HMAC functions are now standards-compliant (not a security issue). This BREAKS 1.1.6-hg passwords!

Added a basic plugin/hook framework for Javascript

[minor] changed heading format in mainpage-default

Fixed default ACLs

Added color specifications on input fields for admin and oxygen

Blah. Wrong type for those getConfig values.

Fixed: no default values in for avatar upload settings

[Oops] removed debug message in install-cli

Damn, forgot to add the version insertion back into schema

Major redesign of rendering pipeline that separates pages saved with MCE from pages saved with the plaintext editor (full description in long commit message) - Pages are now stored with an extra metadata field called page_format which is "wikitext" or "xhtml" - New $flags parameter + RENDER_* constants added that control RenderMan::render() behavior - Several other changes: * Added a sprite API for Javascript and made editor use sprites when possible * Removed a number of config options from the default install schema, replaced with second parameter to getConfig() calls * MessageBox in editor mostly replaced with miniPrompt * A few bugfixes related to password changes (registration didn't even work) * Rewrote the bitfield compression algorithm used to serialize allowed MIME types * Fixed some typos in language files and strings * Fixed a Text_Wiki bug in Heading parser

Made all page_id and namespace columns consistent

Added Unicode support for usernames and passwords (this is probably best considered a JS crypto bug)

Fixed https urls not allowed in user_extra CPs; fixed nonworking password reset in admin CP

Added a few hooks to Admin:GeneralConfig (didn't I do this already?)