Dan Fuhry <dan@enanocms.org> [Mon, 28 Jun 2010 10:43:04 -0400] rev 1253
SECURITY: Multiple XSS in Special:ChangeStyle. Reported by Mesut Timur of Mavituna Security - thanks! Also removed my stand-in for ucfirst().
Dan [Wed, 02 Jun 2010 21:58:26 -0400] rev 1252
Rewrote category editor. This breaks the JSON API. Also fixed a few bugs with how Wiki Mode is set in $paths. (Hopefully that doesn't cause infinite loops, heh). Fixes issue 20.
Dan [Sun, 16 May 2010 21:35:43 -0400] rev 1251
Added the ability to trust XFF (X-Forwarded-For) headers.
Dan [Sat, 15 May 2010 03:05:43 -0400] rev 1250
Test commit to verify that ktulu auto sync works properly
Dan [Sun, 02 May 2010 23:15:18 -0400] rev 1249
Added a box on Admin:UploadConfig showing the value of upload_max_filesize.
Dan [Fri, 30 Apr 2010 22:15:03 -0400] rev 1248
Merged (accidental split)
Dan [Fri, 30 Apr 2010 22:13:08 -0400] rev 1247
Fixed typo in that, the parameter that was supposed to go to getConfig was going to htmlspecialchars()
Dan [Fri, 30 Apr 2010 22:10:57 -0400] rev 1246
Added an ajax auto check for the path to ImageMagick in Admin:UploadConfig
Dan [Tue, 20 Apr 2010 11:38:59 -0400] rev 1245
Reordered wiki render stages so images happen before external links. Fixes a parser bug seen, among other places, on the Donation page.
Dan [Tue, 20 Apr 2010 11:38:24 -0400] rev 1244
Fixed some cosmetic bugs in Special:AllPages
Dan [Mon, 19 Apr 2010 18:07:43 -0400] rev 1243
Fixed registration admin override with account_activation set to disable.
Dan [Sat, 17 Apr 2010 03:33:14 -0400] rev 1242
Made separate methods in sessionManager for static and non-static generate_aes_form(), because PHP (erroneously) always calls that method statically.
Dan [Tue, 06 Apr 2010 15:55:21 -0400] rev 1241
Merged
Dan [Tue, 06 Apr 2010 15:54:45 -0400] rev 1240
Added Diffie-Hellman crypto support into the installer. Fixes issue 13.
Dan [Tue, 06 Apr 2010 10:46:25 -0400] rev 1239
Clarified some edit conflict related strings
Dan [Fri, 02 Apr 2010 17:43:50 -0400] rev 1238
Fixed lockout list in ACP under PostgreSQL
Neal Gompa <neal@enanocms.org> [Fri, 02 Apr 2010 14:48:15 -0500] rev 1237
Merge in changes about legal marks
Neal Gompa <neal@enanocms.org> [Fri, 02 Apr 2010 14:43:37 -0500] rev 1236
Fixed various legal marks in the strings of the English language pack
Dan [Fri, 02 Apr 2010 15:12:02 -0400] rev 1235
Fixed Gravatars not showing up immediately after save in Avatar UCP
Dan [Fri, 02 Apr 2010 14:42:15 -0400] rev 1234
Fixed fread() usage in Request_HTTP not properly handling incomplete responses
Neal Gompa <neal@enanocms.org> [Thu, 01 Apr 2010 19:57:23 -0500] rev 1233
Fixed typo in install.json in pgsql "no php extension" error string
Dan [Tue, 30 Mar 2010 11:43:17 -0400] rev 1232
Fixed password_score_field onload in Admin:UserManager
Dan [Tue, 30 Mar 2010 11:37:00 -0400] rev 1231
Added selection and popup for <pre> tags within wikitext. Also fixed more bugs found in the HTML paragraph parser (mostly self-closing tags e.g. <hr />).
Dan [Tue, 30 Mar 2010 11:34:56 -0400] rev 1230
Renderer: fixed the regex that looks for h-tags in reverse_process_headings so it looks forthe new format #head: IDs.
Dan [Fri, 26 Feb 2010 12:59:24 -0500] rev 1229
Fixed "waiting for l10n init" and js error in Admin:UserManager
Dan [Mon, 29 Mar 2010 01:47:31 -0400] rev 1228
Search: strip HTML tags from result text (DB pages only). Fixes issue 17.
Dan [Sun, 28 Mar 2010 23:10:46 -0400] rev 1227
Going ahead with the switch to tabs. This is a major coding standards change! If any unusual parser bugs show up, check this changeset. Converted all .php, .js, .tpl, .css, and .json files and did basic testing.
Dan [Sun, 28 Mar 2010 21:49:26 -0400] rev 1226
Introduced configurability for gzip compression. Fixes issue 18.
Dan [Sun, 28 Mar 2010 21:40:37 -0400] rev 1225
Replaced (most of) the mini box icons with famfamfam silk icons, they're better looking.
Dan [Sun, 28 Mar 2010 21:39:37 -0400] rev 1224
Added https support in Request_HTTP