| Commit message (Collapse) | Author | Age |
| |
|
|
|
| |
In most cases this change will have no effect, but noes the response will use the filename that was originally requested. The downloaded filename can be modified to something different as well. E.g. the siteexport plugin will make use of it.
|
| |
|
| |
|
| |
|
|
|
|
| |
DDOS via fetch
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
It seems, some servers require a special Status: header for sending the
HTTP status code from PHP (F)CGI to the server. This patch introduces a
new function (adopted from CodeIgniter) for simplifying the status
handling.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
As of VIM 7.3 it is no longer possible to specify the encoding in the
modeline. This gives an error message whenever such a file is opened,
thus this commit removes the enc setting from the modeline.
|
|\
| |
| |
| |
| | |
Conflicts:
inc/fulltext.php
|
| | |
|
| | |
|
| | |
|
|/ |
|
|
|
|
|
|
| |
Ignore-this: 27ea52110bce929b2c61ed8faba67cfc
darcs-hash:20091016205526-c0bf4-35eba4e65d37980a667ba982f7f1ea5b7b07f01c.gz
|
|
|
|
|
|
|
|
|
|
| |
Ignore-this: a66fc8874fb8e04b1258f2e71e35ed90
To avoid fetch.php being abused as anonymous forwarder or even proxy, now a
hash is needed for external ressources. This hash is automatically added by
the ml() function.
darcs-hash:20091006182001-7ad00-adf5f6275b0d7f76543f76d6196f1531b8c09e1c.gz
|
|
|
|
|
|
|
|
|
| |
All PNG and GIF images in the lib/images/fileicons directory will be used
for media file links. The conf/mime.conf file continues to restrict
which file types may be uploaded. File types not in the configuration
list are download-only.
darcs-hash:20090925231746-6942e-299a52772f67e265a8702bda3686f495e4337a8f.gz
|
|
|
|
|
|
|
|
|
|
|
| |
Ignore-this: 50de569608231b910a62327d2f3af1de
This patch moves all HTTP sending related functions to inc/httputils.php
Handling of range requests was rewritten completely to support mutirange
requests. This should fix problems with Adobe Reader but needs testing.
darcs-hash:20090313190247-7ad00-e6ec1f81acb9f7ac651357dd034c2689aea6868d.gz
|
|
|
|
|
|
| |
- update fetch.php to use the new function
darcs-hash:20090118183600-f07c6-65c818bba58fab8856c9f353ff4953ead9b5221e.gz
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
With this patch it is possible to define if a file should be served as download
or be displayed inside the browser (if supported) by configuring it in
conf/mime.conf
Mimetypes that should be served with a "Content-Disposition: attachment" header
need to be prefixed with a exclamation mark. All others will be served inline.
This will also fix a Problem with Flash 10.
darcs-hash:20081202210322-7ad00-6e7ef30aff9322cd135311be77809187da121f3b.gz
|
|
|
|
| |
darcs-hash:20081026135833-23886-a9c8e910571c6e7a4e1603a2ebd365b3ed37108a.gz
|
|
|
|
|
|
|
|
|
|
|
| |
If the cache file does not exist after it should have been generated via an action
plugin or via resizing filemtime fails with a file not found. This has to be fixed
by @filemtime.
Another fix is the check for the $INFO before resizing an image in get_resized.
get_croped has already been fixed
darcs-hash:20080805132309-f4337-41698af01cf1f3632bd68e1e10724bdffc7c58a3.gz
|
|
|
|
| |
darcs-hash:20080727180206-0d72e-28f6206ebe4f6c36f835c50f46d9cbe220ab6177.gz
|
|
|
|
|
|
|
| |
This new event wraps around the sendFile function in lib/exe/fetch.php and
allows intercepting mediafile downloads.
darcs-hash:20080623172020-7ad00-c71293c9ebbbce7559e4b34e878d364a555ebfa2.gz
|
|
|
|
| |
darcs-hash:20080516131348-7ad00-499fcf8660323913e0cff1fbf85d9ffb56ea113b.gz
|
|
|
|
| |
darcs-hash:20080516122354-7ad00-9da7f5011631ad40855d7becd1258a415f2e1f48.gz
|
|
|
|
| |
darcs-hash:20080516114051-7ad00-ea7c2350c4e3bfda05686c1c6de3027c649cb0ab.gz
|
|
|
|
| |
darcs-hash:20080516113856-7ad00-fb8dc6c7be6b0f9db6a4e6f11c5f0bf5bc66dd9c.gz
|
|
|
|
| |
darcs-hash:20080325181825-8d1e6-9f3156da7769530634f29859226d0cb0652fbb99.gz
|
|
|
|
|
|
|
|
|
|
| |
Example nginx configuration :
location /var/www/dokuwiki0/ {
internal;
alias /var/www/dokuwiki/dokuwiki0/;
}
darcs-hash:20080315155631-b0461-68c08d68660e554c62a748c1954699791decd000.gz
|
|
|
|
|
|
| |
This should help with diagnosing memory related problems
darcs-hash:20080223180701-7ad00-1308829c3d7432b1d0c23c3f1acc8228c0a41e1e.gz
|
|
|
|
| |
darcs-hash:20080215152132-7ad00-57dfd552c1fa5bc4421f64abf5552f4bb377040c.gz
|
|
|
|
| |
darcs-hash:20071221181419-3d7ce-f05705a0357412a87e7984a041ac5812eea83048.gz
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch enables the use of the X-Sendfile extension offered by certain
webservers to deliver static files after running a dynamic script. This
combines the flexibility of a PHP file to check for authorization, caching
and resizing with the low memory footprint and high performance of static
file delivery of the webserver.
See http://blog.lighttpd.net/articles/2006/07/02/x-sendfile for details
darcs-hash:20071008185019-7ad00-1e6d4768fb60d58955e4253c7786eaf8cf13d0bb.gz
|
|
|
|
| |
darcs-hash:20070930201133-7ad00-a35a6c40f880116009efd9e50cb002bd75733369.gz
|
|
|
|
|
|
|
|
|
|
|
| |
The use of realpath() to clean up relative file names caused some
trouble in certain setups relying on symlinks or having restricitve
file structure setups.
This patch replaces all realpath() calls with a PHP only replacement
which should solve those problems.
darcs-hash:20070930184250-7ad00-512ff04c95f57fc9eaf104f80372237a3c94286f.gz
|
|
|
|
|
|
|
|
| |
This patch is an enhancement to yesterday's changes. The ability to download
external content could be used for XSS attacks, when faking the sent MIME
type. This patch adds a check on the received data for valid images.
darcs-hash:20061018124942-7ad00-4e8bca7d3877e6a10c348b5d45499cf8adf8b087.gz
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch changes fetch.php ability to download external files. It now checks
for the returned MIME type and will only download images. For all other
MIME types a redirect is sent back to the browser. This reduces the risc of
being misused as open proxy.
Additionally the download facility is disabled completly by default by setting
the fetchsize option to 0. Users who want the feature need to overwrite the option
in their local.php.
Background: The ability to download external files is needed to resize external
images on the server side. When disabled, a redirect is sent to the browser which
will download the fullsize image and rescale it on the client side which is more
bandwidth and CPU intensive.
darcs-hash:20061017175329-7ad00-cd1b1bfa043a04540c51ca8380d28deaa14147d1.gz
|