Dan [Fri, 21 Aug 2009 11:47:26 -0400] rev 1085
SECURITY: Comments: fix poor sanitization of subject on initial submit
Dan [Thu, 20 Aug 2009 21:15:19 -0400] rev 1084
Sessions: whoops, left a debug message in by accident, broke a few redirects
Dan [Thu, 20 Aug 2009 20:19:20 -0400] rev 1083
SECURITY: UCP: Added CSRF protection on Profile (unneeded on EmailPassword due to USER_LEVEL_CHPREF requirement)
Dan [Thu, 20 Aug 2009 20:03:31 -0400] rev 1082
index: removed that annoying 2-space indent
Dan [Thu, 20 Aug 2009 20:01:55 -0400] rev 1081
Fixed some upgrade bugs; added support for choosing one's own date/time formats; rebrand as 1.1.7
Dan [Wed, 19 Aug 2009 01:28:47 -0400] rev 1080
Minor fix to SHA256: some indices were not being initted under some circumstances
Dan [Mon, 10 Aug 2009 22:43:26 -0400] rev 1079
Added ability for authentication plugins to modify session keys (to allow invalidation when their own authentication data is changed) as well as the ability to disable the built-in password change facility
Dan [Sun, 09 Aug 2009 01:27:45 -0400] rev 1078
Blockquote functionality in wikitext parser now allows rendering of other block level elements properly
Dan [Sun, 09 Aug 2009 01:26:57 -0400] rev 1077
Login: enabled DiffieHellman on IE8
Dan [Fri, 07 Aug 2009 10:22:09 -0400] rev 1076
Login: visual: fixed separator being displayed with only one of 2 checkboxes
Dan [Tue, 04 Aug 2009 17:32:09 -0400] rev 1075
Some changes to AJAX login interface, made it a bit more compact with less language, with some Enanium specific modifications to the same.
Dan [Tue, 04 Aug 2009 15:06:50 -0400] rev 1074
Made index.php bootstrap smarter and better commented.
Dan [Tue, 04 Aug 2009 15:02:54 -0400] rev 1073
More work on rendering engine. Fixed some bugs with paragraph skipping and added (incomplete) support for blockquotes.
Dan [Tue, 04 Aug 2009 15:02:00 -0400] rev 1072
Fixed some "declaration should be compatible" errors that showed up under WinXP QA
Dan [Mon, 03 Aug 2009 02:58:43 -0400] rev 1071
Sessions: fixed logout() destroying normal session (instead of elevated) if $level = USER_LEVEL_CHPREF. Possible very minor security concern: elevated sessions were not fully destroyed, so if a normal session is opened from the same IP, the elevated one may be reusable for 15 minutes.
Dan [Mon, 03 Aug 2009 02:56:03 -0400] rev 1070
Login: Enabled DiffieHellman for iPhone OS 3.0 (it passes unit tests now)
Dan [Fri, 31 Jul 2009 19:15:48 -0400] rev 1069
Merged development from Scribus and Charlie
Dan [Fri, 17 Jul 2009 20:48:53 -0400] rev 1068
Editor: completely moved wiki edit notice to AJAX fetch, so it's not shipped with the page anymore.
Dan [Fri, 17 Jul 2009 20:28:24 -0400] rev 1067
Admin: query string is now preserved on redirect to login
Dan [Fri, 17 Jul 2009 20:23:48 -0400] rev 1066
Fixed some formatter engine errors that were exposed through the wiki edit notice
Dan [Fri, 17 Jul 2009 17:11:09 -0400] rev 1065
AJAX Login: Fixed all known issues with lockout (and some unknown ones)
Dan [Wed, 29 Jul 2009 11:49:57 -0400] rev 1064
Moved User CP profile settings to front page of CP, and changed associated language
Dan [Wed, 29 Jul 2009 11:49:30 -0400] rev 1063
Fixed logins with usernames containing Unicode characters
Dan [Wed, 29 Jul 2009 11:49:08 -0400] rev 1062
Fixed title formatting in user pages
Dan [Wed, 29 Jul 2009 11:48:54 -0400] rev 1061
Tweaked URL sanitizing a bit to make Enanium work better.
Dan [Wed, 29 Jul 2009 10:48:43 -0400] rev 1060
Added method add_header_js() to template to allow insertion of code to be run immediately after JS init
Dan [Wed, 29 Jul 2009 10:47:26 -0400] rev 1059
Added ability to specify PNG or JPEG as the format of thumbnails/scaled images in Special:DownloadFile
Dan [Fri, 17 Jul 2009 09:07:50 -0400] rev 1058
ACL manager: started on IE support; button clicking not working. Other compatibility improvements and bugfixes.
Dan [Fri, 17 Jul 2009 09:06:51 -0400] rev 1057
Userpage: rewrite of many CSS rules for better scaling behavior
Dan [Mon, 13 Jul 2009 08:00:36 -0400] rev 1056
ACL editor: finally fixed that annoying blank-window bug on rule deletion
Dan [Sat, 11 Jul 2009 20:28:28 -0400] rev 1055
Here we go, preload_js() officially added to admin panel. Pray with me.
Dan [Sat, 11 Jul 2009 20:28:03 -0400] rev 1054
Renderer: added "smart paragraphs" for templates. <p><b>Foo</b> {bar}</p> where bar is multiline is basically turned into proper XHTML paragraphs.