aboutsummaryrefslogtreecommitdiff
path: root/debian/changelog
Commit message (Collapse)AuthorAge
* formattingJoey Hess2010-04-10
|
* po: Configuring the same language as master and slave confuses processing; ↵Joey Hess2010-04-10
| | | | so filter out such a misconfiguration.
* update changelog, update rebuild versionJoey Hess2010-04-10
|
* po: Check that translated underlay directories exist before using them for ↵Joey Hess2010-04-09
| | | | master language.
* Update dependency for git-core to git transition.Joey Hess2010-04-08
|
* typoJoey Hess2010-04-06
|
* update for sort changesJoey Hess2010-04-06
|
* tweak wording and versions and add changelog entryJoey Hess2010-04-06
|
* txt: Add a special case for robots.txt.Joey Hess2010-04-05
|
* comments: Fix missing entity encoding in title.Joey Hess2010-04-05
| | | | | | | | | | | | The meta title data set by comments needs to be encoded the same way that meta encodes it. (NB The security implications of the missing encoding are small.) Note that meta's encoding of title, description, and guid data, and not other data, is probably a special case that should be removed. Instead, these values should be encoded when used. I have avoided doing so here because that would mean forcing a wiki rebuild on upgrade to have the data consitently encoded.
* changelogJoey Hess2010-04-04
|
* releasing version 3.20100403Joey Hess2010-04-03
|
* template: Search for templates in the templatedir, if they are not found as ↵Joey Hess2010-04-02
| | | | pages in the wiki.
* htmlscrubber: Allow colons in url fragments after '?'Joey Hess2010-04-02
| | | | | | | | | | | | Colons are not allowed at the start of urls, because it can be interpreted as a protocol, and allowing arbitrary protocols can be unsafe (CVE-2008-0809). However, this check was too restrictive, not allowing use of eg, "video.ogv?t=0:03:00/0:04:00" to seek to a given place in a video, or "somecgi?foo=bar:baz" to pass parameters with colons. It's still not allowed to have a filename with a colon in it (ie "foo:bar.png") -- to link to such a file, a fully qualified url must be used.
* page.tmpl: Add Cache-Control must-revalidate to ensure that users ↵Joey Hess2010-03-31
| | | | | | | | | | | | | (especially of Firefox) see fresh page content. Since Firefox version 3, it's done aggressive caching of visited pages, and does not, by default, check if the cached content is still valid when reloading or revisiting a page. By default, Firefox seems to not re-contact the web server at all. Compare with eg, Epiphany and Chromium, which appear to always check, and get back a 304 when the page is unchanged. This header makes Firefox do the right thing, at least for html files. It still over-caches if css, javascript, images, etc, are changed.
* updateJoey Hess2010-03-29
|
* auto-blog.setup: Set tagbase by default, since most bloggers will want it.Joey Hess2010-03-28
| | | | | Also modified first_post page to use a tag format that will work whether or not tagbase is set.
* Add preprocessed 'use lib' line to ikiwiki-transition and ikiwiki-calendar ↵Joey Hess2010-03-26
| | | | if necessary for unusual install.
* Fix incorrect influence info returned by a failing link() pagespec, that ↵Joey Hess2010-03-26
| | | | could lead to bad dependency handling in certian situations.
* fix the other half of the filecheck filename bugJoey Hess2010-03-26
|
* filecheck: Fix bug that prevented the pagespecs from matching when not ↵Joey Hess2010-03-25
| | | | called by attachment plugin.
* use perl YAML for dumpingJoey Hess2010-03-24
| | | | Only it understands $YAML::UseHeader
* Add --set-yaml switch for setting more complex config file options.Joey Hess2010-03-24
|
* reset setuptype first, actuallyJoey Hess2010-03-21
| | | | so setup file can override default
* Add support for setup files written in YAML.Joey Hess2010-03-19
| | | | Not the default. (Yet?)
* Allow wrappers to be built using tcc.Joey Hess2010-03-18
|
* Add a include setting, which can be used to make ikiwiki process wiki source ↵Joey Hess2010-03-14
| | | | files, such as .htaccess, that would normally be skipped for security or other reasons. Closes: #447267 (Thanks to Aaron Wilson for the original patch.)
* Add complete German basewiki and directives translation done by Sebastian ↵Joey Hess2010-03-14
| | | | Kuhnert.
* Improve openid url munging; do not display anchors and cgi parameters, as ↵Joey Hess2010-03-13
| | | | used by yahoo and google urls.
* openid: Use Openid Simple Registration or OpenID Attribute Exchange to get ↵Joey Hess2010-03-13
| | | | | | | | | | | | | the user's email address and username. The info is stored in the session database, not the user database. There should be no reason to need it when a user is not logged in. Also, hide the email field in the preferences page for openid users. Note that the email and username are not yet actually used for anything. The email will be useful for gravatar, while the username might be used for a more pretty display of the openid.
* websetup: Add websetup_unsafe to allow marking other settings as unsafe.Joey Hess2010-03-13
|
* htmlscrubber: Security fix: In data:image/* uris, only allow a few ↵Joey Hess2010-03-12
| | | | whitelisted image types. No svg.
* formattingJoey Hess2010-03-11
|
* redundancyJoey Hess2010-03-11
|
* search: Avoid '$' in the wikiname appearing unescaped on omega's query ↵Joey Hess2010-03-11
| | | | | | | template, where it might crash omega. Really, a more general fix, this deals with any $ that might appear on the misctemplate.
* Fix missing span on recentchanges page template.Joey Hess2010-03-11
|
* moderatedcomments: Added moderate_pagespecJoey Hess2010-03-11
| | | | | | | | | | | * moderatedcomments: Added moderate_pagespec that can be used to control which users or comment locations are moderated. This can be used, just for example, to moderate http://myopenid.com/* if you're getting a lot of spammers from one particular openid provider (who should perhaps answer your emails about them), while not moderating other users. * moderatedcomments: The moderate_users setting is deprecated. Instead, set moderate_pagespec to "!admin()" or "user(*)" instead.
* Fix utf8 issues in calls to md5_hex.Joey Hess2010-03-09
| | | | | | | | | | | | | | | | | | | This prevented comments containing some utf-8, including euro sign, from being submitted. Since md5_hex is a C implementation, the string has to be converted from perl's internal encoding to utf-8 when it is called. Some utf-8 happened to work before, apparently by accident. Note that this will change the checksums returned. unique_comment_location is only used when posting comments, so the checksum does not need to be stable there. I only changed page_to_id for completeness; it is passed a comment page name, and they can currently never contain utf-8. In teximg, the bug could perhaps be triggered if the tex source contained utf-8. If that happens, the checksum will change, and some extra work might be performed on upgrade to rebuild the image.
* releasing version 3.20100302Joey Hess2010-03-02
|
* Add new --clean option; this makes ikiwiki remove all built files in the ↵Joey Hess2010-02-28
| | | | destdir, as well as wrappers and the .ikiwiki directory.
* Fix admin openid detection in setup automator, and avoid prompting for a ↵Joey Hess2010-02-27
| | | | password.
* Add force_overwrite setting to make setup automator overwrite existing ↵Joey Hess2010-02-27
| | | | | | | files/directories. This can be useful if you're driving the setup automator from another program.
* Loosen regexp, to allow empty quoted parameters in directives.Joey Hess2010-02-26
|
* comments: Display number of comments in comment action link.Joey Hess2010-02-14
| | | | | | | | | | This was not doable before, but when I added transitive dependency handling in the big dependency rewrite, it became possible to include a comment count when inlining. This also improves the action link when a page has no comments. It will link direct to the cgi to allow posting the first comment. And if the page is locked to prevent posting new comments, the link is no longer shown.
* releasing version 3.20100212Joey Hess2010-02-12
|
* Group related plugins into sections in the setup file, and drop unused rcs ↵Joey Hess2010-02-11
| | | | plugins from the setup file.
* Allow globs to be used in user() pagespecs.Joey Hess2010-02-11
|
* httpauth: Add httpauth_pagespec setting that can be used to limit pages to ↵Joey Hess2010-02-11
| | | | only being edited via users authed with httpauth.
* httpauth: When cgiauthurl is configured, httpauth can now be used alongside ↵Joey Hess2010-02-11
| | | | other authentication methods (like openid or anonok). Rather than always redirect to the cgiauthurl for authentication, there is now a button on the login form to use it.
* amazon_s3: Fix to support the EU S3 datacenter, which is more picky about ↵Joey Hess2010-02-09
| | | | attempts to create already existing buckets.