aboutsummaryrefslogtreecommitdiff
path: root/IkiWiki/Plugin
Commit message (Collapse)AuthorAge
* typoJoey Hess2010-03-12
|
* htmlscrubber: Security fix: In data:image/* uris, only allow a few ↵Joey Hess2010-03-12
| | | | whitelisted image types. No svg.
* search: Avoid '$' in the wikiname appearing unescaped on omega's query ↵Joey Hess2010-03-11
| | | | | | | template, where it might crash omega. Really, a more general fix, this deals with any $ that might appear on the misctemplate.
* moderatedcomments: Added moderate_pagespecJoey Hess2010-03-11
| | | | | | | | | | | * moderatedcomments: Added moderate_pagespec that can be used to control which users or comment locations are moderated. This can be used, just for example, to moderate http://myopenid.com/* if you're getting a lot of spammers from one particular openid provider (who should perhaps answer your emails about them), while not moderating other users. * moderatedcomments: The moderate_users setting is deprecated. Instead, set moderate_pagespec to "!admin()" or "user(*)" instead.
* typoJoey Hess2010-03-09
|
* Fix utf8 issues in calls to md5_hex.Joey Hess2010-03-09
| | | | | | | | | | | | | | | | | | | This prevented comments containing some utf-8, including euro sign, from being submitted. Since md5_hex is a C implementation, the string has to be converted from perl's internal encoding to utf-8 when it is called. Some utf-8 happened to work before, apparently by accident. Note that this will change the checksums returned. unique_comment_location is only used when posting comments, so the checksum does not need to be stable there. I only changed page_to_id for completeness; it is passed a comment page name, and they can currently never contain utf-8. In teximg, the bug could perhaps be triggered if the tex source contained utf-8. If that happens, the checksum will change, and some extra work might be performed on upgrade to rebuild the image.
* catch failure to open the filetypes fileJoey Hess2010-02-24
|
* comments: Display number of comments in comment action link.Joey Hess2010-02-14
| | | | | | | | | | This was not doable before, but when I added transitive dependency handling in the big dependency rewrite, it became possible to include a comment count when inlining. This also improves the action link when a page has no comments. It will link direct to the cgi to allow posting the first comment. And if the page is locked to prevent posting new comments, the link is no longer shown.
* minor refactor/optimisationJoey Hess2010-02-14
|
* setup file orderingJoey Hess2010-02-12
|
* add section informationJoey Hess2010-02-12
|
* remove unnecessary IkiWiki::Joey Hess2010-02-12
|
* format plugin categorizationJoey Hess2010-02-12
|
* improve websetup fieldset displayJoey Hess2010-02-12
| | | | to handle sections
* fix websetup display of unsafe arrays in expert modeJoey Hess2010-02-11
|
* Group related plugins into sections in the setup file, and drop unused rcs ↵Joey Hess2010-02-11
| | | | plugins from the setup file.
* reorder canedit checks during page creation to have best_loc firstJoey Hess2010-02-11
| | | | | | | | | | | | | | | | | | | | | | | | | | When creating a page, multiple locations are tested to see if they can be edited. If all fail, one of the failure subs is called, to log the user in to allow them to proceed with the edit. So far so good. But, what if some pages fail for one reason, and some for another? This occurs when httpauth_pagespec is used in conjunction with signinedit (and openid or something). When the user is not signed in at all The former will fail to edit a page because the user was not httpauthed. The latter will fail to edit a different page, because the user was not signed in. One of their failure methods gets to run first. The page creation code always ran the failure method corresponding to the topmost page location. So, when editing a foo/Discussion page, and with httpauth_pagespec => "*!/Discussion", it ran the httpauth failure method, which was exactly the wrong thing to do. I fixed this by making it instead run the failure method for the *best* page location. In the above example, that's foo/Discussion, so signinedit runs, as desired, and we get the signin page. This seems like it will be the right choice, or at least an acceptable choice. If a user wants to use httpauth they can always choose it on the signin page.
* partially fix httpauth canedit hookJoey Hess2010-02-11
| | | | | | | | | | My logic was right before. Cleaned up some code. (Page creation is still a problem.) Also, I removed the Edit url munging, because that is not necessary with the canedit hook, since canedit will handle redirection through cgiauthurl if necessary.
* fix logic errorJoey Hess2010-02-11
|
* httpauth: Add httpauth_pagespec setting that can be used to limit pages to ↵Joey Hess2010-02-11
| | | | only being edited via users authed with httpauth.
* httpauth: When cgiauthurl is configured, httpauth can now be used alongside ↵Joey Hess2010-02-11
| | | | other authentication methods (like openid or anonok). Rather than always redirect to the cgiauthurl for authentication, there is now a button on the login form to use it.
* patch so farJoey Hess2010-02-11
|
* amazon_s3: Fix to support the EU S3 datacenter, which is more picky about ↵Joey Hess2010-02-09
| | | | attempts to create already existing buckets.
* Fix color and format plugins to appear in the websetup interface.Joey Hess2010-02-06
|
* opendiscussion: This plugin will also now allow posting commentsJoey Hess2010-02-06
| | | | to otherwise locked-down sites.
* ensure opendiscussion hook is always called before lockeditJoey Hess2010-02-06
| | | | This was only ordered ok due to luck before.
* revert accidental code changeJoey Hess2010-02-05
|
* responseJoey Hess2010-02-05
|
* factor out a userpage functionJoey Hess2010-02-04
| | | | Not yet exported, as only 4 quite core plugins use it.
* Add link to userpage (or creation link) to top of preferences page.Joey Hess2010-02-04
|
* typoJoey Hess2010-02-04
|
* Improve display of openid in preferences page.Joey Hess2010-02-04
| | | | | | | | | Now that openiduser is in IkiWiki core, it's ok to have passwordauth check for it, and avoid displaying useless password fields when showing preferences for an openid. Also improved the styling of the display of the openid in the preferneces page.
* Allow jumping directly into account registration process by going to ↵Joey Hess2010-02-04
| | | | ikiwiki.cgi?do=register
* img: Fix a bug that could taint @links with undef values.Joey Hess2010-01-28
|
* template: Preprocess parameters before htmlizing.Joey Hess2010-01-26
| | | | | | | | | | | | | | | | | | | | | | | Consider a template like: [[!template type=note text=""" [[!inline pages="*foo*"]] """]] The text parameter is htmlized before being passed into the template (in case the template wraps it in a <span> that prevents markdown from htmlizing it later). But, when markdown sees "*foo*", it turns that into <em>foo</em>. Later, when preprocessing the inline directive, that leads to suprising results. To fix this, I made template parameters be preprocessed (and filtered) before being htmlized. Note that I left in the preprocessing (and filtering) of the template output at the end. That's still relevant when the template itself contains preprocessor directives.
* po: avoid crash when page is emptyJoey Hess2010-01-21
| | | | | | | Note that there is an associated po4a warning when a page is empty: Use of uninitialized value $file in substitution (s///) at /usr/share/perl5/Locale/Po4a/Text.pm line 205. I've filed a bug with po4a about that, but the important thing is fixing the crash here.
* handle git-notes breakageJoey Hess2010-01-19
| | | | | | | | | | The new git-notes feature in git 1.6.6 changes git log output in a way that broke ikiwiki's parser if notes are added to commits. I decided to deal with this by disabling notes when ikiwiki uses git, by setting GIT_NOTES_REF="". AFAICS, looking up notes when dumping logs will only waste time, since it does not currently seem to make sense for ikiwiki to do anything with the notes.
* brace style and layoutJoey Hess2010-01-18
|
* clarify errorJoey Hess2010-01-18
|
* linkmap: Simplify and improve browser compatability by using an img, not ↵Joey Hess2010-01-09
| | | | | | | | object tag. I noticed that chromium was not hyperlinking the areas in the object-based linkmap, while img works ok. Dunno why, but img based is nicer anyway since it is allowed right through the htmlscrubber with no workarounds.
* websetup: Fix bug in array change detection.Joey Hess2010-01-09
|
* websetup: Fix utf-8 problems.Joey Hess2010-01-09
|
* only use css alignment stuff for tableJoey Hess2010-01-07
| | | | | | This way users can use all the other alignment values when not including a caption. Also, it will work without the standard style, and I don't have to worry about regressions this way.
* img: remove special case handling of link=yesJoey Hess2010-01-07
| | | | Only exists as an undocumented backwards compatability hack.
* refactorJoey Hess2010-01-07
|
* brace styleJoey Hess2010-01-07
|
* Support align attribute for img with captionGiuseppe Bilotta2010-01-06
| | | | | | This is achieved by preparing CSS definitions that emulates the behavior of the align attribute, and passing it to the outermost IMG wrapper (A or TABLE) instead of passing the align value to IMG directly.
* comments: Fix permalinks for comments using new conflict-free filenames.Joey Hess2010-01-04
|
* lockedit can make sense with no auth pluginsJoey Hess2010-01-04
| | | | | | | | On second though, you might want a wide-open wiki with some locked pages that cannot be edited online. So, the right thing for lockedit to do when there are no auth plugins is to just say the page cannot be edited.
* lockedit: Detect if no authentication plugins are enabled, and die with an ↵Joey Hess2010-01-04
| | | | error message as this configuration does not make sense.