Sat, 07 Jun 2008 12:39:24 -0400 |
Dan |
Modified $template->init_vars() to pivot to local page metadata and permissions from a PageProcessor object instead of global data from $paths and permissions from $session to allow redirects to affect on-page controls as well as the actual content (only partially complete, protection and several other elements still need to be localized)
|
file |
diff |
annotate
|
Sat, 24 May 2008 23:40:42 -0400 |
Dan |
More work done on effective permissions API, namely reporting of page group and usergroup names
|
file |
diff |
annotate
|
Fri, 16 May 2008 12:22:26 -0400 |
Dan |
Added user preference for disabling visual effects in Javascript applets; added re-import button to installed plugins
|
file |
diff |
annotate
|
Mon, 12 May 2008 00:59:46 -0400 |
Dan |
Revamped some ACL code and added effective permissions calculation code into session manager
|
file |
diff |
annotate
|
Mon, 05 May 2008 20:06:37 -0400 |
Dan |
Added ETag support and increased caching settings to try and speed the system up. Result of a YSlow audit.
|
file |
diff |
annotate
|
Sun, 04 May 2008 21:57:48 -0400 |
Dan |
Massive commit with various changes. Added user ranks system (no admin interface yet) and ability for users to have custom user titles. Made cron framework accept fractions of hours through floating-point intervals. Modifed ACL editor to use miniPrompt framework for close confirmation box. Made avatar system use a special page as opposed to fetching the files directly for caching reasons.
|
file |
diff |
annotate
|
Mon, 14 Apr 2008 12:13:12 -0400 |
Dan |
Rebrand as 1.1.4 (Caoineag alpha 4)
|
file |
diff |
annotate
|
Tue, 08 Apr 2008 20:32:30 -0400 |
Dan |
Merging nighthawk and scribus branches
|
file |
diff |
annotate
|
Tue, 08 Apr 2008 20:30:05 -0400 |
Dan |
Implemented the password-reset redirect _properly_ instead of the hackish direct header() call in sessions.php
|
file |
diff |
annotate
|
Sun, 06 Apr 2008 14:02:20 -0400 |
Dan |
SECURITY: Disabled caching of decrypted DiffieHellman login requests
|
file |
diff |
annotate
|
Wed, 26 Mar 2008 20:20:22 -0400 |
Dan |
Made some improvements to ACL system including: warning on setting Deny for Everyone on the entire site, added ACL_ALWAYS_ALLOW_ADMIN_EDIT_ACL, and changed behavior as noted in the docs so that Deny for Everyone is no longer able to be overridden
|
file |
diff |
annotate
|
Tue, 18 Mar 2008 14:32:40 -0400 |
Dan |
Fixed some stray version numbers (again!); added support for Diffie-Hellman logins in the normal login form (not AJAX) - even works in IE
|
file |
diff |
annotate
|
Sun, 16 Mar 2008 16:06:59 -0400 |
Dan |
Added support for embedding language data into plugins; updated all version numbers on plugin files
|
file |
diff |
annotate
|
Sat, 15 Mar 2008 00:08:01 -0400 |
Dan |
Fixed some bugs with PostgreSQL and added a word_lcase column to the search_index table because collation is not working under MySQL. TODO: Trigger search index rebuild on upgrade to 1.1.4.
|
file |
diff |
annotate
|
Sat, 08 Mar 2008 12:13:23 -0500 |
Dan |
Fixed undefined variable ($row['is_regex'] instead of $is_regex) in sessions.php
|
file |
diff |
annotate
|
Thu, 06 Mar 2008 23:31:28 -0500 |
Dan |
[Security] made session manager have some degree of IP validation for session keys and upgrades
|
file |
diff |
annotate
|
Thu, 06 Mar 2008 23:27:50 -0500 |
Dan |
Fixed session validation bug in upgrade script; fixed non-object reference in template_nodb
|
file |
diff |
annotate
|
Thu, 06 Mar 2008 20:53:26 -0500 |
Dan |
Added a cron task to sessions.php that deletes old admin keys once a week
|
file |
diff |
annotate
|
Sun, 02 Mar 2008 19:32:19 -0500 |
Dan |
Implemented password reset (albeit hackishly) into the new login API; added dummy window.console object to hopefully reduce errors when Firebug isn't around; fixed the longstanding ACL dismiss/close button bug; fixed a couple undefined variables in mailer; fixed PHP error on attempted opening of /dev/(u)random in rijndael.php; clarified documentation for PageProcessor::update_page(); fixed some logic problems in theme ACL code; disabled CAPTCHA debug
|
file |
diff |
annotate
|
Sat, 01 Mar 2008 23:02:05 -0500 |
Dan |
Implemented all security features on theme disabling and ACLs; added clean_key mode to login API to clean unused encryption keys
|
file |
diff |
annotate
|
Sat, 01 Mar 2008 18:55:54 -0500 |
Dan |
Fixed improper serializing of IP that could allow reusing of key from multiple IP addresses.
|
file |
diff |
annotate
|
Sun, 24 Feb 2008 12:52:07 -0500 |
Dan |
Merging in changes from Nighthawk
|
file |
diff |
annotate
|
Fri, 22 Feb 2008 12:51:53 -0500 |
Dan |
Merging fixes and updates from stable branch
|
file |
diff |
annotate
|
Mon, 31 Dec 2007 21:16:27 -0500 |
Dan |
Integrating patch for PHP 6.0-dev compatibility
|
file |
diff |
annotate
|
Wed, 20 Feb 2008 14:38:39 -0500 |
Dan |
Added support for Diffie-Hellman key exchange during login. w00t!
|
file |
diff |
annotate
|
Mon, 18 Feb 2008 16:13:56 -0500 |
Dan |
Fixed typo in ban logic
|
file |
diff |
annotate
|
Mon, 11 Feb 2008 14:33:31 -0500 |
Dan |
Rebrand as 1.1.2; made upgrade framework functional
|
file |
diff |
annotate
|
Fri, 08 Feb 2008 23:20:20 -0500 |
Dan |
Added some basic timezone support; DST support is still to come.
|
file |
diff |
annotate
|
Wed, 06 Feb 2008 19:27:43 -0500 |
Dan |
Fixed some captcha bugs and made all captcha fields case-insensitive
|
file |
diff |
annotate
|
Wed, 06 Feb 2008 18:41:47 -0500 |
Dan |
Implemented a new CAPTCHA API; the frontend ($session->{make,get}_captcha) is API-compatible but the backend (the captcha class) is deprecated.
|
file |
diff |
annotate
|