| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
| |
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| |
|
|
| |
darcs-hash:20080810192632-7ad00-96cb5ce703bf5b823f01ca696791bec8e46bea5e.gz
|
| |
|
|
| |
darcs-hash:20080504090526-7ad00-e91dd9ba8131faa7818fc8bd5e67331488fa86a6.gz
|
| |
|
|
| |
darcs-hash:20080401194032-f07c6-0ba243a05e6767a381dbacd67fbdc9d2437deeb5.gz
|
| |
|
|
|
|
|
|
|
|
| |
Example nginx configuration :
location /var/www/dokuwiki0/ {
internal;
alias /var/www/dokuwiki/dokuwiki0/;
}
darcs-hash:20080315155631-b0461-68c08d68660e554c62a748c1954699791decd000.gz
|
| |
|
|
| |
darcs-hash:20080313204505-f07c6-ad0d4b9f155117f6be01925a8bfece1e35efa39f.gz
|
| |
|
|
| |
darcs-hash:20080309201527-19e2d-35f2f183214981ee3532e210f68fe8a5d6121c36.gz
|
| |
|
|
| |
darcs-hash:20080227213050-23886-e55353ab04f9d23675ec11a9e97ba6affec719fc.gz
|
| |
|
|
|
|
|
|
| |
With spell checkers available in all modern browsers, having a spell checker in
DokuWiki's core code is no longer necessary. This patch removes the spell
checking feature. It will be made available as optional plugin.
darcs-hash:20071123125840-7ad00-faf7aa4673421dbb3fad904ba5b46b4927a5176d.gz
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This patch enables the use of the X-Sendfile extension offered by certain
webservers to deliver static files after running a dynamic script. This
combines the flexibility of a PHP file to check for authorization, caching
and resizing with the low memory footprint and high performance of static
file delivery of the webserver.
See http://blog.lighttpd.net/articles/2006/07/02/x-sendfile for details
darcs-hash:20071008185019-7ad00-1e6d4768fb60d58955e4253c7786eaf8cf13d0bb.gz
|
| |
|
|
|
|
| |
FS#1185
darcs-hash:20070821120916-d26fc-75fbdf68d2a31222b892106229ee84c12c504630.gz
|
| |
|
|
| |
darcs-hash:20070805193638-d26fc-aac3910d4dea3cd5539572cce3e73366ed39ab80.gz
|
| |
|
|
|
|
|
|
|
| |
The feed now can export diff views (unified and HTML) as well as full HTML
page content.
Some things might be broken. Everybody please test it!
darcs-hash:20070711213624-7ad00-49359417127fdbd6e31374738509110271b6b351.gz
|
| |
|
|
|
|
|
| |
This patch outputs the config name in the config manager (instead of using a title
tag) which makes it easier to search (ctrl-f) for a specific option.
darcs-hash:20070629210648-7ad00-0e2a689b04c747298ee50b20bce287069393a84b.gz
|
| |
|
|
|
|
|
| |
Workaround for PHP bug 41773:
http://bugs.php.net/bug.php?idA773
darcs-hash:20070624174903-7ad00-ae406540aca27e20f8fbd2f7c454c079975ebe22.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Because correct smart quote parsing with regular expressions is nearly
impossible, especially when dealing with quote usage in languages different
from english, the typography configuration option was changed.
0 means to completely disable any typography replacements
1 will only handle the multiply entitity and double quotes, this should
nearly always work without problems and is the new default
2 will add singlequote parsing. This might break because single quotes and
apostrophes are not always easily distinguishable. Especially in languages
where single quote openings and apostrophes are different characters you
might experience problems. For english it should nearly always work.
darcs-hash:20070613184015-7ad00-0cebc3f807f54467d54458075c5c9f651355c5ba.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This fix adds a new configuration setting, 'auth_security_timeout', which controls the duration (seconds) before authentication
information is rechecked. The default value is set to 900 seconds (15 minutes). Wiki installations particularly concerned
about security should set this value to 0.
DokuWiki maintains a copy of the most recent authentication details in both a browser cookie and server session. Normally these
values are compared on each page visit. If the comparison passes the user is accepted. The same data will be used over and
over until either the cookie or the session expires. FS#1085 is concerned with updates to the original authentication data not
being able to affect this comparison. The new 'auth_security_timeout' setting will force expiration of the saved data after the
specified period has elapsed.
Re-authentication may affect page response, especially on systems which use remote authentication systems.
This fix is considered partial and should be reviewed after the next release with a view to extending the authentication class
to allow those mechanisms which are able to control when DW should revoke authentication.
darcs-hash:20070528194747-d26fc-f471004da604eb66f7131c470e446b98c29d801b.gz
|
| |
|
|
| |
darcs-hash:20070513174719-d5083-4827d529f2d30011a1bb7d3cc09cf15779629c19.gz
|
| |
|
|
| |
darcs-hash:20070513090309-7ad00-d620a992ce3a014ebc956d20d6b3ee97e2b9fefc.gz
|
| |
|
|
|
|
| |
This disables the last patch and adds an option to enable it on demand.
darcs-hash:20070511200235-7ad00-a3ea769bc4965710b7fd261d31e2c9f8a3d9d7f5.gz
|
| |
|
|
| |
darcs-hash:20070226175529-7ad00-4d3d984da1edbf2ded546cfbd7374f97f032d032.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Following the problem with IE's mimetype handling described at
http://www.splitbrain.org/blog/2007-02/12-internet_explorer_facilitates_cross_site_scripting
this patch adds a new option (on by default) to check the first 256
bytes of uploaded files against a list of a few HTML tags and denies
the upload of such a file. In rare occasions this may block harmless
and valid files, but that's price we have to pay for Microsoft's
stupidity.
Users who need HTML uploads should disable this check. (Don't do that on
open Wikis!)
darcs-hash:20070224124458-7ad00-0ced616d06f563515b36a0a6871b5ba50229c946.gz
|
| |
|
|
|
|
|
|
|
| |
On certain platforms the ignore_user_abort function does not work as expected, resulting
in a non working indexer webbug. Users with such a broken system (IIS+PHP as CGI) can
enable this option to work around the problem (resulting in longer load times for the
webbug).
darcs-hash:20070208195145-7ad00-8fc14f9da535a70fa837066773e15a3926b077c7.gz
|
| |
|
|
| |
darcs-hash:20061224005004-9b6ab-48a230e5a7697b2c350ccdc80aeb929671c6a234.gz
|
| |
|
|
|
|
|
| |
This patch adds support for a manager option as suggested in
http://www.freelists.org/archives/dokuwiki/11-2006/msg00314.html
darcs-hash:20061203134104-7ad00-72ff6422bbb4f79be325c7e77255e1eee32d0f6b.gz
|
| |
|
|
| |
darcs-hash:20061127223356-7ad00-6a5cd1653d6d60f534471f8eabdb84ffb953d151.gz
|
| |
|
|
|
|
|
|
| |
Add a configuration option to control whether or not the edit/revision summary is
displayed with the title of RSS feeds. The default is to show the summary, the same as
DokuWiki did prior to this addition.
darcs-hash:20061101023313-9039d-d067e9bcd7dc0c7cabd57674d1072c5b882ad4e7.gz
|
| |
|
|
|
|
|
|
|
| |
Make Chinese and Japanese work better with the new indexer.
Some missing punctuation added to utf8_stripspecials.
Misc. other changes to make indexing faster. The indexes will expire on
backend upgrades, so you don't have to delete *.indexed
darcs-hash:20061117123032-6942e-774b38e08234928c49b37e40addba375acf67ac0.gz
|
| |
|
|
|
|
|
|
| |
in addition to a single valid email it will now accept:
- no email
- multiple comma separate email addresses
darcs-hash:20061104213543-9b6ab-7fb8b883f6ad81260e787a2e3d5ba3d2197b970a.gz
|
| |
|
|
|
|
|
| |
- change validation pattern to allow 3 or 4 octal digits and hence
setting of SUID, SGID and sticky bit on systems which support them
darcs-hash:20061005223141-9b6ab-80511ecc4780d6258f15f59087f9bab20d1f1340.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Cache
- add dependency for metadata renderer file
- check metadata for end of page life, "date valid end".
Metadata Renderer
- RSS syntax mode now sets rendered page expiry, "date valid end"
and includes the feed URL in "relation haspart".
Purgefile
For all wiki installations the purgefile records the earliest
time before which no cache purge (based on data consistency)
is required. Cache files older than this time MAY need to be
purged.
- remove purgeonadd configuration setting
darcs-hash:20060924202157-9b6ab-4531e91411c41914eeab2b6a8160c3d46b001cee.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch adds a feature to let DokuWiki automatically check if updates are
available or any other important messages (like security warnings) and then
display this info to the admin user.
DokuWiki will contact the URL http://www.splitbrain.org/lib/exe/msg.php
with a parameter telling it which messages it already know (read from
conf/msg) - the server side script then will return all new messages.
The messages will be displayed until DokuWiki was upgraded or conf/msg
was updated manually. Messages are cached and only checked once a day.
The messenger URL will probably change before the next release.
darcs-hash:20060916210229-7ad00-7ac592650e171ae4144b0eb47a751a4ca480f031.gz
|
| |
|
|
|
|
|
|
| |
Suppress any errors from set_time_limit,
unlink, and file_exists functions.
see: http://www.freelists.org/archives/dokuwiki/09-2006/msg00004.html
darcs-hash:20060908193433-05dcb-013617431870ab5bfb2ce8c6e99ba5af13493228.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch provides a rewritten changelog system that is designed to run
efficiently on both small and large wikis. The patch includes a plugin to
convert changelogs from the current format. The conversion is
non-destructive and happens automatically. For more information on the new
changelog format see "http://wiki.splitbrain.org/wiki:changelog".
Structure
In short the changelog is now stored in per-page changelog files, with a
recent changes cache. The recent changes cache is kept in
"/data/meta/_dokuwiki.changes" and trimmed daily. The per-page changelogs
are kept in "/data/meta/<ns>/<page_id>.changes" files. To preserve
revision information for revisions stored in the attic, the "*.changes"
files are not removed when their page is deleted. This allows the full
life-cycle of page creation, deletion, and reversion to be tracked.
Format
The changelog line format now uses a general "line type" field in place of
the special "minor" change syntax. There is also an extra field that can
be used to store arbitrary data associated with special line types. The
reverted line type (R) is a good example. There the extra field holds the
revision date used as the source for reverting the page. See the wiki for
the complete syntax description.
Code Notes
The changelog functions have been rewritten to load the whole file only if
it is small. For larger files, the function loads only the relevant
chunk(s). Parsed changelog lines are cached in memory to speed future
function calls.
getRevisionInfo
A binary search is used to locate the chunk expected to contain the
requested revision. The whole chunk is parsed, and adjacent lines are
optimistically cached to speed consecutive calls.
getRevisions
Reads the changelog file backwards (newest first) in chunks until the
requested number of lines have been read. Parsed changelog lines are
cached for subsequent calls to getRevisionInfo. Because revisions are read
from the changelog they are no longer guaranteed to exist in the attic.
(Note: Even with lines of arbitrary length getRevisionInfo and
getRevisions never split changelog lines while reading. This is done by
sliding the "file pointer" forward to the end of a line after each blind
seek.)
isMinor
Removed. To detect a minor edit check the type as follows:
$parsed_logline['type']
darcs-hash:20060830182753-05dcb-1c5ea17f581197a33732a8d11da223d809c03506.gz
|
| |
|
|
|
|
|
|
|
| |
- add $conf['compression'] meta data and en lang strings
- remove $conf['usegzip'] meta data and en lang strings
Other language strings will need to be updated.
darcs-hash:20060825223047-9b6ab-b0c8c6af57847690a6d398d0bd98af9a51911c21.gz
|
| |
|
|
|
|
|
| |
- improvements in handling of default values for multi-checkbox settings (e.g. defaultactions)
- minor style tweaks to cater for IE/Win
darcs-hash:20060731105910-9b6ab-2e78b4f545b9d8a9f98accc22eeba5701049a037.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
This patch adds a new generic settings class, setting_multicheckbox. The class
displays each of a list of possible choices as a checkbox and an additional text
input field for "other" values. The final result is saved in the config file as
a comma separated list.
It also supports an additional, optional, parameter, "_combine" which can be used
to group complimentary values, allowing them to be set or unset together with one
checkbox.
darcs-hash:20060705012142-9b6ab-b92daddd1393bfc5e9b650a57348237726957c71.gz
|
| |
|
|
| |
darcs-hash:20060616124539-7ad00-22cc3417b2a3b8e183d272f6c132ce88a27c4fac.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch hides settings that are missing config metadata and optionally
provides a list of warnings about settings that are not properly configured.
- Warnings about settings are listed if $conf['allowdebug'] is true.
- Warnings are listed by the $conf string as it appears in local.php.
- Warnings show the $meta string as it would appear in the correct
settings metadata file.
- There are 3 kinds of warnings.
- undefined
There is no $meta information defined for this setting.
- no class
The setting class specified in $meta can not be found.
This setting does have a $meta entry.
- no default
The setting is missing a default value.
The setting does have a $meta entry with a valid setting class.
- Note: Settings with metadata but other warnings are allowed to appear
in the normal config settings list.
Also...
- Templates can now define their own settings classes.
- Removed an XHTML validation error from the first patch.
- More language strings to go with the new warnings.
The warnings under the 'Undefined Settings' heading are intended to
provide developers with a list of any settings that they have forgotten to
finish preparing for the config plugin. This list should be blank for stable
releases.
darcs-hash:20060520103718-05dcb-6d4e6bce78498cbf9d087e27d52e4aa30917b0a5.gz
|
| |
|
|
|
|
|
|
| |
- Enables gzip compression of output xhtml for browsers that support it.
For example the wiki:syntax page takes up 46.80KB raw, but only 9.88KB gzip encoded.
- Setting is configurable through the config plugin.
darcs-hash:20060516084132-05dcb-d8d1c7911a951b00e166c5a94f46a2cf1cfa5846.gz
|
| |
|
|
|
|
|
|
|
|
| |
- Adds a jpg quality setting for scaled images
(Some images were getting too many jpg artifacts
at the hard-coded compression setting.)
- Creates a group for the media settings in the
config plugin.
darcs-hash:20060516062321-05dcb-a175b0de3264322a335cf60d8ee96317f7b03144.gz
|
| |
|
|
| |
darcs-hash:20060511083209-9b6ab-418fb83530be356bb40307c4a95a9c03954fc725.gz
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- organizes the configuration settings list into chunks
- provides a table of contents for the configuration chunks
- provides one chunk for each plugin with configurable settings
- provides one chunk for the active template (if it has settings)
- provides the config file setting as a tool-tip on the setting label
ex. $conf['start']
- provides for localization of useful strings
- generates a "smart" fallback name for plugins and templates
- plugin and template sections are only shown if they have settings
- current configuration list is organized into chunks
Note: There are NEW strings to translate into the non-english language files.
darcs-hash:20060510065732-05dcb-398d5c7efa7981f690d97a25a5110b1f39be9f8e.gz
|
| |
|
|
| |
darcs-hash:20060507101333-7ad00-e687d797fbee26e0b0bc7741ff8a1af496c101bf.gz
|
| |
|
|
|
|
| |
a more robust fix is needed, but this should resolve 99.9% of potential problems
darcs-hash:20060505000432-9b6ab-273277892e7b7dc978f7622174de38212155f104.gz
|
| |
|
|
|
|
|
| |
- style correction, change second occurrence of textarea.default to textarea.protected
- comment spelling correction
darcs-hash:20060430160900-9b6ab-5d2ba348ba00880f79d0874e3128234e0cb696c0.gz
|
| |
|
|
|
|
|
|
|
|
|
| |
The old pattern (left as a comment) allowed many PHP syntax errors
to be inserted into local.php for numeric values. This was breaking
the wiki... see bug #769.
This patch should eliminate the syntax errors by using a more restrictive
definition of numeric settings.
darcs-hash:20060327200700-05dcb-ccb8d532e5c123965fc6c8e79fb49c93170d827e.gz
|
| |
|
|
| |
darcs-hash:20060327181005-05dcb-73b7a1f4400832ba29962efc543d9959ebc6b2db.gz
|
| |
|
|
| |
darcs-hash:20060322140525-283c4-54953a1954beba0e78c896610b33a6f3c953cbb6.gz
|
| |
|
|
| |
darcs-hash:20060308225006-d5083-d273d41551fee37d28442beef847eb57891ba73e.gz
|
