Fri, 22 Feb 2008 12:46:51 -0500 Dan Fixed: RenderMan::getPage() failing with access denial when fetching template and view_source results in deny
Fri, 01 Feb 2008 22:31:57 -0500 Dan Made all captcha fields case-insensitive (thanks pkeating)
Thu, 31 Jan 2008 22:28:40 -0500 Dan Merging scribus and nighthawk branches
Thu, 31 Jan 2008 22:28:12 -0500 Dan Fixed jBox menus failing to appear when window scrolled down
Thu, 31 Jan 2008 21:52:39 -0500 Dan Fixed special pages being returned with subpage information inappropriately from $paths->get_pageid_from_url()
Mon, 28 Jan 2008 23:07:32 -0500 Dan Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
Mon, 28 Jan 2008 23:06:38 -0500 Dan Re-applying the revision with the comment fix (bad merge a couple revs back)
Sun, 27 Jan 2008 23:43:24 -0500 Dan Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
Wed, 23 Jan 2008 19:36:42 -0500 Dan Merging in a couple revisions from Nighthawk
Wed, 23 Jan 2008 19:36:16 -0500 Dan Fixed case-sensitive file extensions
Sun, 20 Jan 2008 23:18:03 -0500 Dan Fixed broken regenCaptcha() in Special:Register
Sat, 19 Jan 2008 00:47:52 -0500 Dan Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
Fri, 18 Jan 2008 10:35:33 -0500 Dan Removed all PostgreSQL support from the installer as per http://enanocms.org/News:1200114064; installer support for Postgres is available in the 1.1 branch now
Wed, 09 Jan 2008 22:23:09 -0500 Dan PHP4 fix: sidebar missing in installer UI: problem was wrongly named constructor for templateIndividualSafe
Wed, 09 Jan 2008 22:13:42 -0500 Dan Fix undefined E_STRICT under PHP 4; add PHP 4 deprecation notice in admin panel
Tue, 01 Jan 2008 22:50:49 -0500 Dan Installer works again now (for MySQL only)
Tue, 01 Jan 2008 22:30:53 -0500 Dan Adding a few stray files and removing the no-longer-needed Creative Commons Attribution 2.0 license (no more libraries under that license are included with Enano); adding hooks pageprocess_render_{head,tail} to be run before and after the final page render, respectively.
Mon, 31 Dec 2007 21:16:27 -0500 Dan Integrating patch for PHP 6.0-dev compatibility
Thu, 27 Dec 2007 11:35:00 -0500 Dan Fixed search indexer causing duplicate keys when two "words" of 64+ characters encountered and first 64 characters are the same (thanks Vadi); attempt to fix onunload confirmation during page editing
Sun, 23 Dec 2007 17:58:21 -0500 Dan Corrected licensing issue on YoungPup's DOM-Drag (it is now public domain -> GPLv2+ for Enano); fixed wrongful access denial under specific circumstances (fetch_page_acl() on nonexistent page + wiki mode)
Wed, 19 Dec 2007 17:15:48 -0500 Dan Fixed: $paths->page_id not set when the page doesn't exist; finally fixed garbled page names for IP addresses
Tue, 18 Dec 2007 23:47:33 -0500 Dan Merging in a few stray changes from the MySQL branch
Tue, 18 Dec 2007 23:45:43 -0500 Dan A number of updates to the graphing code (it should actually work now)
Tue, 18 Dec 2007 23:44:55 -0500 Dan Many changes. Installer with PostgreSQL is broken badly and will be for some time.
Sat, 15 Dec 2007 18:11:59 -0500 Dan Set Content-type on AJAX login key request to application/json to hopefully block ad injection
Sat, 15 Dec 2007 18:10:14 -0500 Dan SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
Wed, 12 Dec 2007 21:46:28 -0500 Dan Stable release: Enano CMS 1.0.3 (Dyrad) 1.0.3
Wed, 12 Dec 2007 21:37:40 -0500 Dan Tagging latest revision for rebrand
Wed, 12 Dec 2007 21:37:23 -0500 Dan Rebrand as 1.0.3 (Dyrad)
Wed, 12 Dec 2007 21:04:20 -0500 Dan SECURITY: CRITICAL: Fix SQL injection in admin CP page editor
Tue, 11 Dec 2007 19:15:26 -0500 Dan Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Mon, 03 Dec 2007 18:45:37 -0500 Dan Improved physical pages: they support comments and have their own dedicated namespace now. Still some consistency fixes to make.
Mon, 03 Dec 2007 17:36:25 -0500 Dan Deprecated debugConsole and removed all calls to it. Added a lot of comments to common.php. Added support for "anonymous pages" that are created when the Enano API is loaded from an external script. Fixed missing border-bottom on Type 2 sidebar blocks in Oxygen.
Sat, 01 Dec 2007 02:39:49 -0500 Dan Fixed: sanitation loop on ampersands in encodeAttribute() (this was MediaWiki's fault)
Sat, 01 Dec 2007 00:35:42 -0500 Dan Stable release: Enano CMS 1.0.2 (Coblynau) 1.0.2
Sat, 01 Dec 2007 00:35:15 -0500 Dan Dummy revision to artificially increment build number
Sat, 01 Dec 2007 00:34:03 -0500 Dan Fix missing dependency on search.php in upgrade script
Sat, 01 Dec 2007 00:32:58 -0500 Dan Detagging release due to stupid upgrade fix
Fri, 30 Nov 2007 23:09:44 -0500 Dan Stable release: Enano CMS 1.0.2 (Coblynau)
Fri, 30 Nov 2007 22:16:26 -0500 Dan How could I forget the TRADEMARK SIGN?
Fri, 30 Nov 2007 22:13:03 -0500 Dan Updated artwork with finalized new/revised logo; finalized upgrade schema
Wed, 28 Nov 2007 15:24:23 -0500 Dan Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Wed, 28 Nov 2007 14:47:42 -0500 Dan Oops, never merged in updates from ee1fc84f12a8 (240)
Wed, 28 Nov 2007 14:46:03 -0500 Dan Hopefully now all calls to escape() are replaced with ajaxEscape() in response to Tomasz's forum post; remove deprecated version of show_category_info() from functions.php
Sun, 25 Nov 2007 21:40:42 -0500 Dan SECURITY: Tighten default allowed file types; make sure search index rebuild is performed on upgrade
Sun, 25 Nov 2007 21:18:52 -0500 Dan Final development freeze for release: 1.0.2 (Coblynau); only critical bugs fixed until GA
Sun, 25 Nov 2007 20:24:16 -0500 Dan Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes devel-freeze
Sun, 25 Nov 2007 19:23:50 -0500 Dan Nothing special. ksort()ing list of allowed filetypes in the admin panel to make editing the list marginally easier
Sun, 25 Nov 2007 19:03:50 -0500 Dan Added OpenDocument MIME types and extensions; make sql_report page show total time taken for SQL queries
Sun, 25 Nov 2007 17:53:03 -0500 Dan Fixed highlighting in search results; changed search algorithm to give more score for terms found in page title; hopefully (hackishly) fixed login_key_cache getting too long
Sat, 24 Nov 2007 13:16:20 -0500 Dan A couple of minor tweaks to the upgrade schema; tests pending
Sat, 24 Nov 2007 02:11:43 -0500 Dan The template-cache incompatibility bug has finally been isolated, so a function to clear the template cache was added into the upgrade script for 1.0.2
Sat, 24 Nov 2007 01:35:12 -0500 Dan Fixed a few major bugs with the upgrade script and the config file not getting loaded properly due to IN_ENANO_INSTALL
Sat, 24 Nov 2007 01:04:30 -0500 Dan Hopefully once again fix scriptPath detection in dbal.php
Sat, 24 Nov 2007 01:02:55 -0500 Dan Fix missing REPORT_URI variable in template_nodb
Sat, 24 Nov 2007 00:53:23 -0500 Dan Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Fri, 23 Nov 2007 17:59:24 -0500 Dan Changed all urlname/page_id columns to varchar(255) because 63 characters just isn't long enough
Thu, 22 Nov 2007 02:10:12 -0500 Dan Made the username validation regexp in install less picky since it was blacklisting two of the letters in my name. >.<
Wed, 21 Nov 2007 22:50:08 -0500 Dan Feature freezing repository for Coblynau release
Wed, 21 Nov 2007 22:49:37 -0500 Dan Entering feature freeze for Coblynau release feature-freeze
Wed, 21 Nov 2007 21:56:49 -0500 Dan AJAX login box now briefly shows the message "success" when a login is successful
Wed, 21 Nov 2007 20:40:26 -0500 Dan Deprecated and removed Oxygen css-simple/bleu.css
Wed, 21 Nov 2007 20:14:14 -0500 Dan Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Wed, 21 Nov 2007 15:18:15 -0500 Dan Re-add search_results hook and changed column type of search_index.word to varchar(64) in installer schema
Wed, 21 Nov 2007 15:13:06 -0500 Dan Merging in new search algo from Scribus
Wed, 21 Nov 2007 15:11:51 -0500 Dan Minor fix for the password meter in Admin:UserManager
Wed, 21 Nov 2007 15:10:57 -0500 Dan Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Sun, 18 Nov 2007 18:44:55 -0500 Dan Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Sat, 17 Nov 2007 23:30:23 -0500 Dan Fixed a couple of renaming issues in the installer
Sat, 17 Nov 2007 23:09:12 -0500 Dan Hopefully managed to put enough hacks in there to make renaming the config file the last step, so if it fails, it can be done manually
Sat, 17 Nov 2007 22:56:26 -0500 Dan Removed stray debug message in installer
Sat, 17 Nov 2007 21:09:31 -0500 Dan Well I'm an idiot - the fulltext index on page_text was missing from a default installation. It didn't break searches but probably slowed them down tremendously. Also set engine to MyISAM on page_text to avoid cryptic error messages from MySQL.
Sat, 17 Nov 2007 20:31:01 -0500 Dan Major improvements in the security of the CAPTCHA system (no SQL injection or anything like that); fixed denied form submission due to _af_acting on form object wrongly switched to true
Sat, 17 Nov 2007 18:54:13 -0500 Dan Javascript validation for install DB info form didn't allow dashes
Sat, 17 Nov 2007 18:51:06 -0500 Dan Changed default content for the main page to something a lot more user-friendly and helpful
Sat, 17 Nov 2007 15:40:04 -0500 Dan Rewrote some security code in PageUtils::savepage to accommodate the ACL system better; there was an issue with non-admin users saving pages on which they have edit rights but wiki mode is turned off
Sat, 17 Nov 2007 15:02:08 -0500 Dan Fixed: secure-cookie option is no longer set if $_SERVER['HTTPS'] is set but == "off"
Sat, 17 Nov 2007 14:57:00 -0500 Dan Patched in dash-in-database-name fix from unstable
Thu, 15 Nov 2007 18:02:14 -0500 Dan Merge in installer fixes from 204 (ba28d43a6b86)
Thu, 15 Nov 2007 18:00:39 -0500 Dan Merging in all changes from revision 185 (90b7a52bea45)
Thu, 15 Nov 2007 17:52:53 -0500 Dan Fixed a few (more) MySQL issues with the installer and dashes in the database name
Fri, 09 Nov 2007 23:36:49 -0500 Dan Database name can now contain dashes (as per requested at http://forum.enanocms.org/viewtopic.php?f=5&t=14); corrected some installer behavior issues with connecting as root and setting up permissions resulting in logs not being flushed, configs not being inserted, and what have you.
Fri, 09 Nov 2007 11:14:20 -0500 Dan Cleaned up some HTML in the installer; corrected some phpDoc syntax errors
Mon, 05 Nov 2007 20:00:41 -0500 Dan Fix installation with MySQL root option
Mon, 05 Nov 2007 19:50:40 -0500 Dan Out with the old, in with the new. Welcome to Enano's new installer framework!
Mon, 05 Nov 2007 17:11:37 -0500 Dan Second try (need config.php to exist before the API can be started, duh)
Mon, 05 Nov 2007 17:07:22 -0500 Dan Renaming config.php and .htaccess to *.new to allow tarbombing an Enano installation with no adverse effects; first attempt, may not work right.
Sat, 03 Nov 2007 21:32:26 -0400 Dan "Fix" e-mail parse bugs in installer
Sat, 03 Nov 2007 18:26:24 -0400 Dan Fix PHP4 compatibility (function def. of password_score)
Sat, 03 Nov 2007 14:15:14 -0400 Dan Alternate scaling using GD is implemented now; images will be scaled with ImageMagick if enabled and working; else, GD will be used. No UI changes to speak of, but a check in the installer will be added in a later commit
Fri, 02 Nov 2007 15:38:20 -0400 Dan Fixed: invalid smartform input to Admin:UserManager when errors present and changing own account; [demo mode] default user can no longer change password
Thu, 01 Nov 2007 15:13:27 -0400 Dan F'ing private message message_read column...
Thu, 01 Nov 2007 10:06:19 -0400 Dan Fixed: radiobutton state in Admin:GeneralConfig not remembered when registration disabled
Tue, 23 Oct 2007 12:30:08 -0400 Dan Slight HTTPS compatibility improvements
Sun, 21 Oct 2007 21:26:11 -0400 Dan Nothing special at all. Unnamed sidebar blocks will show the text <Unnamed> instead of just showing nothing, thus making them renamable
Sun, 21 Oct 2007 02:33:25 -0400 Dan [minor] added bottom margin for enanocms.org fading button
(0) -100 -96 tip