Sat, 06 Oct 2007 13:18:30 -0400 |
Dan |
Fixed comment stripping in sanitize_html()
|
changeset |
files
|
Sat, 06 Oct 2007 13:01:46 -0400 |
Dan |
Improvements and fixes (hacks?) for HTML sanitization
|
changeset |
files
|
Fri, 05 Oct 2007 01:57:00 -0400 |
Dan |
Major revamps to the template parser. Fixed a few security holes that could allow PHP to be injected in untimely places in TPL code. Improved Ux for XSS attempt in tplWikiFormat. Documented many functions. Backported much cleaner parser from 2.0 branch. Beautified a lot of code in the depths of the template class. Pretty much a small-scale Extreme Makeover.
|
changeset |
files
|
Thu, 04 Oct 2007 08:22:25 -0400 |
Dan |
Fixed text colors on pages when dark system themes are used (bug could be seen using MurrinaNightOrange on an Ubuntu system)
|
changeset |
files
|
Mon, 01 Oct 2007 23:52:25 -0400 |
Dan |
Fixed: wiki mode edit notice should be shown on fallback editor now
|
changeset |
files
|
Mon, 01 Oct 2007 23:48:24 -0400 |
Dan |
Fixed: RenderMan::parse_internal_links() problems with prepending Project: instead of Site_name: to project page alias-namespace links
|
changeset |
files
|
Mon, 01 Oct 2007 22:18:51 -0400 |
Dan |
SECURITY: tightened up validation for rollbacks
|
changeset |
files
|
Mon, 01 Oct 2007 19:29:52 -0400 |
Dan |
Creating pages doesn't insert that crappy javascript hack anymore
|
changeset |
files
|
Sun, 30 Sep 2007 20:20:07 -0400 |
Dan |
Feature add: new page group type: regular expression match (PCRE)
|
changeset |
files
|
Sun, 30 Sep 2007 19:40:07 -0400 |
Dan |
Oops forgot to update common.php version
|
changeset |
files
|
Sun, 30 Sep 2007 19:32:15 -0400 |
Dan |
Added tag rebrand for changeset 42c6c83b8a00
|
changeset |
files
|
Sun, 30 Sep 2007 19:27:44 -0400 |
Dan |
Crap, that didn't work. Remerge of 42c6c83b8a00 and 824821224153
|
changeset |
files
|
Sun, 30 Sep 2007 19:22:04 -0400 |
Dan |
Merging branches from Scribus and Nighthawk
|
changeset |
files
|
Sun, 30 Sep 2007 19:18:09 -0400 |
Dan |
Added a new Javascript variable, aclDisableTransitionFX, that will switch off effects on message boxes and the ACL editor when set to true
|
changeset |
files
|
Sun, 30 Sep 2007 19:16:36 -0400 |
Dan |
Added tag rebrand for changeset 42c6c83b8a00
|
changeset |
files
|
Sun, 30 Sep 2007 19:16:24 -0400 |
Dan |
Rebrand for 1.0.2 (again, lol)
|
changeset |
files
|
Sat, 29 Sep 2007 09:43:46 -0400 |
Dan |
Added tag rebrand for changeset 0b5244001799
|
changeset |
files
|
Thu, 27 Sep 2007 15:55:37 -0400 |
Dan |
Sync from stable (Coblynau beta)
|
changeset |
files
|
Mon, 24 Sep 2007 23:59:42 -0400 |
Dan |
Added tag rebrand for changeset 6f0bbf88c325
|
changeset |
files
|
Mon, 24 Sep 2007 23:59:31 -0400 |
Dan |
Rebrand for 1.0.2b1
|
changeset |
files
|
Mon, 24 Sep 2007 21:29:19 -0400 |
Dan |
Improved response time for username autofill; fix JS login box in Safari (bug surfaced only after 1.0.1)
|
changeset |
files
|
Sun, 23 Sep 2007 23:22:25 -0400 |
Dan |
Added tag rebrand for changeset ca9118d9c0f2
|
changeset |
files
|
Sun, 23 Sep 2007 23:21:10 -0400 |
Dan |
Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
|
changeset |
files
|
Sun, 23 Sep 2007 23:03:34 -0400 |
Dan |
SECURITY: Anonymous user can't be edited now; user accounts could be deleted even if errors detected; user CP saving disabled for demo mode
|
changeset |
files
|
Sun, 23 Sep 2007 18:42:16 -0400 |
Dan |
Revamped the administrator's user CP, big time. The admin module now uses a smart form and enables all profile fields, including users_extra, to be changed. Passwords are encrypted when sent. The whole CP has been split off into a different file to accomodate the large amount of code.
|
changeset |
files
|
Thu, 20 Sep 2007 11:27:49 -0400 |
Dan |
Sync Oxygen Bleu and Mint; fixed list-style-image ref and ordered lists getting bulleted
|
changeset |
files
|
Wed, 19 Sep 2007 13:26:42 -0400 |
Dan |
SECURITY: Fix unescaped SQL in paths.php rebuild_page_index()
|
changeset |
files
|
Tue, 18 Sep 2007 17:27:55 -0400 |
Dan |
Fix: textarea tags got stripped naked by the HTML optimizer, now no longer
|
changeset |
files
|
Tue, 18 Sep 2007 17:03:03 -0400 |
Dan |
Fix: internal links parsed with RenderMan::parse_internal_links() did not get namespaces prepended; added Project: alias namespace for internal links
|
changeset |
files
|
Tue, 18 Sep 2007 16:29:26 -0400 |
Dan |
Enano should now fully support UTF-8 usernames; newly registered users are now granted automatic edit access to their user pages (admins can still use protection on the page)
|
changeset |
files
|
Tue, 18 Sep 2007 00:31:22 -0400 |
Dan |
Oops - forgot to add pwstrength.js
|
changeset |
files
|
Tue, 18 Sep 2007 00:30:43 -0400 |
Dan |
Fully implemented password complexity enforcement; added encryption for passwords on registration form; some baby steps taken towards supporting international usernames - this is not working very well, we might need a hackish fix; TODO: implement password strength meter into installer UI and get international usernames 100% working
|
changeset |
files
|
Mon, 17 Sep 2007 11:52:58 -0400 |
Dan |
[sync only] Minor display change in Special:About_Enano; added initial PHP function for password strength testing
|
changeset |
files
|
Thu, 13 Sep 2007 08:28:11 -0400 |
Dan |
Fix: activation e-mails were signed by Anonymous :-)
|
changeset |
files
|
Wed, 12 Sep 2007 00:18:32 -0400 |
Dan |
Fixed unwanted sanitization in Admin:PageManager form submit
|
changeset |
files
|
Tue, 11 Sep 2007 18:35:39 -0400 |
Dan |
Rebranded as 1.0.1.1; fixed category page drawing bug; updated link to GPL in the about page to the GPLv2
|
changeset |
files
|
Sat, 08 Sep 2007 22:58:38 -0400 |
Dan |
Improved ban control page and allowed multiple entries/IP ranges; changed some parameters on jBox; user level changes are logged now
|
changeset |
files
|
Sat, 08 Sep 2007 15:06:28 -0400 |
Dan |
Vastly improved UX for a login to an inactive account
|
changeset |
files
|
Sat, 08 Sep 2007 14:04:15 -0400 |
Dan |
Merging Nighthawk and Scribus repositories
|
changeset |
files
|
Sat, 08 Sep 2007 14:02:19 -0400 |
Dan |
Fixed some rather major bugs in the registration system, this will need a release followup
|
changeset |
files
|
Fri, 07 Sep 2007 18:19:50 -0400 |
Dan |
Added tag release for changeset 8df3abef6647
|
changeset |
files
|
Fri, 07 Sep 2007 18:19:30 -0400 |
Dan |
Fixed the two known issues in the release notes; tarballs will be updated accordingly
1.0.1
|
changeset |
files
|
Fri, 07 Sep 2007 18:18:55 -0400 |
Dan |
Fixed the two known issues in the release notes; tarballs will be updated accordingly
|
changeset |
files
|
Fri, 07 Sep 2007 16:39:42 -0400 |
Dan |
1.0.1 Loch Ness stable release
|
changeset |
files
|
Fri, 07 Sep 2007 16:38:50 -0400 |
Dan |
PROPOSED RELEASE: 1.0.1 (Loch Ness)
|
changeset |
files
|
Fri, 07 Sep 2007 16:27:40 -0400 |
Dan |
Merging Scribus and Nighthawk repositories
|
changeset |
files
|
Fri, 07 Sep 2007 16:25:16 -0400 |
Dan |
Added keep-alive function to admin panel (had been planned for some time) and a new hook, template_var_init_end
|
changeset |
files
|
Fri, 07 Sep 2007 00:48:51 -0400 |
Dan |
Bugfix in Special:AllPages; fixed tinyMCE under Opera (finally!)
|
changeset |
files
|
Thu, 06 Sep 2007 23:03:51 -0400 |
Dan |
Made most special pages "visible"; fixup for non-existent special page redirect in paths.php; rewrote Special:AllPages to have pagination (WiP, Special:SpecialPages is possibly next, depending on whether paginate_array works or not)
|
changeset |
files
|
Tue, 04 Sep 2007 12:52:23 -0400 |
Dan |
Fixed the obnoxious issue with forms using GET and index.php?title=Foo URL scheme (this works a whole lot better than MediaWiki now
|
changeset |
files
|
Tue, 04 Sep 2007 08:25:48 -0400 |
Dan |
Nothing special, just syncing to Scribus, several bugs have been found with GET forms and a fix is in the works
|
changeset |
files
|
Sun, 02 Sep 2007 00:33:22 -0400 |
Dan |
Oops - fixed small glitch in delvote_ips converter code
|
changeset |
files
|
Sun, 02 Sep 2007 00:23:07 -0400 |
Dan |
Rewrote all code related to delvote_ips column to use serialize()
|
changeset |
files
|
Sat, 01 Sep 2007 23:29:33 -0400 |
Dan |
Added registration date column to members list
|
changeset |
files
|
Thu, 30 Aug 2007 20:46:57 -0400 |
Dan |
Removed a few stale debug messages
|
changeset |
files
|
Wed, 29 Aug 2007 23:35:06 -0400 |
Dan |
Added a ton of new log points for administrator actions; restructured security log view and enabled pagination for security logs; string change in ajax.php for RDNS operation failure
|
changeset |
files
|
Wed, 29 Aug 2007 18:23:37 -0400 |
Dan |
Implemented some extra functionality for friends/foes in comments; fixed lack of table_prefix in stats.php line 63
|
changeset |
files
|
Tue, 28 Aug 2007 19:00:20 -0400 |
Dan |
Synched installation schema to upgrade schema for delvote_ips
|
changeset |
files
|
Tue, 28 Aug 2007 18:58:27 -0400 |
Dan |
Second attempt at making delvote_ips work under MySQL 5.0.45 and 5.0.41
|
changeset |
files
|
Sun, 26 Aug 2007 22:52:38 -0400 |
Dan |
Added search function for memberlist
|
changeset |
files
|
Sun, 26 Aug 2007 20:55:12 -0400 |
Dan |
Added ACL rule preventing guests from viewing the memberlist (by request from Neal Gompa <ngompa13 at gmail>)
|
changeset |
files
|
Sun, 26 Aug 2007 20:45:33 -0400 |
Dan |
Several major improvements: Memberlist page added (planned since about beta 2), page group support added for non-JS ACL editor (oops!), and attempting to view a page for which you lack read permissions will get you logged.
|
changeset |
files
|
Sun, 26 Aug 2007 16:48:15 -0400 |
Dan |
[comments] fixed edit button (source wasn't getting filled)
|
changeset |
files
|
Sat, 25 Aug 2007 12:53:03 -0400 |
Dan |
Dramatically cleaned up HTML in registration form; cheat code to activate Bill Gates easter egg is now "William Henry Gates III"... OOPS!! hehe
|
changeset |
files
|
Sat, 25 Aug 2007 12:35:48 -0400 |
Dan |
Fixed: highlighting issue in search results renderer when the search query was comprised entirely of one quoted term
|
changeset |
files
|
Sat, 25 Aug 2007 12:22:46 -0400 |
Dan |
Added a few low-level checks in config.php for changes of search algorithm and AES cipher parameters
|
changeset |
files
|
Sat, 25 Aug 2007 12:11:31 -0400 |
Dan |
Fixed non-object reference in databaseless template, added locking for Javascript paginator, made comments on AES key size more clear in constants, and disallowed "anonymous" and IP addresses for admin username in install.php; Loch Ness release candidate
|
changeset |
files
|
Sun, 19 Aug 2007 16:22:04 -0400 |
Dan |
Fallback non-JS wiki mode switch is now implemented (doh!)
|
changeset |
files
|
Sun, 19 Aug 2007 15:53:56 -0400 |
Dan |
Fixed: when going beta 4 or earlier -> RC1 or later, default ACL rule for admins was not created, causing possibly confusing lockouts
|
changeset |
files
|
Sun, 19 Aug 2007 15:35:01 -0400 |
dan |
Changed style of copyright in St. Patty; first attempt at fixing some upgrade issues from beta 3 or so
|
changeset |
files
|
Fri, 17 Aug 2007 12:35:29 -0400 |
Dan |
Fixed delvote_ips bug with MySQL 5.0.45 - see http://forum.enanocms.org/viewtopic.php?f=5&t=8
|
changeset |
files
|
Thu, 16 Aug 2007 20:35:49 -0400 |
Dan |
Redirections to the main page use the redirect() function now
|
changeset |
files
|
Tue, 14 Aug 2007 20:48:29 -0400 |
Dan |
Fixed stupid redirect bug that referenced $paths without importing it, gah...
|
changeset |
files
|
Tue, 14 Aug 2007 15:13:40 -0400 |
Dan |
Added ability to detag deleted pages
|
changeset |
files
|
Sun, 12 Aug 2007 14:56:52 -0400 |
Dan |
Fixed yet another minor XSS hole, this time in search results
|
changeset |
files
|
Sun, 12 Aug 2007 13:33:04 -0400 |
Dan |
Fixed XSS vulnerability in admin panel page manager
|
changeset |
files
|
Sun, 12 Aug 2007 13:14:26 -0400 |
Dan |
Fixed missing table_prefix in u_1_0_RC3_make_users_extra() in upgrade.php
|
changeset |
files
|
Sun, 12 Aug 2007 13:11:16 -0400 |
Dan |
Redid stupid fading button code and fixed several RC2 bugs in the upgrade schema; 1.0.1 release candidate
|
changeset |
files
|
Fri, 10 Aug 2007 15:57:22 -0400 |
Dan |
Finished pagination code (was incomplete in previous revision) and added a few hacks for an upcoming theme
|
changeset |
files
|
Thu, 09 Aug 2007 12:26:16 -0400 |
Dan |
AJAX comments are now paginated; plugin manager can now show system plugins; typo in installer corrected; links in oxygen/stpatty/admin footers changed to "About Enano" page; 1.0.1 release candidate
|
changeset |
files
|
Mon, 06 Aug 2007 10:37:42 -0400 |
Dan |
Now using a CSS hack for IE's "filter" attribute to prevent CSS warnings in Firefox
|
changeset |
files
|
Mon, 06 Aug 2007 10:09:48 -0400 |
Dan |
Tag cloud is now implemented
|
changeset |
files
|
Sun, 05 Aug 2007 17:10:17 -0400 |
Dan |
Fixed IE6 + Admin theme, version typo in installer, and paginator + IE6
|
changeset |
files
|
Sun, 05 Aug 2007 15:58:50 -0400 |
Dan |
Replaced the menu in the admin theme with something much more visually pleasureable; minor fix in Special:UploadFile; finished patching a couple of XSS problems from Banshee; finished Admin:PageGroups; removed unneeded code in flyin.js; finished tag system (except tag cloud); 1.0.1 release candidate
|
changeset |
files
|
Wed, 01 Aug 2007 13:39:27 -0400 |
Dan |
Improved and enabled HTML optimization algorithm; enabled gzip compression; added but did not test at all the tag cloud class in includes/tagcloud.php, this is still very preliminary and not ready for any type of production use
|
changeset |
files
|
Mon, 30 Jul 2007 10:46:17 -0400 |
Dan |
Admin theme now uses a collapsable sidebar instead of that ugly menu (WiP)
|
changeset |
files
|
Sun, 29 Jul 2007 17:40:36 -0400 |
Dan |
Modified Text_Wiki parser to fully support UTF-8 strings; several other UTF-8 fixes, international characters seem to work reasonably well now
|
changeset |
files
|
Sat, 28 Jul 2007 18:11:14 -0400 |
Dan |
Stale data in config.php, don't know how that happened, passwords have been changed
|
changeset |
files
|
Sat, 28 Jul 2007 18:08:58 -0400 |
Dan |
Work started on page tags, still aways to go, but syncing to Nighthawk
|
changeset |
files
|
Wed, 25 Jul 2007 18:09:21 -0400 |
Dan |
Oops, forgot to add PageGroups.php in plugins/admin/
|
changeset |
files
|
Wed, 25 Jul 2007 18:06:34 -0400 |
Dan |
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
|
changeset |
files
|
Sat, 21 Jul 2007 18:12:10 -0400 |
Dan |
Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
|
changeset |
files
|
Sat, 21 Jul 2007 11:28:59 -0400 |
Dan |
Fixed a few presentation bugs in installer, made installer more "legally binding", and fixed global permissions inheritance in $session->fetch_page_acl()
1.0
|
changeset |
files
|
Sun, 15 Jul 2007 11:41:06 -0400 |
Dan |
Pseudo-commit: Merging Scribus and Nighthawk repos
|
changeset |
files
|
Thu, 12 Jul 2007 15:33:25 -0400 |
Dan |
Pseudo commit: 1.0 final (Banshee) release version
|
changeset |
files
|
Thu, 12 Jul 2007 15:32:15 -0400 |
Dan |
Removed KNOWN_BUGS and TODO and added README; fixed file permissions yet again
|
changeset |
files
|
Thu, 12 Jul 2007 15:30:26 -0400 |
Dan |
Fixed stupid typo in template.php that made the fading button not work...
|
changeset |
files
|
Wed, 11 Jul 2007 15:56:18 -0400 |
Dan |
Made raw images + internal/external links work right
|
changeset |
files
|
Wed, 11 Jul 2007 15:36:01 -0400 |
Dan |
Added "raw" option to embedded images to make complex clickables easier
|
changeset |
files
|
Wed, 11 Jul 2007 15:18:14 -0400 |
Dan |
Last-minute change to width/height on embedded images
|
changeset |
files
|
Wed, 11 Jul 2007 14:28:34 -0400 |
Dan |
Fixed typo in RC3->1.0 upgrade schema
|
changeset |
files
|
Wed, 11 Jul 2007 13:08:34 -0400 |
Dan |
Fixed recursive template inclusion and spaces in template tags ({{Foo template}})
|
changeset |
files
|
Wed, 11 Jul 2007 13:00:19 -0400 |
Dan |
Redirect pages actually work stable-ish now; critical extraneous debug message removed (oops!)
|
changeset |
files
|
Tue, 10 Jul 2007 12:31:12 -0400 |
Dan |
I fixed the statistics!!! YAY!!
|
changeset |
files
|
Tue, 10 Jul 2007 11:59:02 -0400 |
Dan |
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
|
changeset |
files
|
Tue, 10 Jul 2007 03:38:19 -0400 |
Dan |
Minor IE4 compatibility fix; template parser now properly handles external links in the sidebar
|
changeset |
files
|
Tue, 10 Jul 2007 00:40:52 -0400 |
Dan |
Merging Scribus and Nighthawk repositories... Mercurial saves the day...again :-)
|
changeset |
files
|
Mon, 09 Jul 2007 22:01:27 -0400 |
Dan |
Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
|
changeset |
files
|
Mon, 09 Jul 2007 15:30:22 -0400 |
Dan |
Fixed stupid ADMIN_SID_AUTO usage in admin template link to Main Page
|
changeset |
files
|
Mon, 09 Jul 2007 15:17:15 -0400 |
Dan |
Fixed problems with $paths->getParam() on Win2k Server/IIS
|
changeset |
files
|
Sat, 07 Jul 2007 23:06:28 -0400 |
Dan |
Bugfixes: Login system properly handles blank password situation (returns ""); fading button now works right with relative URLs
|
changeset |
files
|
Sat, 07 Jul 2007 22:54:20 -0400 |
Dan |
Enano CMS Project button can fade now
|
changeset |
files
|