includes/pageutils.php
Mon, 01 Feb 2010 02:15:04 -0500 Dan Fixed more places where author_uid wasn't right.
Fri, 18 Dec 2009 19:06:49 -0500 Dan Logs: Fully integrated an author_uid column. Logs are now linked by user ID instead of just username, so they survive username changes better. Database is changed. Fixes issue 6.
Mon, 07 Dec 2009 15:12:22 -0500 Dan PostgreSQL: bugfix in ACL related SQL query
Sat, 26 Sep 2009 15:13:40 -0400 Dan Fixed handling of blank urlname as guest main page / other main page for members
Tue, 15 Sep 2009 14:37:03 -0400 Dan Fixed (well, implemented) log clearing functionality on uploaded files.
Thu, 20 Aug 2009 20:01:55 -0400 Dan Fixed some upgrade bugs; added support for choosing one's own date/time formats; rebrand as 1.1.7
Mon, 06 Jul 2009 11:27:02 -0400 Dan History: Fixed missing $q in fetchrow()
Sun, 31 May 2009 23:26:05 -0400 Dan Comments: SECURITY: Fixed IP not recorded in non-JSON submit and a few other non-security issues
Fri, 15 May 2009 14:03:54 -0400 Dan Fixed some bugs with history viewing and log display (wrong row counts, failing to provide result resource, etc.); added "view" button to edits in log display; fixed underscores in auto generated titles
Tue, 05 May 2009 00:10:26 -0400 Dan Made some more changes to the way namespaces are handled, for optimization purposes. This is a bit of a structural reorganization: $paths->pages is obsoleted in its entirety; calculating page existence and metadata is now the job of the Namespace_* backend class. There are many things in PageProcessor that should be reorganized, and page actions in general should really be rethought. This is probably the beginning of a long process that will be taking place over the course of the betas.
Wed, 15 Apr 2009 17:14:20 -0400 Dan Deletion vote reset is now logged and able to be rolled back
Tue, 14 Apr 2009 21:02:13 -0400 Dan Finished core of log display interface including filter management. There is still a bit of a to-do list, especially regarding rollbacks and reuploads.
Mon, 13 Apr 2009 16:57:20 -0400 Dan Live Re-Auth is now required for deleting pages, editing ACLs, protecting pages, and clearing logs. Committing in a hurry as a storm is coming in, hope everything is in there.
Sat, 11 Apr 2009 22:32:45 -0400 Dan When changing namespace of a File: page, associated files are now deleted. Also fixed some issues with image scaling.
Mon, 16 Feb 2009 16:17:25 -0500 Dan Major redesign of rendering pipeline that separates pages saved with MCE from pages saved with the plaintext editor (full description in long commit message)
Sun, 25 Jan 2009 21:18:05 -0500 Dan Added (very basic) spam filtering plugin support. Plugins can mark a message as spam by hooking into the spam check API, which is documented in functions.php. No spam checking functionality is built-in.
Sun, 04 Jan 2009 00:55:40 -0500 Dan Two big commits in one day I know, but redid password storage to use HMAC-SHA1. Consolidated much AES processing to three core methods in session that should handle everything automagically. Installation works; upgrades should. Rebranded as 1.1.6.
Sat, 03 Jan 2009 18:11:18 -0500 Dan Major underlying changes to namespace handling. Each namespace is handled by its own class which extends Namespace_Default. Much greater customization/pluggability potential, at the possible expense of some code reusing (though code reusing has been avoided thus far). Also a bit better handling of page passwords [SECURITY].
Thu, 20 Nov 2008 22:59:25 -0500 Dan Added dependency checking in ACL tracer
Sun, 09 Nov 2008 18:21:30 -0500 Dan Fixed exception handling from session->fetch_page_acl() in ACL trace server side
Sat, 08 Nov 2008 22:37:59 -0500 Dan Merging in the past three months' work on ACL tracing tools.
Sun, 17 Aug 2008 23:24:41 -0400 Dan Revamped page deletion interface; fixed bug where page_meta cache was not being cleared upon restoration of deleted page.
Wed, 13 Aug 2008 08:47:20 -0400 Dan Fixed ACL_TYPE_PRESET pseudo-rules being shown in rule list
Mon, 11 Aug 2008 22:31:04 -0400 Dan Rebranded as 1.1.5 (Caoineag alpha 5) and fixed a couple bugs related to CDN support in template_nodb and installerUI. Updated readme.
Mon, 11 Aug 2008 19:52:41 -0400 Dan Added preliminary support for ACL presets. Yay!
Wed, 09 Jul 2008 22:40:41 -0400 Dan Added Gravatar support! And it's really configurable too.
Wed, 09 Jul 2008 13:18:25 -0400 Dan Fixed a few places where page metadata cache should have been purged (there may be a few more commits like this)
Wed, 02 Jul 2008 22:15:55 -0400 Dan More optimization work. Moved special page init functions to common instead of common_post hook. Allowed paths to cache page metadata on filesystem. Phased out the redundancy in $paths->pages that paired a number with every urlname as foreach loops are allowed now (and have been for some time). Fixed missing includes for several functions. Rewrote str_replace_once to be a lot more efficient.
Tue, 24 Jun 2008 23:37:23 -0400 Dan Majorly reworked Javascript runtime stuff to use on-demand loading.
Mon, 14 Apr 2008 12:13:12 -0400 Dan Rebrand as 1.1.4 (Caoineag alpha 4)
Sat, 29 Mar 2008 15:58:59 -0700 Dan AJAX interface for listing ACL rules implemented
Thu, 27 Mar 2008 16:41:07 -0400 Dan ACL: Added API call to edit rule based only on numeric rule ID; to be used later with lister for existing rules and effective permissions viewer
Wed, 26 Mar 2008 20:20:22 -0400 Dan Made some improvements to ACL system including: warning on setting Deny for Everyone on the entire site, added ACL_ALWAYS_ALLOW_ADMIN_EDIT_ACL, and changed behavior as noted in the docs so that Deny for Everyone is no longer able to be overridden
Thu, 06 Mar 2008 22:45:41 -0500 Dan Hopefully completed rewrite and localization of rollback backend and interface
Sat, 01 Mar 2008 18:57:07 -0500 Dan Fixed the fact that cron just didn't work at all (brain fart that day or something)
Fri, 22 Feb 2008 12:51:53 -0500 Dan Merging fixes and updates from stable branch
Fri, 01 Feb 2008 22:31:57 -0500 Dan Made all captcha fields case-insensitive (thanks pkeating)
Tue, 12 Feb 2008 00:42:29 -0500 Dan Added "is_draft != 1" where appropriate in SQL queries to prevent drafts from being treated as real revisions.
Tue, 12 Feb 2008 00:37:46 -0500 Dan Added autosave functionality and resurrected the old toolbar code that was added about a year ago but never uesd.
Mon, 11 Feb 2008 10:05:33 -0500 Dan Modified editor and rename functions to go through the API when rolling back. This causes rollbacks to be logged.
Wed, 06 Feb 2008 19:27:43 -0500 Dan Fixed some captcha bugs and made all captcha fields case-insensitive
Wed, 06 Feb 2008 18:41:47 -0500 Dan Implemented a new CAPTCHA API; the frontend ($session->{make,get}_captcha) is API-compatible but the backend (the captcha class) is deprecated.
Tue, 29 Jan 2008 23:15:44 -0500 Dan Localization is FINISHED, DAMN IT HELLAH YEAH! OVER WITH! Man, it feels to get that off my chest. Release is in under 48 hours, folks. And we're ready for it.
Thu, 24 Jan 2008 22:06:09 -0500 Dan A number of scattered changes. Profiler added and only enabled in debug mode (currently on), but awfully useful for fixing performance in the future. Started work on Admin:LangManager
Mon, 21 Jan 2008 11:05:16 -0500 Dan PageUtils::createpage(): $name was being sanitized too strictly
Mon, 21 Jan 2008 10:17:26 -0500 Dan Implemented (well stubbed) IP logging in non-AJAX comment interface
Thu, 17 Jan 2008 19:49:14 -0500 Dan Initlogs stage of installer now working
Thu, 03 Jan 2008 00:53:33 -0500 Dan WiP commit for admin panel localization. All modules up to Admin:UserManager (working down the list) are localized except Admin:ThemeManager, which is due for a rewrite
Thu, 27 Dec 2007 22:09:33 -0500 Dan Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Wed, 26 Dec 2007 00:37:26 -0500 Dan More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Thu, 20 Dec 2007 22:23:07 -0500 Dan Added initial avatar support. Currently rather feature complete except for admin controls for avatar.
Wed, 19 Dec 2007 22:55:40 -0500 Dan Redid merge, the previous one had a few problems
Tue, 18 Dec 2007 23:44:55 -0500 Dan Many changes. Installer with PostgreSQL is broken badly and will be for some time.
Sat, 15 Dec 2007 18:10:14 -0500 Dan SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
Wed, 12 Dec 2007 21:37:23 -0500 Dan Rebrand as 1.0.3 (Dyrad)
Sun, 02 Dec 2007 16:00:10 -0500 Dan Merging in the newly stable Coblynau
Fri, 23 Nov 2007 17:59:24 -0500 Dan Changed all urlname/page_id columns to varchar(255) because 63 characters just isn't long enough
Sun, 18 Nov 2007 20:37:08 -0500 Dan Merging in fixes and updates from stable
Sun, 18 Nov 2007 18:44:55 -0500 Dan Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Sat, 17 Nov 2007 22:25:37 -0500 Dan Merging in fixes from stable
Sat, 17 Nov 2007 15:40:04 -0500 Dan Rewrote some security code in PageUtils::savepage to accommodate the ACL system better; there was an issue with non-admin users saving pages on which they have edit rights but wiki mode is turned off
Thu, 15 Nov 2007 18:00:39 -0500 Dan Merging in all changes from revision 185 (90b7a52bea45)
Tue, 06 Nov 2007 13:35:40 -0500 Dan Localized default sidebar; installer should work now including the lang import; l10n in installer to follow
Tue, 06 Nov 2007 10:53:33 -0500 Dan Merge in new installer framework from stable
Mon, 05 Nov 2007 17:07:22 -0500 Dan Renaming config.php and .htaccess to *.new to allow tarbombing an Enano installation with no adverse effects; first attempt, may not work right.
Sat, 03 Nov 2007 07:30:11 -0400 Dan Merging in fixes from rev. 207
Sat, 03 Nov 2007 07:20:32 -0400 Dan Fixed the one FIXME in PageUtils regarding static HTML comment system's greeting line; fixed parsing of external links in template->tplWikiFormat
Mon, 29 Oct 2007 22:38:03 -0400 Dan Failsafe ACL editor interface localized
Mon, 29 Oct 2007 22:19:06 -0400 Dan Javascripted ACL editor interface localized
Sun, 28 Oct 2007 23:50:10 -0400 Dan All on-page AJAX applets should be localized now
Sun, 28 Oct 2007 21:19:36 -0400 Dan Localized history page and static HTML comment interface
Fri, 26 Oct 2007 19:28:54 -0400 Dan You know what folks, a lot of Mercurial merges failed, and I just now figured out why. So now all changes from stable are permanently synced in.
Sat, 20 Oct 2007 21:51:26 -0400 Dan Merging in changes from db8a849ad4c9
Sat, 20 Oct 2007 21:46:05 -0400 Dan SECURITY: Fixed possible SQL injection in PageUtils page protection; general cleanup of PageUtils; blocked using Project: prefix for page URL strings
Sat, 06 Oct 2007 20:36:40 -0400 Dan Rebrand as 1.1.1; everything should now be bumped to "unstable" status
Mon, 01 Oct 2007 22:18:51 -0400 Dan SECURITY: tightened up validation for rollbacks
Sun, 23 Sep 2007 23:21:10 -0400 Dan Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
Tue, 04 Sep 2007 12:52:23 -0400 Dan Fixed the obnoxious issue with forms using GET and index.php?title=Foo URL scheme (this works a whole lot better than MediaWiki now
Sun, 02 Sep 2007 00:23:07 -0400 Dan Rewrote all code related to delvote_ips column to use serialize()
Sun, 26 Aug 2007 20:45:33 -0400 Dan Several major improvements: Memberlist page added (planned since about beta 2), page group support added for non-JS ACL editor (oops!), and attempting to view a page for which you lack read permissions will get you logged.
Sun, 26 Aug 2007 16:48:15 -0400 Dan [comments] fixed edit button (source wasn't getting filled)
Sun, 05 Aug 2007 15:58:50 -0400 Dan Replaced the menu in the admin theme with something much more visually pleasureable; minor fix in Special:UploadFile; finished patching a couple of XSS problems from Banshee; finished Admin:PageGroups; removed unneeded code in flyin.js; finished tag system (except tag cloud); 1.0.1 release candidate
Sun, 29 Jul 2007 17:40:36 -0400 Dan Modified Text_Wiki parser to fully support UTF-8 strings; several other UTF-8 fixes, international characters seem to work reasonably well now
Sat, 21 Jul 2007 18:12:10 -0400 Dan Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
Mon, 09 Jul 2007 22:01:27 -0400 Dan Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
Tue, 03 Jul 2007 14:07:35 -0400 Dan Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Mon, 02 Jul 2007 20:33:57 -0400 Dan Changed animation on flying message boxes; bugfix for "Array" response in theme changer; added diff CSS to enano-shared; allowed spaces in username during install
Sun, 01 Jul 2007 14:08:39 -0400 Dan Finished everything on the TODO list (yay!); several CSS cleanups; tons more changes in this commit - see the patch for details
Thu, 28 Jun 2007 11:13:39 -0400 Dan Rewrote change theme dialog; a few minor stability fixes here and there; fixed IE + St Patty background image
Wed, 27 Jun 2007 12:09:02 -0400 Dan Deleting pages now requires a reason
Tue, 26 Jun 2007 17:28:18 -0400 Dan Updated all version numbers back to Banshee; a few preliminary steps towards full UTF-8 support in page URLs
Sat, 23 Jun 2007 18:54:16 -0400 Dan Added demo mode functionality to various parts of Enano (unlocked only with a plugin) and fixed groups table
Sat, 23 Jun 2007 10:16:53 -0400 Dan Emergency version change to 1.0rc3 to fix XSS vulnerabilities
Sat, 23 Jun 2007 09:55:58 -0400 Dan Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability
Wed, 13 Jun 2007 16:07:17 -0400 dan Adding /includes
less more (0) tip