aboutsummaryrefslogtreecommitdiff
path: root/templates
Commit message (Collapse)AuthorAge
* fix relativedate timezone inclusionJoey Hess2008-10-19
| | | | | | The machine parseable date needs to include a timezone. Also, simplified the interface for date display.
* remove old dup divJoey Hess2008-10-18
|
* tweak recentchanges permalink codeJoey Hess2008-10-17
| | | | Need to handle the case where url is not set.
* Patch for anchor-based change permalinks in recent changes feedJoey Hess2008-10-17
| | | | from JasonBlevins
* make relativedate work for the dates on the recentchanges pageJoey Hess2008-10-17
| | | | Having a always current relative date on recentchanges is very, very nice.
* relativedate: New javascript-alicious plugin that makes all dates display ↵Joey Hess2008-10-17
| | | | relative, in a very nice way, if I say so myself.
* google plugin: Use google.com to search the local site.Peter Simons2008-10-10
| | | | | | | | | Google allows has a nice feature, sitesearch, that allows anyone to limit search results to a specific site. Obviously, this feature can be used to provide a search engine for the local ikiwiki site without the need to install any additional software. Just enable the 'google' plugin and make sure that --url uses the proper hostname. Thanks to Joey for helping to get the Perl implementation right.
* multiple rename support is workingJoey Hess2008-09-23
| | | | most edge cases seem handled too
* avoid link fixup if page name stayed the sameJoey Hess2008-08-07
|
* Added a small icon to the search input box.Joey Hess2008-08-06
|
* Escape HTML in Atom feed metadata rather than treating it as XHTMLSimon McVittie2008-07-31
|
* Escape HTML in RSS feeds, rather than relying on it being valid to stuff ↵Simon McVittie2008-07-31
| | | | into a CDATA section
* Escape HTML in Atom feeds, rather than relying on it being well-formed XHTML ↵Simon McVittie2008-07-31
| | | | with no named entity references
* really rm ;-)Joey Hess2008-07-29
|
* initial draftJoey Hess2008-07-29
|
* link fixup on rename workingJoey Hess2008-07-23
|
* add a list of broken links after the renameJoey Hess2008-07-22
|
* add a rename summaryJoey Hess2008-07-22
|
* Split out error messages from editpage.tmpl into several separate templates.Joey Hess2008-07-22
|
* skeleton rename pluginJoey Hess2008-07-21
|
* simplified confirmation formJoey Hess2008-07-21
| | | | also, there's no titlepage conversion issues
* editpage: Don't show attachments link when attachments are disabled.Joey Hess2008-07-21
|
* Use correct term prefixes when searching.Gabriel McManus2008-07-19
| | | | | The Z term prefix is for stemming and shouldn't be used here. X is for custom fields.
* Oops, add missing </span>Simon McVittie2008-07-15
|
* More CSS hooks for page.tmpl.Simon McVittie2008-07-15
| | | | I notice madduck.net already has a similar change :-)
* Add more CSS hooks to inlinepage.tmplSimon McVittie2008-07-13
| | | | | | * Wrap everything before the content in <div class="inlineheader"> * Wrap the inlined content itself in <div class="inlinecontent"> * Wrap everything after the content in <div class="inlinefooter">
* Add more stylesheet hooks to the page templateSimon McVittie2008-07-13
| | | | | | | * Wrap header stuff, including actions, in <div class="pageheader"> (there is already a class="header", which is a subset of this, so using id="header" would be confusing) * Add class="pagefooter" to the existing <div id="footer">, for symmetry
* Rename [[!inline atomid="..."]] to [[!inline guid="..."]] to be consistent ↵Simon McVittie2008-07-12
| | | | with [[!meta guid="..."]], which also outputs an Atom <id>
* Accept [[!inline ... atomid="..."]] and use it to populate the feed's Atom <id>.Simon McVittie2008-07-12
| | | | This is often the same as the feed's <link> (in which case it can be omitted) but sometimes it's a urn:uuid: URN instead.
* Add MIME type to Atom feeds' <link rel='self'>Simon McVittie2008-07-12
|
* rename uuid to guidJoey Hess2008-07-12
|
* rssitem.tmpl: use UUID as <guid> if suppliedSimon McVittie2008-07-11
|
* atomitem.tmpl: use UUID as <id> if suppliedSimon McVittie2008-07-11
|
* add br at topJoey Hess2008-07-06
| | | | | | | firefox 3 smooshed the page location dropdown up to the page title, obscuring descenders and underscores. Maybe that's a bug, since the CSS didn't ask it to, but I think adding the extra space of a br at the top looks better anyway.
* toggle: Add javascript to top of page, not to end. This avoids flicker since ↵Joey Hess2008-07-02
| | | | closed toggles will not be displayed as the page is loading.
* xhtml fixesJoey Hess2008-07-02
|
* attachments interface visibility togglingJoey Hess2008-07-02
|
* basic attachment listJoey Hess2008-07-01
|
* add support for an attachment upload fieldJoey Hess2008-06-30
| | | | | | FormBuilder makes it annoyingly hard to move a submit button to a nonstandard place. The button name has to be "_submit" or FormBuilder will ignore it.
* Add support for the universal edit buttonJoey Hess2008-06-21
| | | | | | <http://universaleditbutton.org/> Not forcing a rebuild on upgrade just for this.
* finishing touches on the new search pluginJoey Hess2008-06-04
| | | | | - Add a Help link. - If the pageterm is too long, hash it.
* The search interface now allows searching for a page by title ("title:foo"), ↵Joey Hess2008-06-04
| | | | as well as for pages that contain a given link ("link:bar").
* prettify page names, and drop the redunadant url displayJoey Hess2008-06-03
|
* search: Converted to use xapian-omega.Joey Hess2008-06-03
| | | | | Everything is done except for the actual indexing. I plan to do incremental indexing as pages change.
* improve wordingJoey Hess2008-05-30
|
* hashed password support, and empty password security fixJoey Hess2008-05-30
| | | | | | | This implements the previously documented hashed password support. While implementing that, I noticed a security hole, which this commit also fixes..
* Add rel=nofollow to edit links. This may prevent some spiders from pounding ↵Joey Hess2008-05-28
| | | | on the cgi following edit links.
* responseJoey Hess2008-04-10
|
* Give the full path to the hyperestraier helpfile in estseek.conf.Joey Hess2008-04-10
|
* Fix CSRF attacks against the preferences and edit forms. Closes: #475445Joey Hess2008-04-10
| | | | | | | | | | | | | | | | | | | | | | | | | The fix involved embedding the session id in the forms, and not allowing the forms to be submitted if the embedded id does not match the session id. In the case of the preferences form, if the session id is not embedded, then the CGI parameters are cleared. This avoids a secondary attack where the link to the preferences form prefills password or other fields, and the user hits "submit" without noticing these prefilled values. In the case of the editpage form, the anonok plugin can allow anyone to edit, and so I chose not to guard against CSRF attacks against users who are not logged in. Otherwise, it also embeds the session id and checks it. For page editing, I assume that the user will notice if content or commit message is changed because of CGI parameters, and won't blndly hit save page. So I didn't block those CGI paramters. (It's even possible to use those CGI parameters, for good, not for evil, I guess..) The only other CSRF attack I can think of in ikiwiki involves the poll plugin. It's certianly possible to set up a link that causes the user to unknowingly vote in a poll. However, the poll plugin is not intended to be used for things that people would want to attack, since anyone can after all edit the poll page and fill in any values they like. So this "attack" is ignorable.
generated by cgit v1.2.3 (git 2.25.4) at 2024-06-11 21:54:07 +0000