plugins/SpecialAdmin.php
Sun, 11 Jan 2009 21:35:03 -0500 Dan Special:Administration: fixed 404 on several Tigra tree menu images
Sun, 04 Jan 2009 00:55:40 -0500 Dan Two big commits in one day I know, but redid password storage to use HMAC-SHA1. Consolidated much AES processing to three core methods in session that should handle everything automagically. Installation works; upgrades should. Rebranded as 1.1.6.
Wed, 24 Dec 2008 10:04:48 -0500 Dan Small speed optimization to admin panel loader
Mon, 22 Dec 2008 21:25:14 -0500 Dan Updated URLs and strings to point to the new server (ktulu)
Sat, 15 Nov 2008 18:23:25 -0500 Dan Added ability to have alternate main page for members
Sun, 09 Nov 2008 09:03:10 -0500 Dan Added config option to grant userpage rights to new users (defaults to on, as it was hardcoded on before)
Fri, 17 Oct 2008 21:21:55 -0400 Dan Fixed SpecialAdmin setting theme and style way too late (thanks Andrew Kohnken)
Sun, 24 Aug 2008 12:42:50 -0400 Dan Fixed reference to $() which should be $dynano() in SpecialAdmin
Sat, 23 Aug 2008 16:03:13 -0400 Dan Fixed minor (non-XSS) sanitization issue for main_page field in Admin:GeneralConfig
Tue, 12 Aug 2008 00:06:35 -0400 Dan Added customizable parameters for session length and the long-missing "remember me" option (or rather, the ability to turn it off and make sessions temporary)
Mon, 11 Aug 2008 22:31:04 -0400 Dan Rebranded as 1.1.5 (Caoineag alpha 5) and fixed a couple bugs related to CDN support in template_nodb and installerUI. Updated readme.
Mon, 11 Aug 2008 21:35:26 -0400 Dan Fixed a couple bugs in the check-for-updates code.
Tue, 22 Jul 2008 17:00:54 -0500 Dan Fixed installer path check in Admin:Home; made admin-menu more compatible with componentized JS
Sun, 20 Jul 2008 13:32:04 -0400 Dan Added CDN support: a URL to a CDN can now be specified and Enano will load all images, CSS, and javascript (except TinyMCE) from that server
Wed, 09 Jul 2008 22:40:41 -0400 Dan Added Gravatar support! And it's really configurable too.
Mon, 07 Jul 2008 18:12:30 -0400 Dan First stab at cache management backend. Everything seems to have been tested and working so far, but a number of things require a more specialized cache and can't go through the framework (e.g. user ranks which use references to map usernames to user IDs)
Mon, 07 Jul 2008 02:50:17 -0400 Dan First draft of new CacheManager admin page. Backend is yet to be implemented.
Mon, 07 Jul 2008 02:37:12 -0400 Dan Added ability to hide or show sidebar blocks based on a {restrict} or {hideif} conditional in the sidebar script
Wed, 02 Jul 2008 22:15:55 -0400 Dan More optimization work. Moved special page init functions to common instead of common_post hook. Allowed paths to cache page metadata on filesystem. Phased out the redundancy in $paths->pages that paired a number with every urlname as foreach loops are allowed now (and have been for some time). Fixed missing includes for several functions. Rewrote str_replace_once to be a lot more efficient.
Mon, 30 Jun 2008 17:20:02 -0400 Dan Several optimization changes including getting rid of a few eval()s. Added placeholder functions for the theme manager, which should be working now
Tue, 24 Jun 2008 23:37:23 -0400 Dan Majorly reworked Javascript runtime stuff to use on-demand loading.
Sun, 22 Jun 2008 18:13:59 -0400 Dan Initial progress towards converting auto-completion framework to Spry. Not currently in a very working state.
Sun, 15 Jun 2008 01:30:00 -0400 Dan Renamed some functions (that were new in this release anyway) due to compatibility broken with PunBB bridge
Sat, 07 Jun 2008 12:49:45 -0400 Dan Updated version number metadata in system plugin files; added some comments and removed unused code from index.php and includes/graphs.php
Fri, 16 May 2008 12:22:26 -0400 Dan Added user preference for disabling visual effects in Javascript applets; added re-import button to installed plugins
Mon, 14 Apr 2008 12:13:12 -0400 Dan Rebrand as 1.1.4 (Caoineag alpha 4)
Sun, 06 Apr 2008 15:30:39 -0400 Dan Started work on the new plugin manager and associated management code. Very incomplete at this point and not usable.
Wed, 26 Mar 2008 20:20:22 -0400 Dan Made some improvements to ACL system including: warning on setting Deny for Everyone on the entire site, added ACL_ALWAYS_ALLOW_ADMIN_EDIT_ACL, and changed behavior as noted in the docs so that Deny for Everyone is no longer able to be overridden
Sun, 16 Mar 2008 16:06:59 -0400 Dan Added support for embedding language data into plugins; updated all version numbers on plugin files
Sun, 02 Mar 2008 22:52:23 -0500 Dan Added modal dialog support for page editor; added customizability for breadcrumbs (thanks to Manoj for idea)
Sat, 01 Mar 2008 18:55:30 -0500 Dan Finished theme manager to the point where it's in a working state in Firefox and hopefully IE.
Fri, 22 Feb 2008 12:51:53 -0500 Dan Merging fixes and updates from stable branch
Wed, 09 Jan 2008 22:13:42 -0500 Dan Fix undefined E_STRICT under PHP 4; add PHP 4 deprecation notice in admin panel
Mon, 18 Feb 2008 16:27:28 -0500 Dan Started (but disabled) work on the new theme manager, 1.1.2 is being released with this thing halfway done.
Sun, 10 Feb 2008 19:35:06 -0500 Dan Mass-fixed all AJAX functions to also check the HTTP status code before parsing the response
Tue, 29 Jan 2008 23:15:44 -0500 Dan Localization is FINISHED, DAMN IT HELLAH YEAH! OVER WITH! Man, it feels to get that off my chest. Release is in under 48 hours, folks. And we're ready for it.
Tue, 29 Jan 2008 16:19:51 -0500 Dan Rebranded source code as 1.1.1; added TinyMCE ACL rule as per Vadi's request: http://forum.enanocms.org/viewtopic.php?f=7&t=54
Sun, 27 Jan 2008 23:17:15 -0500 Dan Updated acledit and comment templates on themes, as they weren't in sync with Oxygen; fixed some undefined index errors in SpecialAdmin and paths
Sat, 26 Jan 2008 15:42:32 -0500 Dan Removed stray debugging info from ACL editor success notification; added ability for guests to set language on URI (?lang=eng); added html_in_pages ACL type and separated from php_in_pages so HTML can be embedded but not PHP; rewote portions of the path manager to better abstract URL input; added Zend Framework into list of BSD-licensed libraries; localized some remaining strings; got the migration script working, but just barely; fixed display bug in Special:Contributions; localized Main Page button in admin panel
Sat, 26 Jan 2008 11:51:19 -0500 Dan Finished (or nearly finished) the admin language CP
Thu, 24 Jan 2008 22:06:09 -0500 Dan A number of scattered changes. Profiler added and only enabled in debug mode (currently on), but awfully useful for fixing performance in the future. Started work on Admin:LangManager
Mon, 21 Jan 2008 18:33:44 -0500 Dan Localized Special:EditSidebar
Sun, 20 Jan 2008 22:34:02 -0500 Dan Completed l10n on admin panel. Exception is Admin:ThemeManager, which is pending a rewrite.
Sun, 20 Jan 2008 20:27:26 -0500 Dan Localized Admin:MassEmail
Sat, 19 Jan 2008 00:32:41 -0500 Dan Localized Admin:COPPA
Wed, 16 Jan 2008 13:55:49 -0500 Dan Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Thu, 03 Jan 2008 18:39:19 -0500 Dan Localized and separated Admin:GroupManager
Thu, 03 Jan 2008 00:53:33 -0500 Dan WiP commit for admin panel localization. All modules up to Admin:UserManager (working down the list) are localized except Admin:ThemeManager, which is due for a rewrite
Sun, 30 Dec 2007 01:13:24 -0500 Dan Localized the first parts of the admin panel. As a consequence, also wrote a brand new Admin:PageManager that doesn't suck like the old one did.
Thu, 27 Dec 2007 23:32:11 -0500 Dan Added ability to require CAPTCHA for guests when editing pages (AJAX INTERFACE ONLY)
Thu, 27 Dec 2007 22:09:33 -0500 Dan Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Wed, 26 Dec 2007 00:37:26 -0500 Dan More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Fri, 21 Dec 2007 18:21:20 -0500 Dan Added update-checking function (still a little rough around the edges); added support into admin user CP for changing avatars
Thu, 20 Dec 2007 22:23:07 -0500 Dan Added initial avatar support. Currently rather feature complete except for admin controls for avatar.
Wed, 19 Dec 2007 22:55:40 -0500 Dan Redid merge, the previous one had a few problems
Tue, 18 Dec 2007 23:44:55 -0500 Dan Many changes. Installer with PostgreSQL is broken badly and will be for some time.
Sat, 15 Dec 2007 18:10:14 -0500 Dan SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
Wed, 12 Dec 2007 21:37:23 -0500 Dan Rebrand as 1.0.3 (Dyrad)
Wed, 12 Dec 2007 21:04:20 -0500 Dan SECURITY: CRITICAL: Fix SQL injection in admin CP page editor
Sun, 02 Dec 2007 16:00:10 -0500 Dan Merging in the newly stable Coblynau
Sun, 25 Nov 2007 19:23:50 -0500 Dan Nothing special. ksort()ing list of allowed filetypes in the admin panel to make editing the list marginally easier
Wed, 21 Nov 2007 21:03:48 -0500 Dan Merging in updates and improvements from stable
Wed, 21 Nov 2007 15:10:57 -0500 Dan Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Sun, 18 Nov 2007 20:37:08 -0500 Dan Merging in fixes and updates from stable
Sun, 18 Nov 2007 18:44:55 -0500 Dan Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Sat, 17 Nov 2007 22:25:37 -0500 Dan Merging in fixes from stable
Thu, 15 Nov 2007 18:00:39 -0500 Dan Merging in all changes from revision 185 (90b7a52bea45)
Sat, 03 Nov 2007 07:40:54 -0400 Dan Merging in fixes and updates from 90b7a52bea45
Sat, 03 Nov 2007 07:30:11 -0400 Dan Merging in fixes from rev. 207
Fri, 02 Nov 2007 20:40:45 -0400 Dan Merging in fixes from stable
Thu, 01 Nov 2007 10:06:19 -0400 Dan Fixed: radiobutton state in Admin:GeneralConfig not remembered when registration disabled
Fri, 02 Nov 2007 20:37:26 -0400 Dan Localized a good part, if not all, of the registration page and a couple other things.
Mon, 29 Oct 2007 21:27:11 -0400 Dan ... properly this time. Nighthawk is giving me crap so I'm moving to the laptop for now.
Mon, 29 Oct 2007 20:01:48 -0400 Dan Localized the dreaded not-authenticated message in the admin panel
Mon, 29 Oct 2007 11:17:55 -0400 Dan Localized the sidebar
Sun, 28 Oct 2007 16:40:24 -0400 Dan Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Sat, 27 Oct 2007 13:54:44 -0400 Dan Merging in some leftover changes from stable
Wed, 24 Oct 2007 12:45:05 -0400 Dan Merging in fixes from stable
Fri, 26 Oct 2007 19:28:54 -0400 Dan You know what folks, a lot of Mercurial merges failed, and I just now figured out why. So now all changes from stable are permanently synced in.
Sun, 21 Oct 2007 21:26:11 -0400 Dan Nothing special at all. Unnamed sidebar blocks will show the text <Unnamed> instead of just showing nothing, thus making them renamable
Sat, 20 Oct 2007 21:51:26 -0400 Dan Merging in changes from db8a849ad4c9
Sat, 20 Oct 2007 21:44:13 -0400 Dan Merging in changes from stable
Sat, 20 Oct 2007 11:11:40 -0400 Dan Implemented cron image into Oxygen and St Patty as promised; fixed way-outdated version numbers in plugins
Fri, 19 Oct 2007 21:07:54 -0400 Dan Sidebar blocks can be renamed now (untested except in Fx2)
Sun, 14 Oct 2007 20:51:15 -0400 Dan Sync from stable
Tue, 09 Oct 2007 16:14:55 -0400 Dan Fixed some regular expressions in HTML optimization algorithm; regex page groups can be edited now (oops)
Sun, 07 Oct 2007 21:28:36 -0400 Dan [F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Sat, 06 Oct 2007 20:36:40 -0400 Dan Rebrand as 1.1.1; everything should now be bumped to "unstable" status
Fri, 05 Oct 2007 01:57:00 -0400 Dan Major revamps to the template parser. Fixed a few security holes that could allow PHP to be injected in untimely places in TPL code. Improved Ux for XSS attempt in tplWikiFormat. Documented many functions. Backported much cleaner parser from 2.0 branch. Beautified a lot of code in the depths of the template class. Pretty much a small-scale Extreme Makeover.
Sun, 23 Sep 2007 23:21:10 -0400 Dan Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
Sun, 23 Sep 2007 18:42:16 -0400 Dan Revamped the administrator's user CP, big time. The admin module now uses a smart form and enables all profile fields, including users_extra, to be changed. Passwords are encrypted when sent. The whole CP has been split off into a different file to accomodate the large amount of code.
Tue, 18 Sep 2007 00:30:43 -0400 Dan Fully implemented password complexity enforcement; added encryption for passwords on registration form; some baby steps taken towards supporting international usernames - this is not working very well, we might need a hackish fix; TODO: implement password strength meter into installer UI and get international usernames 100% working
Wed, 12 Sep 2007 00:18:32 -0400 Dan Fixed unwanted sanitization in Admin:PageManager form submit
Sat, 08 Sep 2007 22:58:38 -0400 Dan Improved ban control page and allowed multiple entries/IP ranges; changed some parameters on jBox; user level changes are logged now
Fri, 07 Sep 2007 18:19:30 -0400 Dan Fixed the two known issues in the release notes; tarballs will be updated accordingly 1.0.1
Fri, 07 Sep 2007 16:27:40 -0400 Dan Merging Scribus and Nighthawk repositories
Fri, 07 Sep 2007 16:25:16 -0400 Dan Added keep-alive function to admin panel (had been planned for some time) and a new hook, template_var_init_end
Thu, 06 Sep 2007 23:03:51 -0400 Dan Made most special pages "visible"; fixup for non-existent special page redirect in paths.php; rewrote Special:AllPages to have pagination (WiP, Special:SpecialPages is possibly next, depending on whether paginate_array works or not)
Thu, 30 Aug 2007 20:46:57 -0400 Dan Removed a few stale debug messages
Wed, 29 Aug 2007 23:35:06 -0400 Dan Added a ton of new log points for administrator actions; restructured security log view and enabled pagination for security logs; string change in ajax.php for RDNS operation failure
Sun, 26 Aug 2007 20:45:33 -0400 Dan Several major improvements: Memberlist page added (planned since about beta 2), page group support added for non-JS ACL editor (oops!), and attempting to view a page for which you lack read permissions will get you logged.
Sun, 26 Aug 2007 16:48:15 -0400 Dan [comments] fixed edit button (source wasn't getting filled)
Sun, 12 Aug 2007 13:33:04 -0400 Dan Fixed XSS vulnerability in admin panel page manager
Thu, 09 Aug 2007 12:26:16 -0400 Dan AJAX comments are now paginated; plugin manager can now show system plugins; typo in installer corrected; links in oxygen/stpatty/admin footers changed to "About Enano" page; 1.0.1 release candidate
Wed, 01 Aug 2007 13:39:27 -0400 Dan Improved and enabled HTML optimization algorithm; enabled gzip compression; added but did not test at all the tag cloud class in includes/tagcloud.php, this is still very preliminary and not ready for any type of production use
Wed, 25 Jul 2007 18:06:34 -0400 Dan Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Sat, 21 Jul 2007 18:12:10 -0400 Dan Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
Sat, 21 Jul 2007 11:28:59 -0400 Dan Fixed a few presentation bugs in installer, made installer more "legally binding", and fixed global permissions inheritance in $session->fetch_page_acl() 1.0
Tue, 10 Jul 2007 12:31:12 -0400 Dan I fixed the statistics!!! YAY!!
Mon, 09 Jul 2007 22:01:27 -0400 Dan Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
Thu, 05 Jul 2007 10:43:03 -0400 Dan Fixed weird unimportant security issue in admin panel + demo mode
Thu, 05 Jul 2007 10:37:36 -0400 Dan I dunno how many times I'm gonna have to fix the "problem seems to be the hex conversion" bug, but this is at least the fourth try.
Tue, 03 Jul 2007 14:07:35 -0400 Dan Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Sun, 01 Jul 2007 17:12:42 -0400 Dan More image tag parser fixes
Sun, 01 Jul 2007 15:00:32 -0400 Dan Added "page hint" on search page; deprecated "www." on EnanoCMS.org links
Thu, 28 Jun 2007 13:49:40 -0400 Dan COPPA support added
Wed, 27 Jun 2007 00:59:42 -0400 Dan Converting all tables on new installations to UTF-8; this may break MySQL 4.0 compatibility; several minor cosmetic fixes; set Powered button under Links to "on" by default
Tue, 26 Jun 2007 20:48:44 -0400 Dan More preliminary l10n work; userpage portal style basics implemented
Sat, 23 Jun 2007 19:27:41 -0400 Dan Demo mode: security logs are now recorded but not publicly displayed
Sat, 23 Jun 2007 18:54:16 -0400 Dan Added demo mode functionality to various parts of Enano (unlocked only with a plugin) and fixed groups table
Sat, 23 Jun 2007 09:55:58 -0400 Dan Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability
Sat, 16 Jun 2007 18:47:06 -0400 dan Following fixes: admin theme supports <button> tag now, PageProcessor can eval now, and SpecialAdmin.php plugin can no longer be disabled
Wed, 13 Jun 2007 16:03:00 -0400 dan Initial population
less more (0) tip