 if extras_value is not None:
                     new_value.append({"key": extras_key,
@@ -430,7 +449,7 @@ def package_api_to_dict(api1_dict, context):
         dictized["resources"] = [{'url': download_url}]
 
     download_url = dictized.pop('download_url', None)
-    
+
     return dictized
 
 def group_api_to_dict(api1_dict, context):
@@ -442,7 +461,7 @@ def group_api_to_dict(api1_dict, context):
         if key == 'packages':
             new_value = [{"id": item} for item in value]
         if key == 'extras':
-            new_value = [{"key": extra_key, "value": value[extra_key]} 
+            new_value = [{"key": extra_key, "value": value[extra_key]}
                          for extra_key in value]
         dictized[key] = new_value
 
@@ -453,7 +472,7 @@ def task_status_dict_save(task_status_dict, context):
     task_status = context.get("task_status")
     allow_partial_update = context.get("allow_partial_update", False)
     if task_status:
-        task_status_dict["id"] = task_status.id 
+        task_status_dict["id"] = task_status.id
 
     task_status = table_dict_save(task_status_dict, model.TaskStatus, context)
     return task_status
diff --git a/ckan/lib/helpers.py b/ckan/lib/helpers.py
index 1e7004f8521..82705d032c5 100644
--- a/ckan/lib/helpers.py
+++ b/ckan/lib/helpers.py
@@ -5,8 +5,10 @@
 Consists of functions to typically be used within templates, but also
 available to Controllers. This module is available to templates as 'h'.
 """
+import email.utils
 import datetime
 import re
+import urllib
 
 from webhelpers.html import escape, HTML, literal, url_escape
 from webhelpers.html.tools import mail_to
@@ -329,14 +331,23 @@ def icon_html(url, alt=None):
 def icon(name, alt=None):
     return icon_html(icon_url(name),alt)
 
-def linked_gravatar(email_hash, size=100, default="identicon"):
+def linked_gravatar(email_hash, size=100, default=None):
     return literal('''<a href="https://gravatar.com/" target="_blank"
         title="Update your avatar at gravatar.com">
         %s</a>''' %
             gravatar(email_hash,size,default)
         )
 
-def gravatar(email_hash, size=100, default="identicon"):
+_VALID_GRAVATAR_DEFAULTS = ['404', 'mm', 'identicon', 'monsterid', 'wavatar', 'retro']
+def gravatar(email_hash, size=100, default=None):
+    if default is None:
+        from pylons import config 
+        default = config.get('ckan.gravatar_default', 'identicon')
+
+    if not default in _VALID_GRAVATAR_DEFAULTS:
+        # treat the default as a url
+        default = urllib.quote(default, safe='')
+
     return literal('''<img src="http://gravatar.com/avatar/%s?s=%d&amp;d=%s"
         class="gravatar" />'''
         % (email_hash, size, default)
@@ -397,6 +408,27 @@ def date_str_to_datetime(date_str):
     # a strptime. Also avoids problem with Python 2.5 not having %f.
     return datetime.datetime(*map(int, re.split('[^\d]', date_str)))
 
+def parse_rfc_2822_date(date_str, tz_aware=True):
+    """
+    Parse a date string of the form specified in RFC 2822, and return a datetime.
+
+    RFC 2822 is the date format used in HTTP headers.
+
+    If the date string contains a timezone indication, and tz_aware is True,
+    then the associated tzinfo is attached to the returned datetime object.
+
+    Returns None if the string cannot be parse as a valid datetime.
+    """
+    time_tuple = email.utils.parsedate_tz(date_str)
+    
+    if not time_tuple:
+        return None
+
+    if not tz_aware:
+        time_tuple = time_tuple[:-1] + (None,)
+
+    return datetime.datetime.fromtimestamp(email.utils.mktime_tz(time_tuple))
+
 def time_ago_in_words_from_str(date_str, granularity='month'):
     if date_str:
         return date.time_ago_in_words(date_str_to_datetime(date_str), granularity=granularity)
diff --git a/ckan/lib/plugins.py b/ckan/lib/plugins.py
index 619fa02f4eb..1e20a8c0aac 100644
--- a/ckan/lib/plugins.py
+++ b/ckan/lib/plugins.py
@@ -54,8 +54,11 @@ def register_package_plugins(map):
     exception will be raised.
     """
     global _default_package_plugin
-    if _default_package_plugin:
-        # we've already set things up
+
+    # This function should have not effect if called more than once.
+    # This should not occur in normal deployment, but it may happen when
+    # running unit tests.
+    if _default_package_plugin is not None:
         return
 
     # Create the mappings and register the fallback behaviour if one is found.
@@ -101,6 +104,12 @@ def register_group_plugins(map):
     """
     global _default_group_plugin
 
+    # This function should have not effect if called more than once.
+    # This should not occur in normal deployment, but it may happen when
+    # running unit tests.
+    if _default_group_plugin is not None:
+        return
+
     # Create the mappings and register the fallback behaviour if one is found.
     for plugin in plugins.PluginImplementations(plugins.IGroupForm):
         if plugin.is_fallback():
diff --git a/ckan/lib/search/index.py b/ckan/lib/search/index.py
index d3e74aef537..b6c376c94d6 100644
--- a/ckan/lib/search/index.py
+++ b/ckan/lib/search/index.py
@@ -16,7 +16,7 @@
 PACKAGE_TYPE = "package"
 KEY_CHARS = string.digits + string.letters + "_-"
 SOLR_FIELDS = [TYPE_FIELD, "res_url", "text", "urls", "indexed_ts", "site_id"]
-RESERVED_FIELDS = SOLR_FIELDS + ["tags", "groups", "res_description", 
+RESERVED_FIELDS = SOLR_FIELDS + ["tags", "groups", "res_description",
                                  "res_format", "res_url"]
 RELATIONSHIP_TYPES = PackageRelationship.types
 
@@ -39,28 +39,28 @@ def clear_index():
         conn.close()
 
 class SearchIndex(object):
-    """ 
-    A search index handles the management of documents of a specific type in the 
-    index, but no queries. 
-    The default implementation maps many of the methods, so most subclasses will 
-    only have to implement ``update_dict`` and ``remove_dict``. 
-    """    
-    
+    """
+    A search index handles the management of documents of a specific type in the
+    index, but no queries.
+    The default implementation maps many of the methods, so most subclasses will
+    only have to implement ``update_dict`` and ``remove_dict``.
+    """
+
     def __init__(self):
         pass
-    
+
     def insert_dict(self, data):
         """ Insert new data from a dictionary. """
         return self.update_dict(data)
-        
+
     def update_dict(self, data):
         """ Update data from a dictionary. """
         log.debug("NOOP Index: %s" % ",".join(data.keys()))
-    
+
     def remove_dict(self, data):
         """ Delete an index entry uniquely identified by ``data``. """
         log.debug("NOOP Delete: %s" % ",".join(data.keys()))
-        
+
     def clear(self):
         """ Delete the complete index. """
         clear_index()
@@ -68,26 +68,26 @@ def clear(self):
     def get_all_entity_ids(self):
         """ Return a list of entity IDs in the index. """
         raise NotImplemented
-        
+
 class NoopSearchIndex(SearchIndex): pass
 
 class PackageSearchIndex(SearchIndex):
     def remove_dict(self, pkg_dict):
         self.delete_package(pkg_dict)
-    
+
     def update_dict(self, pkg_dict):
         self.index_package(pkg_dict)
 
     def index_package(self, pkg_dict):
-        if pkg_dict is None:  
-            return 
+        if pkg_dict is None:
+            return
 
         if (not pkg_dict.get('state')) or ('active' not in pkg_dict.get('state')):
             return self.delete_package(pkg_dict)
 
         conn = make_connection()
         index_fields = RESERVED_FIELDS + pkg_dict.keys()
-            
+
         # include the extras in the main namespace
         extras = pkg_dict.get('extras', {})
         for (key, value) in extras.items():
@@ -100,7 +100,7 @@ def index_package(self, pkg_dict):
         if 'extras' in pkg_dict:
             del pkg_dict['extras']
 
-        # flatten the structure for indexing: 
+        # flatten the structure for indexing:
         for resource in pkg_dict.get('resources', []):
             for (okey, nkey) in [('description', 'res_description'),
                                  ('format', 'res_format'),
@@ -108,18 +108,18 @@ def index_package(self, pkg_dict):
                 pkg_dict[nkey] = pkg_dict.get(nkey, []) + [resource.get(okey, u'')]
         if 'resources' in pkg_dict:
             del pkg_dict['resources']
-        
+
         # index relationships as <type>:<object>
         rel_dict = {}
         rel_types = list(itertools.chain(RELATIONSHIP_TYPES))
         for rel in pkg_dict.get('relationships', []):
             _type = rel.get('type', 'rel')
-            if (_type in pkg_dict.keys()) or (_type not in rel_types): 
+            if (_type in pkg_dict.keys()) or (_type not in rel_types):
                 continue
             rel_dict[_type] = rel_dict.get(_type, []) + [rel.get('object')]
-        
+
         pkg_dict.update(rel_dict)
-        
+
         if 'relationships' in pkg_dict:
             del pkg_dict['relationships']
 
@@ -134,7 +134,7 @@ def index_package(self, pkg_dict):
 
         # mark this CKAN instance as data source:
         pkg_dict['site_id'] = config.get('ckan.site_id')
-        
+
         # add a unique index_id to avoid conflicts
         import hashlib
         pkg_dict['index_id'] = hashlib.md5('%s%s' % (pkg_dict['id'],config.get('ckan.site_id'))).hexdigest()
@@ -144,7 +144,7 @@ def index_package(self, pkg_dict):
 
         assert pkg_dict, 'Plugin must return non empty package dict on index'
 
-        # send to solr:  
+        # send to solr:
         try:
             conn.add_many([pkg_dict])
             conn.commit(wait_flush=False, wait_searcher=False)
@@ -152,8 +152,8 @@ def index_package(self, pkg_dict):
             log.exception(e)
             raise SearchIndexError(e)
         finally:
-            conn.close()  
-        
+            conn.close()
+
         log.debug("Updated index for %s" % pkg_dict.get('name'))
 
     def delete_package(self, pkg_dict):
diff --git a/ckan/logic/__init__.py b/ckan/logic/__init__.py
index 250d93d4cde..513f2918ab3 100644
--- a/ckan/logic/__init__.py
+++ b/ckan/logic/__init__.py
@@ -25,6 +25,11 @@ class ActionError(Exception):
     def __init__(self, extra_msg=None):
         self.extra_msg = extra_msg
 
+    def __str__(self):
+        err_msgs = (super(ActionError, self).__str__(),
+                    self.extra_msg)
+        return ' - '.join([str(err_msg) for err_msg in err_msgs if err_msg])
+
 class NotFound(ActionError):
     pass
 
@@ -40,6 +45,11 @@ def __init__(self, error_dict, error_summary=None, extra_msg=None):
         self.error_summary = error_summary
         self.extra_msg = extra_msg
 
+    def __str__(self):
+        err_msgs = (super(ValidationError, self).__str__(),
+                    self.error_summary)
+        return ' - '.join([str(err_msg) for err_msg in err_msgs if err_msg])
+
 log = logging.getLogger(__name__)
 
 def parse_params(params, ignore_keys=None):
diff --git a/ckan/logic/action/get.py b/ckan/logic/action/get.py
index a148b6a8071..71bd7284383 100644
--- a/ckan/logic/action/get.py
+++ b/ckan/logic/action/get.py
@@ -371,7 +371,6 @@ def revision_show(context, data_dict):
 
 def group_show(context, data_dict):
     '''Shows group details'''
-
     model = context['model']
     id = data_dict['id']
     api = context.get('api_version') or '1'
@@ -910,7 +909,7 @@ def get_site_user(context, data_dict):
 def roles_show(context, data_dict):
     '''Returns the roles that users (and authorization groups) have on a
     particular domain_object.
-    
+
     If you specify a user (or authorization group) then the resulting roles
     will be filtered by those of that user (or authorization group).
 
diff --git a/ckan/logic/auth/publisher/get.py b/ckan/logic/auth/publisher/get.py
index 7766b1ae1fa..27515958d15 100644
--- a/ckan/logic/auth/publisher/get.py
+++ b/ckan/logic/auth/publisher/get.py
@@ -65,40 +65,44 @@ def package_show(context, data_dict):
     """ Package show permission checks the user group if the state is deleted """
     model = context['model']
     package = get_package_object(context, data_dict)
-        
+
     if package.state == 'deleted':
         if 'ignore_auth' in context and context['ignore_auth']:
-            return {'success': True}            
-            
+            return {'success': True}
+
         user = context.get('user')
 
         if not user:
             return {'success': False, 'msg': _('User not authorized to read package %s') % (package.id)}
 
         userobj = model.User.get( user )
+
+        if Authorizer().is_sysadmin(unicode(user)):
+            return {'success': True}
+
         if not userobj:
             return {'success': False, 'msg': _('User %s not authorized to read package %s') % (str(user),package.id)}
 
         if not _groups_intersect( userobj.get_groups('publisher'), package.get_groups('publisher') ):
             return {'success': False, 'msg': _('User %s not authorized to read package %s') % (str(user),package.id)}
-    
+
     return {'success': True}
 
 def resource_show(context, data_dict):
-    """ Resource show permission checks the user group if the package state is deleted """    
+    """ Resource show permission checks the user group if the package state is deleted """
     model = context['model']
     user = context.get('user')
     resource = get_resource_object(context, data_dict)
-    package = resource.revision_group.package
+    package = resource.resource_group.package
 
     if package.state == 'deleted':
         userobj = model.User.get( user )
         if not userobj:
-            return {'success': False, 'msg': _('User %s not authorized to read resource %s') % (str(user),package.id)}    
+            return {'success': False, 'msg': _('User %s not authorized to read resource %s') % (str(user),package.id)}
         if not _groups_intersect( userobj.get_groups('publisher'), package.get_groups('publisher') ):
             return {'success': False, 'msg': _('User %s not authorized to read package %s') % (str(user),package.id)}
-    
-    pkg_dict = {'id': pkg.id}
+
+    pkg_dict = {'id': package.id}
     return package_show(context, pkg_dict)
 
 
@@ -112,12 +116,12 @@ def group_show(context, data_dict):
     user = context.get('user')
     group = get_group_object(context, data_dict)
     userobj = model.User.get( user )
-            
+
     if group.state == 'deleted':
         if not user or \
            not _groups_intersect( userobj.get_groups('publisher'), group.get_groups('publisher') ):
-            return {'success': False, 'msg': _('User %s not authorized to show group %s') % (str(user),group.id)}    
-    
+            return {'success': False, 'msg': _('User %s not authorized to show group %s') % (str(user),group.id)}
+
     return {'success': True}
 
 def tag_show(context, data_dict):
diff --git a/ckan/logic/schema.py b/ckan/logic/schema.py
index 164343a4eac..aa0d84ea0c4 100644
--- a/ckan/logic/schema.py
+++ b/ckan/logic/schema.py
@@ -186,6 +186,13 @@ def default_group_schema():
         '__extras': [ignore],
         'packages': {
             "id": [not_empty, unicode, package_id_or_name_exists],
+            "title":[ignore_missing, unicode],
+            "name":[ignore_missing, unicode],
+            "__extras": [ignore]
+        },
+         'groups': {
+            "name": [not_empty, unicode],
+            "capacity": [ignore_missing],
             "__extras": [ignore]
         },
         'users': {
@@ -206,13 +213,14 @@ def group_form_schema():
     #schema['extras_validation'] = [duplicate_extras_key, ignore]
     schema['packages'] = {
         "name": [not_empty, unicode],
+        "title": [ignore_missing],
         "__extras": [ignore]
     }
     schema['users'] = {
         "name": [not_empty, unicode],
-        "capacity": [ignore_missing],        
+        "capacity": [ignore_missing],
         "__extras": [ignore]
-    }    
+    }
     return schema
 
 
diff --git a/ckan/logic/validators.py b/ckan/logic/validators.py
index ec635c296cd..290a3c9600f 100644
--- a/ckan/logic/validators.py
+++ b/ckan/logic/validators.py
@@ -114,6 +114,16 @@ def group_id_exists(group_id, context):
         raise Invalid('%s: %s' % (_('Not found'), _('Group')))
     return group_id
 
+def group_id_or_name_exists(reference, context):
+    """
+    Raises Invalid if a group identified by the name or id cannot be found.
+    """
+    model = context['model']
+    result = model.Group.get(reference)
+    if not result:
+        raise Invalid(_('That group name or ID does not exist.'))
+    return reference
+
 def activity_type_exists(activity_type):
     """Raises Invalid if there is no registered activity renderer for the
     given activity_type. Otherwise returns the given activity_type.
diff --git a/ckan/model/group.py b/ckan/model/group.py
index e90b35a4c35..70925563811 100644
--- a/ckan/model/group.py
+++ b/ckan/model/group.py
@@ -103,6 +103,20 @@ def get(cls, reference):
         return group
     # Todo: Make sure group names can't be changed to look like group IDs?
 
+    @classmethod
+    def all(cls, group_type=None, state=('active',)):
+        """
+        Returns all groups.
+        """
+        q = Session.query(cls)
+        if state:
+            q = q.filter(cls.state.in_(state))
+
+        if group_type:
+            q = q.filter(cls.type==group_type)
+
+        return q.order_by(cls.title)
+
     def set_approval_status(self, status):
         """
             Aproval status can be set on a group, where currently it does
@@ -116,17 +130,21 @@ def set_approval_status(self, status):
             pass
 
     def members_of_type(self, object_type, capacity=None):
+        from ckan import model
         object_type_string = object_type.__name__.lower()
         query = Session.query(object_type).\
-               filter(group_table.c.id == self.id).\
-               filter(member_table.c.state == 'active').\
-               filter(member_table.c.table_name == object_type_string)
+               filter(model.Group.id == self.id).\
+               filter(model.Member.state == 'active').\
+               filter(model.Member.table_name == object_type_string)
+
+        if hasattr(object_type,'state'):
+            query = query.filter(object_type.state == 'active' )
 
         if capacity:
-            query = query.filter(member_table.c.capacity == capacity)
+            query = query.filter(model.Member.capacity == capacity)
 
-        query = query.join(member_table, member_table.c.table_id == getattr(object_type,'id') ).\
-               join(group_table, group_table.c.id == member_table.c.group_id)
+        query = query.join(model.Member, member_table.c.table_id == getattr(object_type,'id') ).\
+               join(model.Group, group_table.c.id == member_table.c.group_id)
 
         return query
 
@@ -136,6 +154,15 @@ def add_child(self, object_instance):
             member = Member(group=self, table_id=getattr(object_instance,'id'), table_name=object_type_string)
             Session.add(member)
 
+    def get_children_groups(self, type='group'):
+        # Returns a list of dicts where each dict contains "id", "name", and "title"
+        # When querying with a CTE specifying a model in the query parameter causes
+        # problems as it returns only the first level deep apparently not recursing
+        # any deeper than that.  If we simplify and request only specific fields then
+        # if returns the full depth of the hierarchy.
+        results = Session.query("id","name", "title").\
+                from_statement(HIERARCHY_CTE).params(id=self.id, type=type).all()
+        return [ { "id":idf, "name": name, "title": title } for idf,name,title in results ]
 
     def active_packages(self, load_eager=True):
         query = Session.query(Package).\
@@ -242,3 +269,15 @@ def __repr__(self):
 #TODO
 MemberRevision.related_packages = lambda self: [self.continuity.package]
 
+HIERARCHY_CTE =  """
+    WITH RECURSIVE subtree(id) AS (
+        SELECT M.* FROM public.member AS M
+        WHERE M.table_name = 'group' AND M.state = 'active'
+        UNION
+        SELECT M.* FROM public.member M, subtree SG
+        WHERE M.table_id = SG.group_id AND M.table_name = 'group' AND M.state = 'active')
+
+    SELECT G.* FROM subtree AS ST
+    INNER JOIN public.group G ON G.id = ST.table_id
+    WHERE group_id = :id AND G.type = :type and table_name='group'
+"""
diff --git a/ckan/model/user.py b/ckan/model/user.py
index ed07c0c5e37..780cb94ef00 100644
--- a/ckan/model/user.py
+++ b/ckan/model/user.py
@@ -23,15 +23,15 @@
         )
 
 class User(DomainObject):
-    
+
     VALID_NAME = re.compile(r"^[a-zA-Z0-9_\-]{3,255}$")
     DOUBLE_SLASH = re.compile(':\/([^/])')
-    
+
     @classmethod
     def by_openid(cls, openid):
         obj = Session.query(cls).autoflush(False)
         return obj.filter_by(openid=openid).first()
-    
+
     @classmethod
     def get(cls, user_reference):
         # double slashes in an openid often get turned into single slashes
@@ -57,7 +57,7 @@ def email_hash(self):
         if self.email:
             e = self.email.strip().lower().encode('utf8')
         return hashlib.md5(e).hexdigest()
-        
+
     def get_reference_preferred_for_uri(self):
         '''Returns a reference (e.g. name, id, openid) for this user
         suitable for the user\'s URI.
@@ -73,7 +73,7 @@ def get_reference_preferred_for_uri(self):
         else:
             ref = self.id
         return ref
-            
+
     def _set_password(self, password):
         """Hash password on the fly."""
         if isinstance(password, unicode):
@@ -104,7 +104,7 @@ def validate_password(self, password):
         :return: Whether the password is valid.
         :rtype: bool
         """
-        if not password or not self.password: 
+        if not password or not self.password:
             return False
         if isinstance(password, unicode):
             password_8bit = password.encode('ascii', 'ignore')
@@ -114,7 +114,7 @@ def validate_password(self, password):
         return self.password[40:] == hashed_pass.hexdigest()
 
     password = property(_get_password, _set_password)
-    
+
     @classmethod
     def check_name_valid(cls, name):
         if not name \
@@ -147,10 +147,23 @@ def number_administered_packages(self):
 
     def is_in_group(self, group):
         return group in self.get_groups()
-        
+
+    def is_in_groups(self, groupids):
+        """ Given a list of group ids, returns True if this user is in any of
+            those groups """
+        guser = set( self.get_group_ids() )
+        gids  = set( groupids )
+
+        return len( guser.intersection( gids ) ) > 0
+
+
+    def get_group_ids(self, group_type=None):
+        """ Returns a list of group ids that the current user belongs to """
+        return [ g.id for g in self.get_groups( group_type=group_type ) ]
+
     def get_groups(self, group_type=None, capacity=None):
         import ckan.model as model
-        
+
         q = model.Session.query(model.Group)\
             .join(model.Member, model.Member.group_id == model.Group.id and \
                        model.Member.table_name == 'user' ).\
@@ -160,12 +173,12 @@ def get_groups(self, group_type=None, capacity=None):
         if capacity:
             q = q.filter( model.Member.capacity == capacity )
             return q.all()
-            
+
         if '_groups' not in self.__dict__:
             self._groups = q.all()
-        
+
         groups = self._groups
-        if group_type:       
+        if group_type:
             groups = [g for g in groups if g.type == group_type]
         return groups
 
@@ -173,7 +186,7 @@ def get_groups(self, group_type=None, capacity=None):
     @classmethod
     def search(cls, querystr, sqlalchemy_query=None):
         '''Search name, fullname, email and openid.
-         
+
         '''
         import ckan.model as model
         if sqlalchemy_query is None:
diff --git a/ckan/public/css/forms.css b/ckan/public/css/forms.css
index 97406579d9f..e1a6a46de91 100644
--- a/ckan/public/css/forms.css
+++ b/ckan/public/css/forms.css
@@ -139,6 +139,12 @@ form.has-errors .field_error, form.has-errors .error-explanation {
   position: relative;
   background: transparent url(../images/icons/error.png) left 3px no-repeat; }
  
+td.field_warning {
+  color: #d12f19; }
+
+.fieldset_button_error {
+  background: transparent url(../images/icons/error.png) left center no-repeat; }
+
 .error-explanation,
 #errorExplanation {
   background: #fff;
diff --git a/ckan/public/css/style.css b/ckan/public/css/style.css
index 0143eb36e1a..b8767070e90 100644
--- a/ckan/public/css/style.css
+++ b/ckan/public/css/style.css
@@ -973,6 +973,7 @@ ul.dataset-edit-nav li a {
   display: block;
   padding: 7px 0 7px 10px;
   margin-bottom: 7px;
+  margin-left: 20px;
   border: 1px transparent solid;
 }
 ul.dataset-edit-nav li a.active,  
diff --git a/ckan/public/scripts/application.js b/ckan/public/scripts/application.js
index e8e40859cfe..dbba9a64861 100644
--- a/ckan/public/scripts/application.js
+++ b/ckan/public/scripts/application.js
@@ -94,6 +94,15 @@
         $(e.target).attr('disabled','disabled');
         return false;
       });
+
+      // Highlight form errors in the tab buttons
+      for (field_id in form_errors) {
+        var field = $('#'+field_id);
+        if (field !== undefined) {
+          var fieldset_id = field.parents('fieldset').last().attr('id');
+          $('#section-'+fieldset_id).addClass('fieldset_button_error');
+        }
+      }
     }
     var isGroupEdit = $('body.group.edit').length > 0;
     if (isGroupEdit) {
@@ -395,10 +404,9 @@ CKAN.Utils = function($, my) {
         input_box.attr('name', new_name)
         input_box.attr('id', new_name)
 
-        var capacity = $("input:radio[name=add-user-capacity]:checked").val();
         parent_dd.before(
           '<input type="hidden" name="' + old_name + '" value="' + ui.item.value + '">' +
-          '<input type="hidden" name="' + old_name.replace('__name','__capacity') + '" value="' + capacity + '">' +
+          '<input type="hidden" name="' + old_name.replace('__name','__capacity') + '" value="editor">' +
           '<dd>' + ui.item.label + '</dd>'
         );
 
@@ -825,8 +833,37 @@ CKAN.View.ResourceAddLink = Backbone.View.extend({
 
   setResourceInfo: function(e) {
     e.preventDefault();
+    this.el.find('input[name=save]').addClass("disabled");
+    this.el.find('input[name=reset]').addClass("disabled");
     var urlVal=this.el.find('input[name=url]').val();
-    this.model.set({url: urlVal, resource_type: this.mode})
+    var qaEnabled = $.inArray('qa',CKAN.plugins)>=0;
+
+    if(qaEnabled && this.mode=='file') {
+      $.ajax({
+        url: CKAN.SITE_URL + '/qa/link_checker',
+        context: this.model,
+        data: {url: urlVal},
+        dataType: 'json',
+        error: function(){
+          this.set({url: urlVal, resource_type: 'file'});
+        },
+        success: function(data){
+          data = data[0];
+          this.set({
+            url: urlVal,
+            resource_type: 'file',
+            format: data.format,
+            size: data.size,
+            mimetype: data.mimetype,
+            last_modified: data.last_modified,
+            url_error: (data.url_errors || [""])[0]
+          });
+        }
+      });
+    } else {
+      this.model.set({url: urlVal, resource_type: this.mode});
+    }
+
   }
 });
 
diff --git a/ckan/public/scripts/templates.js b/ckan/public/scripts/templates.js
index a4c33ce93a5..924136ab4f7 100644
--- a/ckan/public/scripts/templates.js
+++ b/ckan/public/scripts/templates.js
@@ -83,14 +83,14 @@ CKAN.Templates.resourceEntry = ' \
       </td> \
       </tr> \
       <tr> \
-      <td class="resource-edit-label">'+CKAN.Strings.url+'</td> \
+      <td title="${resource.url_error}" class="resource-edit-label{{if resource.url_error}} field_warning{{/if}}">'+CKAN.Strings.url+'</td> \
       <td class="resource-edit-value" colspan="3"> \
       {{if resource.resource_type=="file.upload"}} \
         ${resource.url} \
         <input name="resources__${num}__url" type="hidden" value="${resource.url}" /> \
       {{/if}} \
       {{if resource.resource_type!="file.upload"}} \
-        <input name="resources__${num}__url" type="text" value="${resource.url}" class="long" /> \
+        <input name="resources__${num}__url" type="text" value="${resource.url}" class="long" title="${resource.url_error}" /> \
       {{/if}} \
       </td> \
       </tr> \
diff --git a/ckan/templates/facets.html b/ckan/templates/facets.html
index 0ffe47bbd91..7cafdcaea3b 100644
--- a/ckan/templates/facets.html
+++ b/ckan/templates/facets.html
@@ -5,18 +5,36 @@
   py:strip=""
   >
 
-<py:def function="facet_sidebar(code, limit=5, label=lambda n: n, title=h.facet_title)">
-    <div py:if="len(h.facet_items(c, code, limit=limit))" class="facet-box">
+<py:def function="facet_sidebar(code, limit=5, label=lambda n: n, title=h.facet_title, if_empty=None, count_label=lambda c: ' (%d)'%c)">
+    <div py:if="if_empty is not None or len(h.facet_items(c, code, limit=limit))" class="facet-box">
         <h2>${title(code)}</h2>
         <ul class="facet-options">
             <li py:for="name, count in h.facet_items(c, code, limit=limit)"
                 py:if="not (code, name) in c.fields">
-                <a href="${c.drill_down_url(**{code: name})}">${label(name)}</a> (${count})
+                <a href="${c.drill_down_url(**{code: name})}">${label(name)}</a>${count_label(count)}
             </li>
         </ul>
+        <p py:if="not len(h.facet_items(c, code, limit=limit))">${if_empty}</p>
     </div>
 </py:def>
 
+<!-- Creates a possibly empty list of <li> elements containing links to further search results
+
+     This is different from the above function in that it requires the caller to wrap
+     up the resulting <li> elements in whatever dom element they need.  But it does allow for
+     filters to displayed in a hierarchy.
+
+     If if_empty is not None and there are no facets to filter on, then a single <li> element
+     is generated, with the text specified by if_empty
+-->
+<py:def function="facet_list_items(code, limit=5, label=lambda n: n, if_empty=None)">
+        <li py:if="if_empty and len(h.facet_items(c, code, limit=limit)) == 0">${if_empty}</li>
+        <li py:for="name, count in h.facet_items(c, code, limit=limit)"
+            py:if="not (code, name) in c.fields">
+            <a href="${c.drill_down_url(**{code: name})}">${label(name)}</a> (${count})
+        </li>
+</py:def>
+
 <py:def function="field_list()">
     <div class="filter-list" py:if="c.fields">
         <div class="filter-entry" py:for="(field, value) in c.fields">
diff --git a/ckan/templates/package/edit.html b/ckan/templates/package/edit.html
index 42e60447394..d2543cc350a 100644
--- a/ckan/templates/package/edit.html
+++ b/ckan/templates/package/edit.html
@@ -9,6 +9,7 @@
   <py:def function="optional_head">
     <script>
       var preload_dataset = ${h.literal(c.pkg_json)};
+      var form_errors = ${c.errors_json};
     </script>
   </py:def>
 
@@ -16,11 +17,11 @@
     <li class="widget-container widget_text">
       <ul class="dataset-edit-nav">
         <!-- One button for each fieldset -->
-        <li><a href="#section-basic-information">Basic Information</a></li>
-        <li><a href="#section-further-information">Further Information</a></li>
-        <li><a href="#section-resources">Resources</a></li>
-        <li><a href="#section-groups">Groups &amp; Tags</a></li>
-        <li><a href="#section-extras">Extras</a></li>
+        <li id="section-basic-information"><a href="#section-basic-information">Basic Information</a></li>
+        <li id="section-further-information"><a href="#section-further-information">Further Information</a></li>
+        <li id="section-resources"><a href="#section-resources">Resources</a></li>
+        <li id="section-groups"><a href="#section-groups">Groups &amp; Tags</a></li>
+        <li id="section-extras"><a href="#section-extras">Extras</a></li>
         <li py:if="c.is_sysadmin or c.auth_for_change_state"><a href="#section-delete">Delete</a></li>
       </ul>
     </li>
diff --git a/ckan/tests/functional/api/model/test_group.py b/ckan/tests/functional/api/model/test_group.py
index 6a4b1e7c250..f7e5a62b16b 100644
--- a/ckan/tests/functional/api/model/test_group.py
+++ b/ckan/tests/functional/api/model/test_group.py
@@ -3,12 +3,12 @@
 from ckan import model
 from ckan.lib.create_test_data import CreateTestData
 
-from nose.tools import assert_equal 
+from nose.tools import assert_equal
 
 from ckan.tests.functional.api.base import BaseModelApiTestCase
-from ckan.tests.functional.api.base import Api1TestCase as Version1TestCase 
-from ckan.tests.functional.api.base import Api2TestCase as Version2TestCase 
-from ckan.tests.functional.api.base import ApiUnversionedTestCase as UnversionedTestCase 
+from ckan.tests.functional.api.base import Api1TestCase as Version1TestCase
+from ckan.tests.functional.api.base import Api2TestCase as Version2TestCase
+from ckan.tests.functional.api.base import ApiUnversionedTestCase as UnversionedTestCase
 
 class GroupsTestCase(BaseModelApiTestCase):
 
@@ -17,7 +17,7 @@ def setup_class(cls):
         CreateTestData.create()
         cls.user_name = u'russianfan' # created in CreateTestData
         cls.init_extra_environ(cls.user_name)
-    
+
     @classmethod
     def teardown_class(cls):
         model.repo.rebuild_db()
@@ -73,11 +73,11 @@ def test_register_post_ok(self):
                             status=self.STATUS_409_CONFLICT,
                             extra_environ=self.extra_environ)
         self.assert_json_response(res, 'Group name already exists')
-    
+
     def test_entity_get_ok(self):
         offset = self.group_offset(self.roger.name)
         res = self.app.get(offset, status=self.STATUS_200_OK)
-        
+
         self.assert_msg_represents_roger(msg=res.body)
         assert self.package_ref_from_name('annakarenina') in res, res
         assert self.group_ref_from_name('roger') in res, res
@@ -146,7 +146,7 @@ def test_10_edit_group_name_duplicate(self):
             rev = model.repo.new_revision()
             model.repo.commit_and_remove()
         assert model.Group.by_name(self.testgroupvalues['name'])
-        
+
         # create a group with name 'dupname'
         dupname = u'dupname'
         if not model.Group.by_name(dupname):
@@ -164,7 +164,7 @@ def test_10_edit_group_name_duplicate(self):
         res = self.app.post(offset, params=postparams, status=[409],
                             extra_environ=self.extra_environ)
         self.assert_json_response(res, 'Group name already exists')
-        
+
     def test_11_delete_group(self):
         # Test Groups Entity Delete 200.
 
diff --git a/ckan/tests/functional/test_authz.py b/ckan/tests/functional/test_authz.py
index 436f9cffa10..aa206242931 100644
--- a/ckan/tests/functional/test_authz.py
+++ b/ckan/tests/functional/test_authz.py
@@ -19,7 +19,7 @@ class AuthzTestBase(object):
     ENTITY_CLASS_MAP = {'dataset': model.Package,
                         'group': model.Group,
                         'package_relationship': model.PackageRelationship}
-        
+
     @classmethod
     def setup_class(self):
         setup_test_search_index()
@@ -111,10 +111,14 @@ def _test_via_wui(self, action, user, entity_name, entity='dataset'):
             str_required_in_response = '<select id="state"'
         else:
             raise NotImplementedError
+
         res = self.app.get(offset, extra_environ={'REMOTE_USER': user.name.encode('utf8')}, expect_errors=True)
         tests = {}
         tests['str_required (%s)' % str_required_in_response] = bool(str_required_in_response in res)
-        tests['error string'] = bool('error' not in res)
+
+        r = res.body
+        r = r.replace('form_errors', '')
+        tests['error string'] = bool('error' not in r)
         tests['status'] = bool(res.status in (200, 201))
         tests['0 packages found'] = bool(u'<strong>0</strong> packages found' not in res)
         is_ok = False not in tests.values()
@@ -144,7 +148,7 @@ def _test_via_api(self, action, user, entity_name, entity_type='dataset'):
             func = self.app.get
         elif action == 'create':
             offset = '/api/rest/%s' % (entity_type)
-            postparams = '%s=1' % json.dumps({'name': unicode(entity_name), 
+            postparams = '%s=1' % json.dumps({'name': unicode(entity_name),
                                               'title': u'newtitle'},
                                              encoding='utf8')
             func = self.app.post
@@ -189,7 +193,7 @@ def _test_via_api(self, action, user, entity_name, entity_type='dataset'):
                     else:
                         offset = '/api/rest/dataset/%(entity1)s/%(type)s/%(entity2)s' % entity_properties
                     str_required_in_response = '"object": "%(entity2)s", "type": "%(type)s", "subject": "%(entity1)s"' % entity_properties
-                
+
         if user.name == 'visitor':
             environ = {}
         else:
@@ -209,7 +213,7 @@ class TestUsage(TestController, AuthzTestBase):
     '''Use case: role defaults (e.g. like ckan.net operates)
        * reader can read only
        * editor can edit most properties of a package
-       
+
     '''
     @classmethod
     def _create_test_data(cls):
@@ -307,7 +311,7 @@ def _create_test_data(cls):
             model.add_user_to_role(visitor, model.Role.READER, entity)
             model.add_user_to_role(mrloggedin, model.Role.READER, entity)
             model.add_user_to_role(pkggroupadmin, model.Role.ADMIN, entity)
-        
+
         model.repo.commit_and_remove()
 
         assert model.Package.by_name(u'deleted').state == model.State.DELETED
@@ -327,13 +331,13 @@ def _create_test_data(cls):
 
     def test_14_visitor_reads_stopped(self):
         self._test_cant('read', self.visitor, ['xx', 'rx', 'wx'])
-    def test_01_visitor_reads(self): 
+    def test_01_visitor_reads(self):
         self._test_can('read', self.visitor, ['rr', 'wr', 'ww'])
 
     def test_12_visitor_edits_stopped(self):
         self._test_cant('edit', self.visitor, ['xx', 'rx', 'wx', 'rr', 'wr', 'ww'], interfaces=['rest'])
         self._test_cant('edit', self.visitor, ['xx', 'rx', 'wx', 'rr', 'wr'], interfaces=['wui'])
-        
+
     def test_02_visitor_edits(self):
         self._test_can('edit', self.visitor, ['ww'], interfaces=['wui'])
         self._test_can('edit', self.visitor, [], interfaces=['rest'])
@@ -356,7 +360,7 @@ def test_04_user_edits(self):
 
     def test_user_creates(self):
         self._test_can('create', self.mrloggedin, [])
-    
+
     def test_list(self):
         # NB there is no listing of package in wui interface any more
         # NB under the new model all active packages are always visible in listings by default
@@ -380,10 +384,10 @@ def test_search_deleted(self):
         # TODO: Discuss authorized queries for packages and resolve this issue.
         # self._test_cant('search', self.mrloggedin, ['deleted', 'xx'], entity_types=['dataset'])
         self._test_cant('search', self.mrloggedin, ['deleted'], entity_types=['dataset'])
-        
+
     def test_05_author_is_new_package_admin(self):
         user = self.mrloggedin
-        
+
         # make new package
         assert not model.Package.by_name(u'annakarenina')
         offset = url_for(controller='package', action='new')
@@ -404,16 +408,16 @@ def test_05_author_is_new_package_admin(self):
 
     def test_sysadmin_can_read_anything(self):
         self._test_can('read', self.testsysadmin, ['xx', 'rx', 'wx', 'rr', 'wr', 'ww', 'deleted'])
-        
+
     def test_sysadmin_can_edit_anything(self):
         self._test_can('edit', self.testsysadmin, ['xx', 'rx', 'wx', 'rr', 'wr', 'ww', 'deleted'])
-        
+
     def test_sysadmin_can_create_anything(self):
         self._test_can('create', self.testsysadmin, [])
 
     def test_sysadmin_can_search_anything(self):
         self._test_can('search', self.testsysadmin, ['xx', 'rx', 'wx', 'rr', 'wr', 'ww'], entity_types=['dataset'])
-                
+
     def test_visitor_deletes(self):
         self._test_cant('delete', self.visitor, ['gets_filled'], interfaces=['wui'])
 
@@ -437,7 +441,7 @@ def test_admin_purges(self):
 
     def test_sysadmin_purges(self):
         self._test_can('purge', self.testsysadmin, ['gets_filled'], interfaces=['rest'], entity_types=['dataset'])
-    
+
     def test_sysadmin_relationships(self):
         opts = {'interfaces': ['rest'],
                 'entity_types': ['package_relationship']}
@@ -466,7 +470,7 @@ def test_user_relationships(self):
         self._test_can('edit', self.mrloggedin, [('ww', 'links_to', 'wr')], **opts)
         self._test_cant('edit', self.mrloggedin, [('ww', 'depends_on', 'xx')], **opts)
         #TODO self._test_cant('delete', self.mrloggedin, [('ww', 'links_to', 'wr')], **opts)
-        
+
     def test_visitor_relationships(self):
         opts = {'interfaces': ['rest'],
                 'entity_types': ['package_relationship']}
@@ -577,7 +581,7 @@ def test_outcast_search(self):
         self._test_cant('search', self.outcast, self.ENTITY_NAME, entity_types=['dataset']) # cannot search groups
         self._test_cant('read', self.outcast, self.ENTITY_NAME, entity_types=['tag'])
 
-        
+
 class TestLockedDownViaRoles(TestController):
     '''Use case:
            * 'Visitor' has no edit rights
@@ -593,17 +597,17 @@ def setup_class(self):
             .filter(model.UserObjectRole.user==model.User.by_name(u"visitor"))
         for role in q:
             model.Session.delete(role)
-        
+
         q = model.Session.query(model.RoleAction).filter(model.RoleAction.role==model.Role.READER)
         for role_action in q:
             model.Session.delete(role_action)
-        
+
         model.repo.commit_and_remove()
         setup_test_search_index()
         TestUsage._create_test_data()
         model.Session.remove()
         self.user_name = TestUsage.mrloggedin.name.encode('utf-8')
-    
+
     def _check_logged_in_users_authorized_only(self, offset):
         '''Checks the offset is accessible to logged in users only.'''
         res = self.app.get(offset, extra_environ={})
@@ -613,7 +617,7 @@ def _check_logged_in_users_authorized_only(self, offset):
 
     def test_home(self):
         self._check_logged_in_users_authorized_only('/')
-    
+
     def test_tags_pages(self):
         self._check_logged_in_users_authorized_only('/tag')
         self._check_logged_in_users_authorized_only('/tag/test')
@@ -626,7 +630,7 @@ def test_user_pages(self):
         self._check_logged_in_users_authorized_only('/user/' + self.user_name)
         res = self.app.get('/user/login', extra_environ={})
         assert res.status in [200], res.status
-    
+
     def test_new_package(self):
         offset = url_for(controller='package', action='new')
         self._check_logged_in_users_authorized_only(offset)
diff --git a/ckan/tests/functional/test_group.py b/ckan/tests/functional/test_group.py
index 05be9188a4b..1eacba2cf8e 100644
--- a/ckan/tests/functional/test_group.py
+++ b/ckan/tests/functional/test_group.py
@@ -93,7 +93,7 @@ def test_read_plugin_hook(self):
         name = u'david'
         offset = url_for(controller='group', action='read', id=name)
         res = self.app.get(offset, status=200, extra_environ={'REMOTE_USER': 'russianfan'})
-        assert plugin.calls['read'] == 2, plugin.calls
+        assert plugin.calls['read'] == 1, plugin.calls
         plugins.unload(plugin)
 
     def test_read_and_authorized_to_edit(self):
@@ -472,6 +472,11 @@ def teardown_class(self):
         model.repo.rebuild_db()
 
     def test_index(self):
+        from pylons import config
+        from nose import SkipTest
+        if config.get('ckan.auth.profile','') != 'publisher':
+            raise SkipTest("Search not supported")
+
         offset = url_for(controller='group', action='index')
         res = self.app.get(offset)
         assert '<h1 class="page_heading">Groups' in res, res
@@ -486,6 +491,11 @@ def test_index(self):
         assert 'publisher' == group.type, group.type
 
     def test_read(self):
+        from pylons import config
+        from nose import SkipTest
+        if config.get('ckan.auth.profile','') != 'publisher':
+            raise SkipTest("Search not supported")
+
         # Relies on the search index being available
         setup_test_search_index()
         name = u'david'
@@ -504,6 +514,11 @@ def test_read(self):
             assert '0 datasets found.' in self.strip_tags(main_res), main_res
 
     def test_read_and_not_authorized_to_edit(self):
+        from pylons import config
+        from nose import SkipTest
+        if config.get('ckan.auth.profile','') != 'publisher':
+            raise SkipTest("Search not supported")
+
         name = u'david'
         title = u'Dave\'s books'
         pkgname = u'warandpeace'
diff --git a/ckan/tests/lib/test_dictization.py b/ckan/tests/lib/test_dictization.py
index 18cf40e9db9..366103dfefb 100644
--- a/ckan/tests/lib/test_dictization.py
+++ b/ckan/tests/lib/test_dictization.py
@@ -1,4 +1,4 @@
-from nose.tools import assert_equal
+from nose.tools import assert_equal, assert_not_in, assert_in
 from pprint import pprint, pformat
 from difflib import unified_diff
 
@@ -25,6 +25,7 @@
 from ckan.logic.action.update import make_latest_pending_package_active
 import ckan.logic.action.get
 
+
 class TestBasicDictize:
     @classmethod
     def setup_class(cls):
@@ -57,7 +58,7 @@ def setup_class(cls):
             'maintainer_email': None,
             'type': None,
             'name': u'annakarenina',
-            'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n \nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
+            'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n\nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
             'relationships_as_object': [],
             'relationships_as_subject': [],
             'resources': [{u'alt_url': u'alt123',
@@ -103,7 +104,7 @@ def setup_class(cls):
             'title': u'A Novel By Tolstoy',
             'url': u'http://www.annakarenina.com',
             'version': u'0.7a'}
-        
+
 
     @classmethod
     def teardown_class(cls):
@@ -136,7 +137,7 @@ def remove_revision_id(self, dict):
         return dict
 
     def test_01_dictize_main_objects_simple(self):
-        
+
         context = {"model": model,
                    "session": model.Session}
 
@@ -145,20 +146,21 @@ def test_01_dictize_main_objects_simple(self):
         result = table_dictize(pkg, context)
         self.remove_changable_columns(result)
 
-        assert result == {
+        expected = {
             'author': None,
             'author_email': None,
             'license_id': u'other-open',
             'maintainer': None,
             'maintainer_email': None,
             'name': u'annakarenina',
-            'type': None,
-            'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n \nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
+            'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n\nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
             'state': u'active',
             'title': u'A Novel By Tolstoy',
+            'type': None,
             'url': u'http://www.annakarenina.com',
             'version': u'0.7a'
-        }, pprint(result)
+        }
+        assert result == expected, pprint(result)
 
         ## resource
 
@@ -204,7 +206,7 @@ def test_01_dictize_main_objects_simple(self):
 
 
     def test_02_package_dictize(self):
-        
+
         context = {"model": model,
                  "session": model.Session}
 
@@ -214,10 +216,7 @@ def test_02_package_dictize(self):
         result = package_dictize(pkg, context)
         self.remove_changable_columns(result)
 
-        pprint(result)
-        pprint(self.package_expected)
         print "\n".join(unified_diff(pformat(result).split("\n"), pformat(self.package_expected).split("\n")))
-
         assert sorted(result.values()) == sorted(self.package_expected.values())
         assert result == self.package_expected
 
@@ -307,7 +306,7 @@ def test_07_table_simple_save(self):
 
         anna_dictized = self.remove_changable_columns(table_dictize(anna1, context))
 
-        anna_dictized["name"] = 'annakarenina2' 
+        anna_dictized["name"] = 'annakarenina2'
 
         model.repo.new_revision()
         table_dict_save(anna_dictized, model.Package, context)
@@ -324,11 +323,11 @@ def test_08_package_save(self):
 
         anna1 = model.Session.query(model.Package).filter_by(name='annakarenina').one()
 
-        
+
 
         anna_dictized = self.remove_changable_columns(package_dictize(anna1, context))
 
-        anna_dictized["name"] = u'annakarenina3' 
+        anna_dictized["name"] = u'annakarenina3'
 
         model.repo.new_revision()
         package_dict_save(anna_dictized, context)
@@ -352,8 +351,8 @@ def test_09_package_alter(self):
 
         anna_dictized = package_dictize(anna1, context)
 
-        anna_dictized["name"] = u'annakarenina_changed' 
-        anna_dictized["resources"][0]["url"] = u'new_url' 
+        anna_dictized["name"] = u'annakarenina_changed'
+        anna_dictized["resources"][0]["url"] = u'new_url'
 
         model.repo.new_revision()
         package_dict_save(anna_dictized, context)
@@ -390,11 +389,11 @@ def test_10_package_alter_pending(self):
 
         anna_dictized = package_dictize(anna1, context)
 
-        anna_dictized['name'] = u'annakarenina_changed2' 
-        anna_dictized['resources'][0]['url'] = u'new_url2' 
-        anna_dictized['tags'][0]['name'] = u'new_tag' 
-        anna_dictized['tags'][0].pop('id') #test if 
-        anna_dictized['extras'][0]['value'] = u'"new_value"' 
+        anna_dictized['name'] = u'annakarenina_changed2'
+        anna_dictized['resources'][0]['url'] = u'new_url2'
+        anna_dictized['tags'][0]['name'] = u'new_tag'
+        anna_dictized['tags'][0].pop('id') #test if
+        anna_dictized['extras'][0]['value'] = u'"new_value"'
 
         model.repo.new_revision()
         package_dict_save(anna_dictized, context)
@@ -458,7 +457,7 @@ def test_10_package_alter_pending(self):
 
         extras_revisions = model.Session.query(model.PackageExtraRevision).filter_by(package_id=anna1.id).all()
 
-        sorted_extras = sorted(extras_revisions, 
+        sorted_extras = sorted(extras_revisions,
                                key=lambda x: (x.revision_timestamp, x.key))[::-1]
 
         assert sorted_extras[0].state == 'pending'
@@ -488,7 +487,7 @@ def test_11_add_pending(self):
                             'url': u'newurl'}
                             )
         anna_dictized['tags'].append({'name': u'newnew_tag'})
-        anna_dictized['extras'].append({'key': 'david', 
+        anna_dictized['extras'].append({'key': 'david',
                                         'value': u'"new_value"'})
 
         model.repo.new_revision()
@@ -546,7 +545,7 @@ def test_11_add_pending(self):
 
         extras_revisions = model.Session.query(model.PackageExtraRevision).filter_by(package_id=anna1.id).all()
 
-        sorted_extras = sorted(extras_revisions, 
+        sorted_extras = sorted(extras_revisions,
                                key=lambda x: (x.revision_timestamp, x.key))[::-1]
 
         print [(extra.state, extra.key, extra.value) for extra in sorted_extras]
@@ -576,9 +575,9 @@ def test_12_make_active(self):
 
         assert len(sorted_packages) == 4
         assert sorted_packages[0].state == 'active', sorted_packages[0].state #was pending
-        assert sorted_packages[0].current == True 
+        assert sorted_packages[0].current == True
 
-        assert sorted_packages[1].state == 'pending' 
+        assert sorted_packages[1].state == 'pending'
         assert sorted_packages[2].state == 'active'
         assert sorted_packages[3].state == 'active'
 
@@ -608,7 +607,7 @@ def test_12_make_active(self):
         sorted_tags = sorted(tag_revisions, key=lambda x: (x.revision_timestamp, x.tag.name))[::-1]
 
         print [(tag.state, tag.tag.name) for tag in sorted_tags]
-        
+
         assert len(sorted_tags) == 6, len(sorted_tags)
         assert sorted_tags[0].state == 'active'     # newnew_tag
         assert sorted_tags[1].state == 'active'     # new_tag
@@ -630,7 +629,7 @@ def test_12_make_active(self):
 
         extras_revisions = model.Session.query(model.PackageExtraRevision).filter_by(package_id=anna1.id).all()
 
-        sorted_extras = sorted(extras_revisions, 
+        sorted_extras = sorted(extras_revisions,
                                key=lambda x: (x.revision_timestamp, x.key))[::-1]
 
         print [(extra.state, extra.key, extra.value) for extra in sorted_extras]
@@ -664,18 +663,18 @@ def test_13_get_package_in_past(self):
 
         second_dictized = self.remove_changable_columns(package_dictize(anna1, context))
 
-        first_dictized["name"] = u'annakarenina_changed' 
-        first_dictized["resources"][0]["url"] = u'new_url' 
+        first_dictized["name"] = u'annakarenina_changed'
+        first_dictized["resources"][0]["url"] = u'new_url'
 
         assert second_dictized == first_dictized
 
         context['revision_id'] = sorted_packages[2].revision_id #original state
         third_dictized = self.remove_changable_columns(package_dictize(anna1, context))
-        
-        second_dictized['name'] = u'annakarenina_changed2' 
-        second_dictized['resources'][0]['url'] = u'new_url2' 
-        second_dictized['tags'][0]['name'] = u'new_tag' 
-        second_dictized['extras'][0]['value'] = u'"new_value"' 
+
+        second_dictized['name'] = u'annakarenina_changed2'
+        second_dictized['resources'][0]['url'] = u'new_url2'
+        second_dictized['tags'][0]['name'] = u'new_tag'
+        second_dictized['extras'][0]['value'] = u'"new_value"'
         second_dictized['state'] = 'pending'
 
         assert second_dictized == third_dictized
@@ -703,7 +702,7 @@ def test_13_get_package_in_past(self):
             u'webstore_url': None})
 
         third_dictized['tags'].insert(1, {'name': u'newnew_tag', 'state': 'active'})
-        third_dictized['extras'].insert(0, {'key': 'david', 
+        third_dictized['extras'].insert(0, {'key': 'david',
                                          'value': u'"new_value"',
                                          'state': u'active'})
         third_dictized['state'] = 'active'
@@ -750,7 +749,7 @@ def test_14_resource_no_id(self):
 
         res_dictized = self.remove_changable_columns(resource_dictize(res, context))
 
-        assert res_dictized == new_resource, res_dictized 
+        assert res_dictized == new_resource, res_dictized
 
     def test_15_api_to_dictize(self):
 
@@ -852,7 +851,7 @@ def test_16_group_dictized(self):
         group_dict_save(group_dict, context)
         model.Session.commit()
         model.Session.remove()
-        
+
         group = model.Session.query(model.Group).filter_by(name=u'help').one()
 
         context = {"model": model,
@@ -892,7 +891,7 @@ def test_16_group_dictized(self):
                                   'maintainer_email': None,
                                   'type': None,
                                   'name': u'annakarenina3',
-                                  'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n \nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
+                                  'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n\nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
                                   'state': u'active',
                                   'capacity' : 'in',
                                   'title': u'A Novel By Tolstoy',
@@ -907,7 +906,7 @@ def test_16_group_dictized(self):
                                   'maintainer_email': None,
                                   'type': None,
                                   'name': u'annakarenina2',
-                                  'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n \nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
+                                  'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n\nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
                                   'state': u'active',
                                   'title': u'A Novel By Tolstoy',
                                   'url': u'http://www.annakarenina.com',
@@ -1006,3 +1005,47 @@ def test_20_activity_save(self):
 
         # We didn't pass in any data so this should be empty.
         assert not got['data']
+
+
+    def test_21_package_dictization_with_deleted_group(self):
+        """
+        Ensure that the dictization does not return groups that the dataset has
+        been removed from.
+        """
+        # Create a new dataset and 2 new groups
+        model.repo.new_revision()
+        pkg = model.Package(name='testing-deleted-groups')
+        group_1 = model.Group(name='test-group-1')
+        group_2 = model.Group(name='test-group-2')
+        model.Session.add(pkg)
+        model.Session.add(group_1)
+        model.Session.add(group_2)
+        model.Session.flush()
+
+        # Add the dataset to group_1, and signal that the dataset used
+        # to be a member of group_2 by setting its membership state to 'deleted'
+        membership_1 = model.Member(table_id = pkg.id,
+                                    table_name = 'package',
+                                    group = group_1,
+                                    group_id = group_1.id,
+                                    state = 'active')
+
+        membership_2 = model.Member(table_id = pkg.id,
+                                    table_name = 'package',
+                                    group = group_2,
+                                    group_id = group_2.id,
+                                    state = 'deleted')
+
+        model.Session.add(membership_1)
+        model.Session.add(membership_2)
+        model.repo.commit()
+
+        # Dictize the dataset
+        context = {"model": model,
+                   "session": model.Session}
+
+        result = package_dictize(pkg, context)
+        self.remove_changable_columns(result)
+        assert_not_in('test-group-2', [ g['name'] for g in result['groups'] ])
+        assert_in('test-group-1', [ g['name'] for g in result['groups'] ])
+
diff --git a/ckan/tests/lib/test_dictization_schema.py b/ckan/tests/lib/test_dictization_schema.py
index cd4ff7f7cd4..078b6b04f03 100644
--- a/ckan/tests/lib/test_dictization_schema.py
+++ b/ckan/tests/lib/test_dictization_schema.py
@@ -74,7 +74,7 @@ def test_1_package_schema(self):
                                  'groups': [{'name': u'david'}, {'name': u'roger'}],
                                  'license_id': u'other-open',
                                  'name': u'anna2',
-                                 'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n \nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
+                                 'notes': u'Some test notes\n\n### A 3rd level heading\n\n**Some bolded text.**\n\n*Some italicized text.*\n\nForeign characters:\nu with umlaut \xfc\n66-style quote \u201c\nforeign word: th\xfcmb\n\nNeeds escaping:\nleft arrow <\n\n<http://ckan.net/>\n\n',
                                  'resources': [{'alt_url': u'alt123',
                                                 'description': u'Full text. Needs escaping: " Umlaut: \xfc',
                                                 'format': u'plain text',
@@ -102,7 +102,7 @@ def test_1_package_schema(self):
         data['name'] = u'annakarenina'
         data.pop("title")
         data["resources"][0]["url"] = 'fsdfafasfsaf'
-        data["resources"][1].pop("url") 
+        data["resources"][1].pop("url")
 
         converted_data, errors = validate(data, default_package_schema(), self.context)
 
@@ -142,9 +142,13 @@ def test_2_group_schema(self):
                                  'id': group.id,
                                  'name': u'david',
                                  'type': u'group',
-                                 'packages': sorted([{'id': group_pack[0].id},
+                                 'packages': sorted([{'id': group_pack[0].id,
+                                                    'name': group_pack[0].name,
+                                                    'title': group_pack[0].title},
                                               {'id': group_pack[1].id,
-                                               }], key=lambda x:x["id"]),
+                                              'name': group_pack[1].name,
+                                              'title':group_pack[1].title}],
+                                              key=lambda x:x["id"]),
                                  'title': u"Dave's books",
                                  'approval_status': u'approved'}
 
@@ -167,7 +171,7 @@ def test_3_tag_schema_allows_spaces(self):
         ignored = ""
         data = {
             'name': u'with space',
-            'revision_timestamp': ignored, 
+            'revision_timestamp': ignored,
             'state': ignored
             }
 
diff --git a/ckan/tests/lib/test_helpers.py b/ckan/tests/lib/test_helpers.py
index 2500c64b69e..b7eeacbf02b 100644
--- a/ckan/tests/lib/test_helpers.py
+++ b/ckan/tests/lib/test_helpers.py
@@ -3,6 +3,8 @@
 import datetime
 from nose.tools import assert_equal
 
+from pylons import config 
+
 from ckan.tests import *
 from ckan.lib import helpers as h
 
@@ -54,10 +56,72 @@ def test_time_ago_in_words_from_str(self):
     def test_gravatar(self):
         email = 'zephod@gmail.com'
         expected =['<a href="https://gravatar.com/"',
-                '<img src="http://gravatar.com/avatar/7856421db6a63efa5b248909c472fbd2?s=200&amp;d=identicon"', '</a>']
+                '<img src="http://gravatar.com/avatar/7856421db6a63efa5b248909c472fbd2?s=200&amp;d=mm"', '</a>']
+        # Hash the email address
+        import hashlib
+        email_hash = hashlib.md5(email).hexdigest()
+        res = h.linked_gravatar(email_hash, 200, default='mm')
+        for e in expected:
+            assert e in res, (e,res)
+
+    def test_gravatar_config_set_default(self):
+        """Test when default gravatar is None, it is pulled from the config file"""
+        email = 'zephod@gmail.com'
+        default = config.get('ckan.gravatar_default', 'identicon')
+        expected =['<a href="https://gravatar.com/"',
+                   '<img src="http://gravatar.com/avatar/7856421db6a63efa5b248909c472fbd2?s=200&amp;d=%s"' % default,
+                   '</a>']
         # Hash the email address
         import hashlib
         email_hash = hashlib.md5(email).hexdigest()
         res = h.linked_gravatar(email_hash, 200)
         for e in expected:
             assert e in res, (e,res)
+
+    def test_gravatar_encodes_url_correctly(self):
+        """Test when the default gravatar is a url, it gets urlencoded"""
+        email = 'zephod@gmail.com'
+        default = 'http://example.com/images/avatar.jpg'
+        expected =['<a href="https://gravatar.com/"',
+                   '<img src="http://gravatar.com/avatar/7856421db6a63efa5b248909c472fbd2?s=200&amp;d=http%3A%2F%2Fexample.com%2Fimages%2Favatar.jpg"',
+                   '</a>']
+        # Hash the email address
+        import hashlib
+        email_hash = hashlib.md5(email).hexdigest()
+        res = h.linked_gravatar(email_hash, 200, default=default)
+        for e in expected:
+            assert e in res, (e,res)
+
+    def test_parse_rfc_2822_simple_case(self):
+        """
+        Parse "Tue, 15 Nov 1994 12:45:26" successfully.
+
+        No zone info.
+        """
+        dt = h.parse_rfc_2822_date('Tue, 15 Nov 1994 12:45:26')
+        assert_equal(dt.isoformat(), '1994-11-15T12:45:26')
+    
+    def test_parse_rfc_2822_gmt_case(self):
+        """
+        Parse "Tue, 15 Nov 1994 12:45:26 GMT" successfully.
+
+        GMT obs-zone specified
+        """
+        dt = h.parse_rfc_2822_date('Tue, 15 Nov 1994 12:45:26 GMT')
+        assert_equal(dt.isoformat(), '1994-11-15T12:45:26')
+
+    def test_parse_rfc_2822_with_offset(self):
+        """
+        Parse "Tue, 15 Nov 1994 12:45:26 +0700" successfully.
+        """
+        dt = h.parse_rfc_2822_date('Tue, 15 Nov 1994 12:45:26 +0700')
+        assert_equal(dt.isoformat(), '1994-11-15T05:45:26')
+
+    def test_parse_rfc_2822_ignoring_offset(self):
+        """
+        Parse "Tue, 15 Nov 1994 12:45:26 +0700" successfully.
+        """
+        dt = h.parse_rfc_2822_date('Tue, 15 Nov 1994 12:45:26 +0700', tz_aware=False)
+        assert_equal(dt.isoformat(), '1994-11-15T12:45:26')
+
+
diff --git a/ckanext/publisher_form/forms.py b/ckanext/publisher_form/forms.py
index 216d9f6f2ca..aeac790bb45 100644
--- a/ckanext/publisher_form/forms.py
+++ b/ckanext/publisher_form/forms.py
@@ -19,6 +19,7 @@
 from ckan.lib.navl.dictization_functions import DataError, flatten_dict, unflatten
 from ckan.plugins import IDatasetForm, IGroupForm, IConfigurer
 from ckan.plugins import implements, SingletonPlugin
+from ckan.logic import check_access
 
 from ckan.lib.navl.validators import (ignore_missing,
                                       not_empty,
@@ -31,13 +32,13 @@
 
 class PublisherForm(SingletonPlugin):
     """
-    This plugin implements an IGroupForm for form associated with a 
+    This plugin implements an IGroupForm for form associated with a
     publisher group. ``IConfigurer`` is used to add the local template
     path and the IGroupForm supplies the custom form.
     """
     implements(IGroupForm, inherit=True)
-    implements(IConfigurer, inherit=True)    
-    
+    implements(IConfigurer, inherit=True)
+
     def update_config(self, config):
         """
         This IConfigurer implementation causes CKAN to look in the
@@ -49,12 +50,12 @@ def update_config(self, config):
                                     'publisher_form', 'templates')
         config['extra_template_paths'] = ','.join([template_dir,
                 config.get('extra_template_paths', '')])
-            
+
     def group_form(self):
         """
         Returns a string representing the location of the template to be
         rendered.  e.g. "forms/group_form.html".
-        """        
+        """
         return 'publisher_form.html'
 
     def group_types(self):
@@ -75,11 +76,11 @@ def is_fallback(self):
         Returns true iff this provides the fallback behaviour, when no other
         plugin instance matches a group's type.
 
-        As this is not the fallback controller we should return False.  If 
+        As this is not the fallback controller we should return False.  If
         we were wanting to act as the fallback, we'd return True
         """
-        return False                
-                
+        return False
+
     def form_to_db_schema(self):
         """
         Returns the schema for mapping group data from a form to a format
@@ -93,7 +94,7 @@ def db_to_form_schema(self):
         format suitable for the form (optional)
         """
         return {}
-        
+
     def check_data_dict(self, data_dict):
         """
         Check if the return data is correct.
@@ -104,22 +105,43 @@ def check_data_dict(self, data_dict):
     def setup_template_variables(self, context, data_dict):
         """
         Add variables to c just prior to the template being rendered. We should
-        use the available groups for the current user, but should be optional 
+        use the available groups for the current user, but should be optional
         in case this is a top level group
-        """         
-        #c.user_groups = c.userobj.get_groups('publisher')
-        c.user_groups = ['One', 'Two', 'Three']
-               
-               
+        """
+        c.body_class = "group edit"
+        c.is_sysadmin = Authorizer().is_sysadmin(c.user)
+        if 'group' in context:
+            group = context['group']
+
+            try:
+                check_access('group_update', context)
+                c.is_superuser_or_groupadmin = True
+            except NotAuthorized:
+                c.is_superuser_or_groupadmin = False
+
+            c.possible_parents = model.Session.query(model.Group).\
+                   filter(model.Group.state == 'active').\
+                   filter(model.Group.type == 'publisher').\
+                   filter(model.Group.name != group.id ).order_by(model.Group.title).all()
+
+            c.parent = None
+            grps = group.get_groups('publisher')
+            if grps:
+                c.parent = grps[0]
+
+            c.users = group.members_of_type(model.User)
+
+
+
 class PublisherDatasetForm(SingletonPlugin):
     """
-        This plugin implements a new publisher form for cases where we 
+        This plugin implements a new publisher form for cases where we
         want to enforce group (type=publisher) membership on a dataset.
 
     """
     implements(IDatasetForm, inherit=True)
-    implements(IConfigurer, inherit=True)    
-    
+    implements(IConfigurer, inherit=True)
+
     def update_config(self, config):
         """
         This IConfigurer implementation causes CKAN to look in the
@@ -131,12 +153,12 @@ def update_config(self, config):
                                     'publisher_form', 'templates')
         config['extra_template_paths'] = ','.join([template_dir,
                 config.get('extra_template_paths', '')])
-                
+
     def package_form(self):
         """
         Returns a string representing the location of the template to be
         rendered.  e.g. "package/new_package_form.html".
-        """        
+        """
         return 'dataset_form.html'
 
     def is_fallback(self):
@@ -144,7 +166,7 @@ def is_fallback(self):
         Returns true iff this provides the fallback behaviour, when no other
         plugin instance matches a package's type.
 
-        As this is not the fallback controller we should return False.  If 
+        As this is not the fallback controller we should return False.  If
         we were wanting to act as the fallback, we'd return True
         """
         return True
@@ -166,14 +188,14 @@ def setup_template_variables(self, context, data_dict=None):
         """
         Adds variables to c just prior to the template being rendered that can
         then be used within the form
-        """        
+        """
         c.licences = [('', '')] + model.Package.get_license_options()
         c.publishers = [('Example publisher', 'Example publisher 2')]
         c.is_sysadmin = Authorizer().is_sysadmin(c.user)
         c.resource_columns = model.Resource.get_columns()
         c.groups_available = c.userobj.get_groups('publisher') if c.userobj else []
-            
-        
+
+
         ## This is messy as auths take domain object not data_dict
         pkg = context.get('package') or c.pkg
         if pkg:
@@ -186,7 +208,7 @@ def form_to_db_schema(self):
         suitable for the database.
         """
         return package_form_schema()
-    
+
     def db_to_form_schema(data):
         """
         Returns the schema for mapping package data from the database into a
@@ -200,4 +222,3 @@ def check_data_dict(self, data_dict):
         """
         pass
 
-               
\ No newline at end of file
diff --git a/setup.py b/setup.py
index 00ca8089d84..2beeffd89cf 100644
--- a/setup.py
+++ b/setup.py
@@ -70,7 +70,7 @@
     rights = ckan.lib.authztool:RightsCommand
     roles = ckan.lib.authztool:RolesCommand
     celeryd = ckan.lib.cli:Celery
-    
+
     [console_scripts]
     ckan-admin = bin.ckan_admin:Command
 
diff --git a/test-core.ini b/test-core.ini
index f2fa1f4a2cd..48862cfd602 100644
--- a/test-core.ini
+++ b/test-core.ini
@@ -25,7 +25,7 @@ ckan.site_logo = /images/ckan_logo_fullname_long.png
 ckan.site_description =
 package_form = standard
 ckan.plugins = synchronous_search
-licenses_group_url = 
+licenses_group_url =
 # pyamqplib or queue
 carrot_messaging_library = queue
 ckan.site_url = http://test.ckan.net
@@ -48,7 +48,7 @@ apikey_header_name = X-Non-Standard-CKAN-API-Key
 ckan.plugins = stats test_tag_vocab_plugin
 
 # use <strong> so we can check that html is *not* escaped
-ckan.template_head_end = <link rel="stylesheet" href="TEST_TEMPLATE_HEAD_END.css" type="text/css"> 
+ckan.template_head_end = <link rel="stylesheet" href="TEST_TEMPLATE_HEAD_END.css" type="text/css">
 
 # use <strong> so we can check that html is *not* escaped
 ckan.template_footer_end = <strong>TEST TEMPLATE_FOOTER_END TEST</strong>
@@ -81,13 +81,13 @@ handlers = console
 
 [logger_ckan]
 qualname = ckan
-handlers = 
+handlers =
 level = INFO
 
 [logger_sqlalchemy]
 handlers =
 qualname = sqlalchemy.engine
-level = WARN  
+level = WARN
 
 [handler_console]
 class = StreamHandler