| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
| |
darcs-hash:20090525194435-f7d6d-2def694a053f7e661f88f1636903283bad7c1fa8.gz
|
| |
|
|
|
|
|
|
|
| |
Ignore-this: 1370cee84d44bb35ae7c0c988ed8f1ff
This patch adds a config option to define users or groups that may access
the XMLRPC API. ACLs are still checked on top of this intial access control.
darcs-hash:20090516114351-7ad00-155fb6c74c29f5f84e79544a534369eec0403ff0.gz
|
| |
|
|
|
|
| |
adjust your CSS
darcs-hash:20090504222544-f7d6d-fd9e4c771c5aef32dc2927a1da4dfa4fc4f8b4f1.gz
|
| |
|
|
|
|
|
|
| |
- setting_email and setting_richemail updated to use mail_isvalid() from inc/mail.php
- _pattern improved if any plugin extends either class for its own settings (this maybe
over cautious. Its probably very unlikely that any plugin does this).
darcs-hash:20090426231346-f07c6-2af83d890ff4d92b14637ef6024d3fb68ba97efd.gz
|
| |
|
|
|
|
| |
documentation page)
darcs-hash:20090312222853-f7d6d-6ad28d7747ed0a72e4f8952eb1cec606e9b6d322.gz
|
| |
|
|
|
|
| |
Ignore-this: c878b6607cf1e1d12123d220efb502be
darcs-hash:20090127172145-28fc2-4132d44c5dda847c9403b76beca323ec002d2e5a.gz
|
| |
|
|
|
|
| |
This patch extends the config 'password' class to support a "_code" parameter
darcs-hash:20090119164809-f07c6-c136b559772610539bccb9e9c0191f6a973216ad.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch completely reworks pluginutils to:
- reduce the number of file accesses to enumerate and load plugins
- change the way disabled plugins are recorded.
a disabled plugin will now have ".disabled" added to its directory name
(this halves the number of file accesses required to enumerate installed plugins)
- place the guts of pluginutils code inside a class, Doku_Plugin_Controller,
the existing access routines are preserved and no changes are required.
- add two globals, $plugin_controller_class & $plugin_controller
this allows preload.php to define its own plugin controller class
- update config plugin to support new plugin structure
config plugin now issues a PLUGIN_CONFIG_PLUGINLIST event before it
finalizes the list of plugins it will be working with. Handlers of this
event can remove plugins from the list.
- update plugin manager plugin to support new plugin structure
plugin manager now issues a PLUGIN_PLUGINMANAGER_PLUGINLIST event similarly
to config plugin.
- plugin manager updated to redirect after changes to plugins and to use msg()
Finally, this patch contains a one-shot action plugin which will automatically
convert a plugins directory from the old style disabled file to the new style.
Note for darcs users, the new disabled format will mean a couple of old oneshot
plugins, importoldchangelog and importoldindex, will have their directory names
changed, which could lead to darcs wanting to record the change.
darcs-hash:20090118190143-f07c6-d2e79af546a49a4af5817dd0c5cc27066e67c4d0.gz
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This change add the global $config_cascade which holds the list of files to be
read for each configuration setting group. Dokuwiki adds in its configuration
file values after preload.php, giving preload.php to set its own configuration
cascade.
One side effect of the change is "local.protected.php" is part of the default
cascade, removing the need for it to be included at the bottom of local.php.
darcs-hash:20090118181204-f07c6-fea1c406da1bbdb0a52ab40914f11b835e797728.gz
|
| |
|
|
| |
darcs-hash:20090116235051-f7d6d-8898c5f3433c701191bfd8652bdccb6d46a8ce6b.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
and/or navigation links
$conf['useheading'] values are now:
- 0 : off, use page name in link text
- 'content' : use first heading text for links in wiki page content
- 'navigation' : use first heading text for links in non-page content, e.g. breadcrumps, backlinks, search results, etc.
- 1 : use first heading text in all links
(for backwards compatibility, any other values are mapped to 0 or 1 by empty() function.)
$conf['useheading'] value should now be checked using the useHeading($linktype) function,
where linktype can be "content" or "navigation"
darcs-hash:20081119140758-f07c6-6e26456d50dcecc949fada31b0d4e72877fde1cc.gz
|
| |
|
|
| |
darcs-hash:20081014185611-7ad00-e575d3315c6f135059635dbf8a77be3f7020d6a0.gz
|
| |
|
|
| |
darcs-hash:20081012144253-23886-c904f82c559c3ad5477bf921e93cb439a212134d.gz
|
| |
|
|
| |
darcs-hash:20081012113150-7ad00-6408da058bdb6c923159d445e03b76f54b579362.gz
|
| |
|
|
| |
darcs-hash:20081011175430-2b4f5-aa7e9048461324e0362852ef21beff456a03bd9b.gz
|
| |
|
|
| |
darcs-hash:20081011165529-23886-b3e15b6316b57548dc040757d90d397fbb695dd4.gz
|
| |
|
|
| |
darcs-hash:20081011155507-7ad00-c2da8c586fbb8fc954b84770653f8c04244ca809.gz
|
| |
|
|
| |
darcs-hash:20081011121450-2b4f5-1e3139cc20cea62247be931ebc2749b8fb02c002.gz
|
| |
|
|
| |
darcs-hash:20080906100647-51399-2f4587b6adbad377fda13aa2f8dd4a10e66c4b6c.gz
|
| |
|
|
|
|
|
|
|
|
|
| |
At present, DW shows the username on the bottom left under "logged in as", and the login name for "last modified", "locked by" and under
revisions/recent changes. In a corporate environment, particularly when integrated with a Single Sign-On system, the login name may be somewhat
unfriendly. This patch makes the "logged in as" the same as the value used elsewhere and also allows an admin to decide whether it should be the
login name, username or e-mail address that is displayed. The e-mail address may also, optionally, be a mailto: link. E-mail addresses are
obfuscated according to the 'mailguard' setting. The default behaviour is to show the login name which is no change from previous behaviour for the
"last modified"/"locked by"/revisions/"recent changes", but is a change for the "logged in as".
darcs-hash:20081001152914-6ad63-9cd7174068ac55de381f1318a4401f8c51de5b0c.gz
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| |
|
|
| |
darcs-hash:20080810192632-7ad00-96cb5ce703bf5b823f01ca696791bec8e46bea5e.gz
|
| |
|
|
| |
darcs-hash:20080504090526-7ad00-e91dd9ba8131faa7818fc8bd5e67331488fa86a6.gz
|
| |
|
|
| |
darcs-hash:20080401194032-f07c6-0ba243a05e6767a381dbacd67fbdc9d2437deeb5.gz
|
| |
|
|
|
|
|
|
|
|
| |
Example nginx configuration :
location /var/www/dokuwiki0/ {
internal;
alias /var/www/dokuwiki/dokuwiki0/;
}
darcs-hash:20080315155631-b0461-68c08d68660e554c62a748c1954699791decd000.gz
|
| |
|
|
| |
darcs-hash:20080313204505-f07c6-ad0d4b9f155117f6be01925a8bfece1e35efa39f.gz
|
| |
|
|
| |
darcs-hash:20080309201527-19e2d-35f2f183214981ee3532e210f68fe8a5d6121c36.gz
|
| |
|
|
| |
darcs-hash:20080227213050-23886-e55353ab04f9d23675ec11a9e97ba6affec719fc.gz
|
| |
|
|
|
|
|
|
| |
With spell checkers available in all modern browsers, having a spell checker in
DokuWiki's core code is no longer necessary. This patch removes the spell
checking feature. It will be made available as optional plugin.
darcs-hash:20071123125840-7ad00-faf7aa4673421dbb3fad904ba5b46b4927a5176d.gz
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This patch enables the use of the X-Sendfile extension offered by certain
webservers to deliver static files after running a dynamic script. This
combines the flexibility of a PHP file to check for authorization, caching
and resizing with the low memory footprint and high performance of static
file delivery of the webserver.
See http://blog.lighttpd.net/articles/2006/07/02/x-sendfile for details
darcs-hash:20071008185019-7ad00-1e6d4768fb60d58955e4253c7786eaf8cf13d0bb.gz
|
| |
|
|
|
|
| |
FS#1185
darcs-hash:20070821120916-d26fc-75fbdf68d2a31222b892106229ee84c12c504630.gz
|
| |
|
|
| |
darcs-hash:20070805193638-d26fc-aac3910d4dea3cd5539572cce3e73366ed39ab80.gz
|
| |
|
|
|
|
|
|
|
| |
The feed now can export diff views (unified and HTML) as well as full HTML
page content.
Some things might be broken. Everybody please test it!
darcs-hash:20070711213624-7ad00-49359417127fdbd6e31374738509110271b6b351.gz
|
| |
|
|
|
|
|
| |
This patch outputs the config name in the config manager (instead of using a title
tag) which makes it easier to search (ctrl-f) for a specific option.
darcs-hash:20070629210648-7ad00-0e2a689b04c747298ee50b20bce287069393a84b.gz
|
| |
|
|
|
|
|
| |
Workaround for PHP bug 41773:
http://bugs.php.net/bug.php?idA773
darcs-hash:20070624174903-7ad00-ae406540aca27e20f8fbd2f7c454c079975ebe22.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Because correct smart quote parsing with regular expressions is nearly
impossible, especially when dealing with quote usage in languages different
from english, the typography configuration option was changed.
0 means to completely disable any typography replacements
1 will only handle the multiply entitity and double quotes, this should
nearly always work without problems and is the new default
2 will add singlequote parsing. This might break because single quotes and
apostrophes are not always easily distinguishable. Especially in languages
where single quote openings and apostrophes are different characters you
might experience problems. For english it should nearly always work.
darcs-hash:20070613184015-7ad00-0cebc3f807f54467d54458075c5c9f651355c5ba.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This fix adds a new configuration setting, 'auth_security_timeout', which controls the duration (seconds) before authentication
information is rechecked. The default value is set to 900 seconds (15 minutes). Wiki installations particularly concerned
about security should set this value to 0.
DokuWiki maintains a copy of the most recent authentication details in both a browser cookie and server session. Normally these
values are compared on each page visit. If the comparison passes the user is accepted. The same data will be used over and
over until either the cookie or the session expires. FS#1085 is concerned with updates to the original authentication data not
being able to affect this comparison. The new 'auth_security_timeout' setting will force expiration of the saved data after the
specified period has elapsed.
Re-authentication may affect page response, especially on systems which use remote authentication systems.
This fix is considered partial and should be reviewed after the next release with a view to extending the authentication class
to allow those mechanisms which are able to control when DW should revoke authentication.
darcs-hash:20070528194747-d26fc-f471004da604eb66f7131c470e446b98c29d801b.gz
|
| |
|
|
| |
darcs-hash:20070513174719-d5083-4827d529f2d30011a1bb7d3cc09cf15779629c19.gz
|
| |
|
|
| |
darcs-hash:20070513090309-7ad00-d620a992ce3a014ebc956d20d6b3ee97e2b9fefc.gz
|
| |
|
|
|
|
| |
This disables the last patch and adds an option to enable it on demand.
darcs-hash:20070511200235-7ad00-a3ea769bc4965710b7fd261d31e2c9f8a3d9d7f5.gz
|
| |
|
|
| |
darcs-hash:20070226175529-7ad00-4d3d984da1edbf2ded546cfbd7374f97f032d032.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Following the problem with IE's mimetype handling described at
http://www.splitbrain.org/blog/2007-02/12-internet_explorer_facilitates_cross_site_scripting
this patch adds a new option (on by default) to check the first 256
bytes of uploaded files against a list of a few HTML tags and denies
the upload of such a file. In rare occasions this may block harmless
and valid files, but that's price we have to pay for Microsoft's
stupidity.
Users who need HTML uploads should disable this check. (Don't do that on
open Wikis!)
darcs-hash:20070224124458-7ad00-0ced616d06f563515b36a0a6871b5ba50229c946.gz
|
| |
|
|
|
|
|
|
|
| |
On certain platforms the ignore_user_abort function does not work as expected, resulting
in a non working indexer webbug. Users with such a broken system (IIS+PHP as CGI) can
enable this option to work around the problem (resulting in longer load times for the
webbug).
darcs-hash:20070208195145-7ad00-8fc14f9da535a70fa837066773e15a3926b077c7.gz
|
| |
|
|
| |
darcs-hash:20061224005004-9b6ab-48a230e5a7697b2c350ccdc80aeb929671c6a234.gz
|
| |
|
|
|
|
|
| |
This patch adds support for a manager option as suggested in
http://www.freelists.org/archives/dokuwiki/11-2006/msg00314.html
darcs-hash:20061203134104-7ad00-72ff6422bbb4f79be325c7e77255e1eee32d0f6b.gz
|
| |
|
|
| |
darcs-hash:20061127223356-7ad00-6a5cd1653d6d60f534471f8eabdb84ffb953d151.gz
|
| |
|
|
|
|
|
|
| |
Add a configuration option to control whether or not the edit/revision summary is
displayed with the title of RSS feeds. The default is to show the summary, the same as
DokuWiki did prior to this addition.
darcs-hash:20061101023313-9039d-d067e9bcd7dc0c7cabd57674d1072c5b882ad4e7.gz
|
| |
|
|
|
|
|
|
|
| |
Make Chinese and Japanese work better with the new indexer.
Some missing punctuation added to utf8_stripspecials.
Misc. other changes to make indexing faster. The indexes will expire on
backend upgrades, so you don't have to delete *.indexed
darcs-hash:20061117123032-6942e-774b38e08234928c49b37e40addba375acf67ac0.gz
|
| |
|
|
|
|
|
|
| |
in addition to a single valid email it will now accept:
- no email
- multiple comma separate email addresses
darcs-hash:20061104213543-9b6ab-7fb8b883f6ad81260e787a2e3d5ba3d2197b970a.gz
|
| |
|
|
|
|
|
| |
- change validation pattern to allow 3 or 4 octal digits and hence
setting of SUID, SGID and sticky bit on systems which support them
darcs-hash:20061005223141-9b6ab-80511ecc4780d6258f15f59087f9bab20d1f1340.gz
|
