Projects

Symfony

Symfony is a web application framework for PHP5 projects. It aims to speed up the creation and maintenance of web applications, and to replace the repetitive coding tasks by power, control and pleasure. Based on the best practices of web development, thoroughly tried on several active ... [More] websites, symfony aims to speed up the creation and maintenance of web applications, and to replace the repetitive coding tasks by power, control and pleasure. Symfony provides a lot of features seamlessly integrated together, such as: * simple templating and helpers * cache management * smart URLs * scaffolding * multilingualism and I18N support * object model and MVC separation * Ajax support * enterprise ready [Less]

access.see.be

With access.see.be, a WAI-ARIA based Accessibility-Library, web developers can enhance their applications with accessible rich interface elements or can create full accessible rich internet applications without excluding users who depend on assistive technologies like screen readers. So the main aim ... [More] of universal design, the approach to design websites that can be used by all people without the need for adaptation or specialization, can be easily achieved. [Less]

prototypejs-packed

Prototype JavaScript framework, version 1.6.0 (c) 2005-2007 Sam Stephenson Prototype is freely distributable under the terms of an MIT-style license. For details, see the Prototype web site: http://www.prototypejs.org/

Sonia

Sonia allows you to set up a dashboard with information that is important to you. Think Panic's Status Board. At the moment, Sonia comes with Campfire, Foursquare, Github, Icinga, RSS, TfL, Twitter and Yahoo! Weather widgets.

Prado Component Repository

Some components created by the community to work with the PRADO PHP framework.

fsdocu

ATK module to create Business Process Managment documentation starting from some paper Module (list all field in a module with description and who is in charge of). Use AJAX and PROTOTYPE to create dynamic fields over the graphical image

phphtmllib

phpHtmlLib is now an application development framework for developing OOP style web applications in PHP. The application framework supports an MVC style architecture, Ajaxable and Cacheable interfaces for developing rich client web applications. It still contains the set of PHP classes and library ... [More] functions to help facilitate building, debugging, and rendering of XML, HTML, XHTML, WAP/WML Documents, and SVG (Scalable Vector Graphics) images as well as complex html Widgets . [Less]

prototype-slideshow

This library allows you to generate slide-show easily, and depends on Prototype.js.

Klassenbuch

An Open Source Ajax application that allows school classes to manage their homework in a central place, lets the students have discussions and share their photos in a easy-to-use online gallery.

google-caja

Try out Caja here! Caja allows websites to safely embed DHTML web applications from third parties, and enables rich interaction between the embedding page and the embedded applications. It uses an object-capability security model to allow for a wide range of flexible security policies, so that ... [More] the containing page can effectively control the embedded applications' use of user data and to allow gadgets to prevent interference between gadgets' UI elements. Today, some websites embed third-party code using iframes. This approach does not prevent a wide variety of attacks: redirection to phishing pages which could pretend to be a login page for the embedding application; stopping the browser from working until the user downloads malware; stealing history information about which sites a user has visited so that more target phishing attacks can be done; and port scanning the user's local network. Finally, even though a website can choose not to give data to an iframe app, once it has done so it can place no further restrictions on what the iframe app can do with it — it cannot stop the iframe app from sending that data elsewhere. Caja addresses these problems which are not addressed by iframe jails; and it does so in a very flexible way. If a container wishes to allow an embedded application to use a particular web service, but not to send arbitrary network requests, then it can give the application an object that interacts with that web service, but deny access to XMLHttpRequest. Under Caja, passing objects grants authority, and denying access to objects denies authority, as is typical in an object-capability environment. Information leakage can be prevented by allowing user data to be encapsulated in objects that can be rendered in user-readable form but not read by scripts ; we can prevent leakage without solving the problem of covert channels. Contacting the Caja TeamDiscussionsOur discussion group is the best place to contact us. First posts are moderated to remove spam, so don't worry if your post doesn't show up immediately. You can also find team members on the #caja IRC channel on freenode.net. Reporting Bugs & Security IssuesPlease report potential vulnerabilities using the private issue tracker, and bugs and feature requests via the public issue tracker. The Caja team encourages responsible disclosure, since production services rely on us for security. We will work to resolve the issue and make sure credit is given. ContributingThe Caja team includes people from a number of different companies and some private individuals. If you would like to contribute, introduce yourself on our discussion group. MotivationSome websites embed code in iframes, and pass user data between them. The use of these sites has thus far been limited to teenagers and others who are comfortable with some aspects of their lives being very public. The same development model — where one company provides a general storage layer for data, and third parties provide custom interfaces and extensions — has not been extended to systems that deal with valuable data. This development model is promising, though. Large software companies have to target their user-interface efforts at a mythical average user; the high costs of researching and understanding the needs of niches of users means that user interfaces tend to suffer from the "lowest common denominator" effect. But there are many developers who understand niche markets, and know how to write custom user interfaces and workflows. If we can safely embed third-party user interfaces and workflows into generic backends, we can encourage a market for embedded applications that will make the web experience much richer. Caja aims to allow that safe embedding. What is CajaCaja (pronounced "KA-ha"), is a Spanish word that means box, bank, cash register, vault; a container for valuables. A web developer uses traditional tools like HTML, JavaScript, and CSS; and Caja provides a compiler (a "cajoler") that takes the web application and produces a "cajoled" HTML web application. The cajoler tries to verify security properties by doing static analysis, and where it cannot it rewrites the input to add runtime checks. Since web applications make common use of browser APIs, e.g. the DOM APIs, that give a huge amount of control over the web page, Caja provides tamed APIs that virtualize portions of the DOM. A containing page can set up the embedding application's environment so that the embedded application thinks it is interacting with the DOM of a full page, but is in fact only manipulating a bounded portion of the containing page via a mechanism called virtual iframes. The JavaScript that a Caja application uses is written in a fail stop subset of JavaScript (actually EcmaScript5). This subset, called "Valija", includes almost the entire JavaScript language, but removes a few error-prone constructs such as with and restricts how eval may be used. NewsJust write your gadgets in Javascript/DHTML and they'll probably work right away. Try it! Caja on YAP, the Yahoo Application Platform Article on YDN discussing the benefits and gotchas of developing apps with Caja Containers looking to host gadgets on their pages Tim Oren explains Caja How to build Caja A sample host page for use by a container TalksSecure Collaboration - How Web Applications can Share and Still Be Paranoid Tradeoffs in Retrofitting Security: An Experience Report Cajoled GadgetUncajoled Gadget [Less]