| Commit message (Expand) | Author | Age |
|---|
| * | allow users to subscribe to comments w/o registering•••Technically, when the user does this, a passwordless account is created
for them. The notify mails include a login url, and once logged in that
way, the user can enter a password to get a regular account (although
one with an annoying username).
This all requires the passwordauth plugin is enabled. A future enhancement
could be to split the passwordless user concept out into a separate plugin.
| Joey Hess | 2012-04-02 |
| * | support do=tokenauth login for passwordless accounts | Joey Hess | 2012-04-02 |
| * | passwordauth: Fix url in password recovery email to be absolute.•••This got broken when cgiurl began often returning a relative url.
Added a cgiurl_abs for the things that need a guaranteed absolute cgiurl.
| Joey Hess | 2012-04-02 |
| * | add support for a passwordless login token•••The plan is to use this for accounts that are created implicitly, as when
a non-logged-in user subscribes to notifyemail. Such an account has no
password, and login can be accomplished by way of a url that is sent to
them in email.
When the user sets a password, the passwordless login token is disabled.
| Joey Hess | 2012-04-02 |
| * | fix another undef/"" confusion | Joey Hess | 2012-03-28 |
| * | stop using REMOTE_ADDR•••Everywhere that REMOTE_ADDR was used, a session object is available, so
instead use its remote_addr method.
In IkiWiki::Receive, stop setting a dummy REMOTE_ADDR.
Note that it's possible for a session cookie to be obtained using one IP
address, and then used from another IP. In this case, the first IP will now
be used. I think that should be ok.
| Joey Hess | 2010-06-23 |
| * | fix uninitialized value warning•••$cgi->params('do') may not be defined. The CSRF code may delete all
cgi params. This uninitalized value was introduced when do=register
support was added recently.
| Joey Hess | 2010-04-20 |
| * | Group related plugins into sections in the setup file, and drop unused rcs pl... | Joey Hess | 2010-02-11 |
| * | factor out a userpage function•••Not yet exported, as only 4 quite core plugins use it.
| Joey Hess | 2010-02-04 |
| * | Add link to userpage (or creation link) to top of preferences page. | Joey Hess | 2010-02-04 |
| * | typo | Joey Hess | 2010-02-04 |
| * | Improve display of openid in preferences page.•••Now that openiduser is in IkiWiki core, it's ok to have passwordauth check
for it, and avoid displaying useless password fields when showing
preferences for an openid.
Also improved the styling of the display of the openid in the preferneces
page.
| Joey Hess | 2010-02-04 |
| * | Allow jumping directly into account registration process by going to ikiwiki... | Joey Hess | 2010-02-04 |
| * | Disable the Preferences link if no plugin with an auth hook is enabled. | Joey Hess | 2009-06-09 |
| * | finalise version 3.00 of the plugin api | Joey Hess | 2008-12-23 |
| * | Coding style change: Remove explcit vim folding markers. | Joey Hess | 2008-12-17 |
| * | add plugin safe/rebuild info (part 2 of 3)•••(brain.. melting..)
| Joey Hess | 2008-08-03 |
| * | remove default values in getsetup•••They were a bit confusing, since they did not actually set the default, and
example values are sufficient.
| Joey Hess | 2008-07-26 |
| * | typo | Joey Hess | 2008-07-26 |
| * | adminemail may be undefined | Joey Hess | 2008-07-26 |
| * | allow account_creation_password to not be defined | Joey Hess | 2008-07-26 |
| * | added getsetup hooks for all plugins up to recentchanges | Joey Hess | 2008-07-25 |
| * | hashed password support, and empty password security fix•••This implements the previously documented hashed password support.
While implementing that, I noticed a security hole, which this commit
also fixes..
| Joey Hess | 2008-05-30 |
| * | * Change formbuilder hook to not be responsible for displaying a form,••• so that more than one plugin can use this hook.
I believe this is a safe change, since only passwordauth uses this hook.
(If some other plugin already used it, it would have broken passwordauth!)
| Joey Hess | 2007-12-12 |
| * | * Fix some bugs in password handling:••• - If the password is empty in preferences, don't clear the existing
password.
- Actually check the confirm password field, even if it's left empty.
| joey | 2007-05-17 |
| * | * Add an account-creation password as a simple anti-spam mechanism. If••• set in the wiki setup, passwordauth will require the password in
order to create an account.
| joshtriplett | 2007-05-09 |
| * | * Fix a bug that prevented clearing email or subscriptions. | joey | 2007-04-30 |
| * | correct size of name field in initial login form (same size as password) | joey | 2007-04-30 |
| * | Revert passwordauth fieldset and doc to avoid 2.0 regressions; need to re-eva... | joshtriplett | 2007-04-30 |
| * | * Group passwordauth fields with a fieldset as well. Add a new••• passwordauth page to the basewiki describing password
authentication; like openid, it uses conditional to check which
forms of authentication the wiki allows. Add conditional cross-
links between the openid and passwordauth pages, to help the user
understand how they can log in.
| joshtriplett | 2007-04-30 |
| * | I don't think this comment adds much | joey | 2007-04-29 |
| * | * Use fieldsets in the preferences form to group related options together.••• Especially cleans up the ordering of the admin's preferences form.
| joey | 2007-04-29 |
| * | * pagespec_match() has changed to take named parameters, to better allow••• for extended pagespecs. The old calling convention will still work for
back-compat for now.
* The calling convention for functions in the IkiWiki::PageSpec namespace
has changed so they are passed named parameters.
* Plugin interface version increased to 2.00 since I don't anticipate any
more interface changes before 2.0.
| joey | 2007-04-27 |
| * | * Many changes to make ikiwiki very resistant to write failures••• including out of disk space situations. ikiwiki should never leave
truncated files, and if the error occurs during a web-based file edit,
the user will be given an opportunity to retry.
Inspired by the many ways Moin Moin destroys itself when out of disk. :-)
* Fix syslogging of errors.
| joey | 2007-02-15 |
| * | missing IkiWiki:: | joey | 2007-02-03 |
| * | * Add canedit hook, allowing arbitrary controls over when a page can be••• edited.
* Move code forcing signing before edit to a new "signinedit" plugin, and
code checking for locked pages into a new "lockedit" plugin. Both are
enabled by default.
* Remove the anonok config setting. This is now implemented by a new
"anonok" plugin. Anyone with a wiki allowing anonymous edits should
change their configs to enable this new plugin.
* Add an opendiscussion plugin that allows anonymous users to edit
discussion pages, on a wiki that is otherwise wouldn't allow it.
* Lots of CGI code reorg and cleanup.
| joey | 2007-02-02 |
| * | * Initial work on internationalization of the program code. po/ikiwiki.pot••• is available for translation.
* Export gettext() from IkiWiki module.
| joey | 2006-12-29 |
| * | bugfixen | joey | 2006-11-22 |
| * | add | joey | 2006-11-20 |