Fri, 22 Feb 2008 12:46:51 -0500 |
Dan |
Fixed: RenderMan::getPage() failing with access denial when fetching template and view_source results in deny
|
changeset |
files
|
Fri, 01 Feb 2008 22:31:57 -0500 |
Dan |
Made all captcha fields case-insensitive (thanks pkeating)
|
changeset |
files
|
Thu, 31 Jan 2008 22:28:40 -0500 |
Dan |
Merging scribus and nighthawk branches
|
changeset |
files
|
Thu, 31 Jan 2008 22:28:12 -0500 |
Dan |
Fixed jBox menus failing to appear when window scrolled down
|
changeset |
files
|
Thu, 31 Jan 2008 21:52:39 -0500 |
Dan |
Fixed special pages being returned with subpage information inappropriately from $paths->get_pageid_from_url()
|
changeset |
files
|
Mon, 28 Jan 2008 23:07:32 -0500 |
Dan |
Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
|
changeset |
files
|
Mon, 28 Jan 2008 23:06:38 -0500 |
Dan |
Re-applying the revision with the comment fix (bad merge a couple revs back)
|
changeset |
files
|
Sun, 27 Jan 2008 23:43:24 -0500 |
Dan |
Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
|
changeset |
files
|
Wed, 23 Jan 2008 19:36:42 -0500 |
Dan |
Merging in a couple revisions from Nighthawk
|
changeset |
files
|
Wed, 23 Jan 2008 19:36:16 -0500 |
Dan |
Fixed case-sensitive file extensions
|
changeset |
files
|
Sun, 20 Jan 2008 23:18:03 -0500 |
Dan |
Fixed broken regenCaptcha() in Special:Register
|
changeset |
files
|
Sat, 19 Jan 2008 00:47:52 -0500 |
Dan |
Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
|
changeset |
files
|
Fri, 18 Jan 2008 10:35:33 -0500 |
Dan |
Removed all PostgreSQL support from the installer as per http://enanocms.org/News:1200114064; installer support for Postgres is available in the 1.1 branch now
|
changeset |
files
|
Wed, 09 Jan 2008 22:23:09 -0500 |
Dan |
PHP4 fix: sidebar missing in installer UI: problem was wrongly named constructor for templateIndividualSafe
|
changeset |
files
|
Wed, 09 Jan 2008 22:13:42 -0500 |
Dan |
Fix undefined E_STRICT under PHP 4; add PHP 4 deprecation notice in admin panel
|
changeset |
files
|
Tue, 01 Jan 2008 22:50:49 -0500 |
Dan |
Installer works again now (for MySQL only)
|
changeset |
files
|
Tue, 01 Jan 2008 22:30:53 -0500 |
Dan |
Adding a few stray files and removing the no-longer-needed Creative Commons Attribution 2.0 license (no more libraries under that license are included with Enano); adding hooks pageprocess_render_{head,tail} to be run before and after the final page render, respectively.
|
changeset |
files
|
Mon, 31 Dec 2007 21:16:27 -0500 |
Dan |
Integrating patch for PHP 6.0-dev compatibility
|
changeset |
files
|
Thu, 27 Dec 2007 11:35:00 -0500 |
Dan |
Fixed search indexer causing duplicate keys when two "words" of 64+ characters encountered and first 64 characters are the same (thanks Vadi); attempt to fix onunload confirmation during page editing
|
changeset |
files
|
Sun, 23 Dec 2007 17:58:21 -0500 |
Dan |
Corrected licensing issue on YoungPup's DOM-Drag (it is now public domain -> GPLv2+ for Enano); fixed wrongful access denial under specific circumstances (fetch_page_acl() on nonexistent page + wiki mode)
|
changeset |
files
|
Wed, 19 Dec 2007 17:15:48 -0500 |
Dan |
Fixed: $paths->page_id not set when the page doesn't exist; finally fixed garbled page names for IP addresses
|
changeset |
files
|
Tue, 18 Dec 2007 23:47:33 -0500 |
Dan |
Merging in a few stray changes from the MySQL branch
|
changeset |
files
|
Tue, 18 Dec 2007 23:45:43 -0500 |
Dan |
A number of updates to the graphing code (it should actually work now)
|
changeset |
files
|
Tue, 18 Dec 2007 23:44:55 -0500 |
Dan |
Many changes. Installer with PostgreSQL is broken badly and will be for some time.
|
changeset |
files
|
Sat, 15 Dec 2007 18:11:59 -0500 |
Dan |
Set Content-type on AJAX login key request to application/json to hopefully block ad injection
|
changeset |
files
|
Sat, 15 Dec 2007 18:10:14 -0500 |
Dan |
SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
|
changeset |
files
|
Wed, 12 Dec 2007 21:46:28 -0500 |
Dan |
Stable release: Enano CMS 1.0.3 (Dyrad)
1.0.3
|
changeset |
files
|
Wed, 12 Dec 2007 21:37:40 -0500 |
Dan |
Tagging latest revision for rebrand
|
changeset |
files
|
Wed, 12 Dec 2007 21:37:23 -0500 |
Dan |
Rebrand as 1.0.3 (Dyrad)
|
changeset |
files
|
Wed, 12 Dec 2007 21:04:20 -0500 |
Dan |
SECURITY: CRITICAL: Fix SQL injection in admin CP page editor
|
changeset |
files
|
Tue, 11 Dec 2007 19:15:26 -0500 |
Dan |
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
|
changeset |
files
|
Mon, 03 Dec 2007 18:45:37 -0500 |
Dan |
Improved physical pages: they support comments and have their own dedicated namespace now. Still some consistency fixes to make.
|
changeset |
files
|
Mon, 03 Dec 2007 17:36:25 -0500 |
Dan |
Deprecated debugConsole and removed all calls to it. Added a lot of comments to common.php. Added support for "anonymous pages" that are created when the Enano API is loaded from an external script. Fixed missing border-bottom on Type 2 sidebar blocks in Oxygen.
|
changeset |
files
|
Sat, 01 Dec 2007 02:39:49 -0500 |
Dan |
Fixed: sanitation loop on ampersands in encodeAttribute() (this was MediaWiki's fault)
|
changeset |
files
|
Sat, 01 Dec 2007 00:35:42 -0500 |
Dan |
Stable release: Enano CMS 1.0.2 (Coblynau)
1.0.2
|
changeset |
files
|
Sat, 01 Dec 2007 00:35:15 -0500 |
Dan |
Dummy revision to artificially increment build number
|
changeset |
files
|
Sat, 01 Dec 2007 00:34:03 -0500 |
Dan |
Fix missing dependency on search.php in upgrade script
|
changeset |
files
|
Sat, 01 Dec 2007 00:32:58 -0500 |
Dan |
Detagging release due to stupid upgrade fix
|
changeset |
files
|
Fri, 30 Nov 2007 23:09:44 -0500 |
Dan |
Stable release: Enano CMS 1.0.2 (Coblynau)
|
changeset |
files
|
Fri, 30 Nov 2007 22:16:26 -0500 |
Dan |
How could I forget the TRADEMARK SIGN?
|
changeset |
files
|
Fri, 30 Nov 2007 22:13:03 -0500 |
Dan |
Updated artwork with finalized new/revised logo; finalized upgrade schema
|
changeset |
files
|
Wed, 28 Nov 2007 15:24:23 -0500 |
Dan |
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
|
changeset |
files
|
Wed, 28 Nov 2007 14:47:42 -0500 |
Dan |
Oops, never merged in updates from ee1fc84f12a8 (240)
|
changeset |
files
|
Wed, 28 Nov 2007 14:46:03 -0500 |
Dan |
Hopefully now all calls to escape() are replaced with ajaxEscape() in response to Tomasz's forum post; remove deprecated version of show_category_info() from functions.php
|
changeset |
files
|
Sun, 25 Nov 2007 21:40:42 -0500 |
Dan |
SECURITY: Tighten default allowed file types; make sure search index rebuild is performed on upgrade
|
changeset |
files
|
Sun, 25 Nov 2007 21:18:52 -0500 |
Dan |
Final development freeze for release: 1.0.2 (Coblynau); only critical bugs fixed until GA
|
changeset |
files
|
Sun, 25 Nov 2007 20:24:16 -0500 |
Dan |
Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes
devel-freeze
|
changeset |
files
|
Sun, 25 Nov 2007 19:23:50 -0500 |
Dan |
Nothing special. ksort()ing list of allowed filetypes in the admin panel to make editing the list marginally easier
|
changeset |
files
|
Sun, 25 Nov 2007 19:03:50 -0500 |
Dan |
Added OpenDocument MIME types and extensions; make sql_report page show total time taken for SQL queries
|
changeset |
files
|
Sun, 25 Nov 2007 17:53:03 -0500 |
Dan |
Fixed highlighting in search results; changed search algorithm to give more score for terms found in page title; hopefully (hackishly) fixed login_key_cache getting too long
|
changeset |
files
|
Sat, 24 Nov 2007 13:16:20 -0500 |
Dan |
A couple of minor tweaks to the upgrade schema; tests pending
|
changeset |
files
|
Sat, 24 Nov 2007 02:11:43 -0500 |
Dan |
The template-cache incompatibility bug has finally been isolated, so a function to clear the template cache was added into the upgrade script for 1.0.2
|
changeset |
files
|
Sat, 24 Nov 2007 01:35:12 -0500 |
Dan |
Fixed a few major bugs with the upgrade script and the config file not getting loaded properly due to IN_ENANO_INSTALL
|
changeset |
files
|
Sat, 24 Nov 2007 01:04:30 -0500 |
Dan |
Hopefully once again fix scriptPath detection in dbal.php
|
changeset |
files
|
Sat, 24 Nov 2007 01:02:55 -0500 |
Dan |
Fix missing REPORT_URI variable in template_nodb
|
changeset |
files
|
Sat, 24 Nov 2007 00:53:23 -0500 |
Dan |
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
|
changeset |
files
|
Fri, 23 Nov 2007 17:59:24 -0500 |
Dan |
Changed all urlname/page_id columns to varchar(255) because 63 characters just isn't long enough
|
changeset |
files
|
Thu, 22 Nov 2007 02:10:12 -0500 |
Dan |
Made the username validation regexp in install less picky since it was blacklisting two of the letters in my name. >.<
|
changeset |
files
|
Wed, 21 Nov 2007 22:50:08 -0500 |
Dan |
Feature freezing repository for Coblynau release
|
changeset |
files
|
Wed, 21 Nov 2007 22:49:37 -0500 |
Dan |
Entering feature freeze for Coblynau release
feature-freeze
|
changeset |
files
|
Wed, 21 Nov 2007 21:56:49 -0500 |
Dan |
AJAX login box now briefly shows the message "success" when a login is successful
|
changeset |
files
|
Wed, 21 Nov 2007 20:40:26 -0500 |
Dan |
Deprecated and removed Oxygen css-simple/bleu.css
|
changeset |
files
|
Wed, 21 Nov 2007 20:14:14 -0500 |
Dan |
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
|
changeset |
files
|
Wed, 21 Nov 2007 15:18:15 -0500 |
Dan |
Re-add search_results hook and changed column type of search_index.word to varchar(64) in installer schema
|
changeset |
files
|
Wed, 21 Nov 2007 15:13:06 -0500 |
Dan |
Merging in new search algo from Scribus
|
changeset |
files
|
Wed, 21 Nov 2007 15:11:51 -0500 |
Dan |
Minor fix for the password meter in Admin:UserManager
|
changeset |
files
|
Wed, 21 Nov 2007 15:10:57 -0500 |
Dan |
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
|
changeset |
files
|
Sun, 18 Nov 2007 18:44:55 -0500 |
Dan |
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
|
changeset |
files
|
Sat, 17 Nov 2007 23:30:23 -0500 |
Dan |
Fixed a couple of renaming issues in the installer
|
changeset |
files
|
Sat, 17 Nov 2007 23:09:12 -0500 |
Dan |
Hopefully managed to put enough hacks in there to make renaming the config file the last step, so if it fails, it can be done manually
|
changeset |
files
|
Sat, 17 Nov 2007 22:56:26 -0500 |
Dan |
Removed stray debug message in installer
|
changeset |
files
|
Sat, 17 Nov 2007 21:09:31 -0500 |
Dan |
Well I'm an idiot - the fulltext index on page_text was missing from a default installation. It didn't break searches but probably slowed them down tremendously. Also set engine to MyISAM on page_text to avoid cryptic error messages from MySQL.
|
changeset |
files
|
Sat, 17 Nov 2007 20:31:01 -0500 |
Dan |
Major improvements in the security of the CAPTCHA system (no SQL injection or anything like that); fixed denied form submission due to _af_acting on form object wrongly switched to true
|
changeset |
files
|
Sat, 17 Nov 2007 18:54:13 -0500 |
Dan |
Javascript validation for install DB info form didn't allow dashes
|
changeset |
files
|
Sat, 17 Nov 2007 18:51:06 -0500 |
Dan |
Changed default content for the main page to something a lot more user-friendly and helpful
|
changeset |
files
|
Sat, 17 Nov 2007 15:40:04 -0500 |
Dan |
Rewrote some security code in PageUtils::savepage to accommodate the ACL system better; there was an issue with non-admin users saving pages on which they have edit rights but wiki mode is turned off
|
changeset |
files
|
Sat, 17 Nov 2007 15:02:08 -0500 |
Dan |
Fixed: secure-cookie option is no longer set if $_SERVER['HTTPS'] is set but == "off"
|
changeset |
files
|
Sat, 17 Nov 2007 14:57:00 -0500 |
Dan |
Patched in dash-in-database-name fix from unstable
|
changeset |
files
|
Thu, 15 Nov 2007 18:02:14 -0500 |
Dan |
Merge in installer fixes from 204 (ba28d43a6b86)
|
changeset |
files
|
Thu, 15 Nov 2007 18:00:39 -0500 |
Dan |
Merging in all changes from revision 185 (90b7a52bea45)
|
changeset |
files
|
Thu, 15 Nov 2007 17:52:53 -0500 |
Dan |
Fixed a few (more) MySQL issues with the installer and dashes in the database name
|
changeset |
files
|
Fri, 09 Nov 2007 23:36:49 -0500 |
Dan |
Database name can now contain dashes (as per requested at http://forum.enanocms.org/viewtopic.php?f=5&t=14); corrected some installer behavior issues with connecting as root and setting up permissions resulting in logs not being flushed, configs not being inserted, and what have you.
|
changeset |
files
|
Fri, 09 Nov 2007 11:14:20 -0500 |
Dan |
Cleaned up some HTML in the installer; corrected some phpDoc syntax errors
|
changeset |
files
|
Mon, 05 Nov 2007 20:00:41 -0500 |
Dan |
Fix installation with MySQL root option
|
changeset |
files
|
Mon, 05 Nov 2007 19:50:40 -0500 |
Dan |
Out with the old, in with the new. Welcome to Enano's new installer framework!
|
changeset |
files
|
Mon, 05 Nov 2007 17:11:37 -0500 |
Dan |
Second try (need config.php to exist before the API can be started, duh)
|
changeset |
files
|
Mon, 05 Nov 2007 17:07:22 -0500 |
Dan |
Renaming config.php and .htaccess to *.new to allow tarbombing an Enano installation with no adverse effects; first attempt, may not work right.
|
changeset |
files
|
Sat, 03 Nov 2007 21:32:26 -0400 |
Dan |
"Fix" e-mail parse bugs in installer
|
changeset |
files
|
Sat, 03 Nov 2007 18:26:24 -0400 |
Dan |
Fix PHP4 compatibility (function def. of password_score)
|
changeset |
files
|
Sat, 03 Nov 2007 14:15:14 -0400 |
Dan |
Alternate scaling using GD is implemented now; images will be scaled with ImageMagick if enabled and working; else, GD will be used. No UI changes to speak of, but a check in the installer will be added in a later commit
|
changeset |
files
|
Fri, 02 Nov 2007 15:38:20 -0400 |
Dan |
Fixed: invalid smartform input to Admin:UserManager when errors present and changing own account; [demo mode] default user can no longer change password
|
changeset |
files
|
Thu, 01 Nov 2007 15:13:27 -0400 |
Dan |
F'ing private message message_read column...
|
changeset |
files
|
Thu, 01 Nov 2007 10:06:19 -0400 |
Dan |
Fixed: radiobutton state in Admin:GeneralConfig not remembered when registration disabled
|
changeset |
files
|
Tue, 23 Oct 2007 12:30:08 -0400 |
Dan |
Slight HTTPS compatibility improvements
|
changeset |
files
|
Sun, 21 Oct 2007 21:26:11 -0400 |
Dan |
Nothing special at all. Unnamed sidebar blocks will show the text <Unnamed> instead of just showing nothing, thus making them renamable
|
changeset |
files
|
Sun, 21 Oct 2007 02:33:25 -0400 |
Dan |
[minor] added bottom margin for enanocms.org fading button
|
changeset |
files
|