2011-07-13 |
Dan Fuhry |
SECURITY: Fixed several XSS vulns reported by Secunia, mostly in Private Messaging. Also backported CSRF protection API from 1.1.x, and protected Private Messaging and logout functions.
|
file |
diff |
annotate
|
2009-01-17 |
Dan |
Rebrand as v1.0.6 (Roane)
|
file |
diff |
annotate
|
2008-05-10 |
Dan |
Rebrand as 1.0.5 (Ferrishyn)
|
file |
diff |
annotate
|
2008-02-28 |
Dan |
Rebrand as 1.0.4 (Ellyyllon)
|
file |
diff |
annotate
|
2008-01-29 |
Dan |
Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
|
file |
diff |
annotate
|
2008-01-18 |
Dan |
Removed all PostgreSQL support from the installer as per http://enanocms.org/News:1200114064; installer support for Postgres is available in the 1.1 branch now
|
file |
diff |
annotate
|
2008-01-10 |
Dan |
PHP4 fix: sidebar missing in installer UI: problem was wrongly named constructor for templateIndividualSafe
|
file |
diff |
annotate
|
2008-01-01 |
Dan |
Integrating patch for PHP 6.0-dev compatibility
|
file |
diff |
annotate
|
2007-12-19 |
Dan |
Many changes. Installer with PostgreSQL is broken badly and will be for some time.
|
file |
diff |
annotate
|
2007-12-15 |
Dan |
SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
|
file |
diff |
annotate
|
2007-12-13 |
Dan |
Rebrand as 1.0.3 (Dyrad)
|
file |
diff |
annotate
|
2007-12-12 |
Dan |
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
|
file |
diff |
annotate
|
2007-12-03 |
Dan |
Improved physical pages: they support comments and have their own dedicated namespace now. Still some consistency fixes to make.
|
file |
diff |
annotate
|
2007-12-03 |
Dan |
Deprecated debugConsole and removed all calls to it. Added a lot of comments to common.php. Added support for "anonymous pages" that are created when the Enano API is loaded from an external script. Fixed missing border-bottom on Type 2 sidebar blocks in Oxygen.
|
file |
diff |
annotate
|
2007-11-24 |
Dan |
Fix missing REPORT_URI variable in template_nodb
|
file |
diff |
annotate
|
2007-11-24 |
Dan |
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
|
file |
diff |
annotate
|
2007-11-22 |
Dan |
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
|
file |
diff |
annotate
|
2007-11-21 |
Dan |
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
|
file |
diff |
annotate
|
2007-11-15 |
Dan |
Merging in all changes from revision 185 (90b7a52bea45)
|
file |
diff |
annotate
|
2007-11-09 |
Dan |
Cleaned up some HTML in the installer; corrected some phpDoc syntax errors
|
file |
diff |
annotate
|
2007-11-03 |
Dan |
Alternate scaling using GD is implemented now; images will be scaled with ImageMagick if enabled and working; else, GD will be used. No UI changes to speak of, but a check in the installer will be added in a later commit
|
file |
diff |
annotate
|
2007-10-23 |
Dan |
Slight HTTPS compatibility improvements
|
file |
diff |
annotate
|
2007-10-21 |
Dan |
[minor] added bottom margin for enanocms.org fading button
|
file |
diff |
annotate
|
2007-10-21 |
Dan |
Merging in changes from db8a849ad4c9
|
file |
diff |
annotate
|
2007-10-18 |
Dan |
Automatic set of state on Oxygen sidebar portlets should work now; reimplemented parts of the template parser (again) to workaround some PHP/PCRE issues and add support for parser plugins
|
file |
diff |
annotate
|
2007-10-12 |
Dan |
Replaced autocompleting username with a much more efficient algorithm and caching system
|
file |
diff |
annotate
|
2007-10-07 |
Dan |
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
|
file |
diff |
annotate
|
2007-10-07 |
Dan |
Rebrand as 1.1.1; everything should now be bumped to "unstable" status
|
file |
diff |
annotate
|
2007-10-06 |
Dan |
Fixed external links in tplWikiFormat to use my monster HTTP request regex
|
file |
diff |
annotate
|
2007-10-06 |
Dan |
Improvements and fixes (hacks?) for HTML sanitization
|
file |
diff |
annotate
|
2007-10-05 |
Dan |
Major revamps to the template parser. Fixed a few security holes that could allow PHP to be injected in untimely places in TPL code. Improved Ux for XSS attempt in tplWikiFormat. Documented many functions. Backported much cleaner parser from 2.0 branch. Beautified a lot of code in the depths of the template class. Pretty much a small-scale Extreme Makeover.
|
file |
diff |
annotate
|
2007-09-24 |
Dan |
Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
|
file |
diff |
annotate
|
2007-09-18 |
Dan |
Fully implemented password complexity enforcement; added encryption for passwords on registration form; some baby steps taken towards supporting international usernames - this is not working very well, we might need a hackish fix; TODO: implement password strength meter into installer UI and get international usernames 100% working
|
file |
diff |
annotate
|
2007-09-09 |
Dan |
Improved ban control page and allowed multiple entries/IP ranges; changed some parameters on jBox; user level changes are logged now
|
file |
diff |
annotate
|
2007-09-08 |
Dan |
Fixed some rather major bugs in the registration system, this will need a release followup
|
file |
diff |
annotate
|
2007-09-07 |
Dan |
Added keep-alive function to admin panel (had been planned for some time) and a new hook, template_var_init_end
|
file |
diff |
annotate
|
2007-09-04 |
Dan |
Fixed the obnoxious issue with forms using GET and index.php?title=Foo URL scheme (this works a whole lot better than MediaWiki now
|
file |
diff |
annotate
|
2007-09-04 |
Dan |
Nothing special, just syncing to Scribus, several bugs have been found with GET forms and a fix is in the works
|
file |
diff |
annotate
|
2007-08-26 |
Dan |
[comments] fixed edit button (source wasn't getting filled)
|
file |
diff |
annotate
|
2007-08-25 |
Dan |
Fixed non-object reference in databaseless template, added locking for Javascript paginator, made comments on AES key size more clear in constants, and disallowed "anonymous" and IP addresses for admin username in install.php; Loch Ness release candidate
|
file |
diff |
annotate
|
2007-08-14 |
Dan |
Added ability to detag deleted pages
|
file |
diff |
annotate
|
2007-08-12 |
Dan |
Redid stupid fading button code and fixed several RC2 bugs in the upgrade schema; 1.0.1 release candidate
|
file |
diff |
annotate
|
2007-08-10 |
Dan |
Finished pagination code (was incomplete in previous revision) and added a few hacks for an upcoming theme
|
file |
diff |
annotate
|
2007-08-09 |
Dan |
AJAX comments are now paginated; plugin manager can now show system plugins; typo in installer corrected; links in oxygen/stpatty/admin footers changed to "About Enano" page; 1.0.1 release candidate
|
file |
diff |
annotate
|
2007-07-21 |
Dan |
Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
|
file |
diff |
annotate
|
2007-07-15 |
Dan |
Pseudo-commit: Merging Scribus and Nighthawk repos
1.0
|
file |
diff |
annotate
|
2007-07-12 |
Dan |
Fixed stupid typo in template.php that made the fading button not work...
|
file |
diff |
annotate
|
2007-07-10 |
Dan |
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
|
file |
diff |
annotate
|
2007-07-10 |
Dan |
Minor IE4 compatibility fix; template parser now properly handles external links in the sidebar
|
file |
diff |
annotate
|
2007-07-10 |
Dan |
Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
|
file |
diff |
annotate
|
2007-07-08 |
Dan |
Bugfixes: Login system properly handles blank password situation (returns ""); fading button now works right with relative URLs
|
file |
diff |
annotate
|
2007-07-08 |
Dan |
Enano CMS Project button can fade now
|
file |
diff |
annotate
|
2007-07-03 |
Dan |
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
|
file |
diff |
annotate
|
2007-07-01 |
Dan |
Added "page hint" on search page; deprecated "www." on EnanoCMS.org links
|
file |
diff |
annotate
|
2007-06-28 |
Dan |
COPPA support added
|
file |
diff |
annotate
|
2007-06-28 |
Dan |
Rewrote change theme dialog; a few minor stability fixes here and there; fixed IE + St Patty background image
|
file |
diff |
annotate
|
2007-06-27 |
Dan |
Converting all tables on new installations to UTF-8; this may break MySQL 4.0 compatibility; several minor cosmetic fixes; set Powered button under Links to "on" by default
|
file |
diff |
annotate
|
2007-06-27 |
Dan |
More preliminary l10n work; userpage portal style basics implemented
|
file |
diff |
annotate
|
2007-06-26 |
Dan |
Updated all version numbers back to Banshee; a few preliminary steps towards full UTF-8 support in page URLs
|
file |
diff |
annotate
|
2007-06-23 |
Dan |
Emergency version change to 1.0rc3 to fix XSS vulnerabilities
|
file |
diff |
annotate
|
2007-06-23 |
Dan |
Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability
|
file |
diff |
annotate
|
2007-06-22 |
Dan |
Installer actually works now on dev servers; minor language change in template.php; code cleanliness fix in sessions.php
|
file |
diff |
annotate
|
2007-06-13 |
dan |
Adding /includes
|
file |
diff |
annotate
|