Sun, 25 Jan 2009 21:18:05 -0500 |
Dan |
Added (very basic) spam filtering plugin support. Plugins can mark a message as spam by hooking into the spam check API, which is documented in functions.php. No spam checking functionality is built-in.
|
changeset |
files
|
Sun, 25 Jan 2009 20:35:32 -0500 |
Dan |
Login: reauth: window.location.hash is now updated to include the new SID so that page reloads will use it
|
changeset |
files
|
Sun, 25 Jan 2009 20:35:06 -0500 |
Dan |
AJAX core library: possible breaking change, readystatechange functions are now called with the XHR instance as the first parameter, to allow requests to run in parallel. This means much better stability but may break some applets (compatibility hack is included)
|
changeset |
files
|
Sun, 25 Jan 2009 20:27:14 -0500 |
Dan |
Oxygen: synced mint style
|
changeset |
files
|
Sun, 25 Jan 2009 20:26:50 -0500 |
Dan |
PageProcessor: fix not setting page_exists to true after create_page() success (todo: move to Namespace_*?); add $visible parameter to create_page()
|
changeset |
files
|
Sun, 25 Jan 2009 20:24:38 -0500 |
Dan |
Change config.new.php and .htaccess.new to have a single newline according to Fedora project guidelines
|
changeset |
files
|
Fri, 23 Jan 2009 22:03:39 -0500 |
Dan |
Installer: add RewriteBase to .htaccess to work properly under aliased Apache setups (generated 404s in QA)
|
changeset |
files
|
Fri, 23 Jan 2009 21:59:03 -0500 |
Dan |
A few bugfixes in CLI installer related to interactivity
|
changeset |
files
|
Sat, 17 Jan 2009 15:16:36 -0500 |
Dan |
SECURITY: Fix XSS under IE in closing tags (shared sanitizer)
|
changeset |
files
|
Fri, 16 Jan 2009 13:14:08 -0500 |
Dan |
Fixed login form being focused too early (caused page to scroll up)
|
changeset |
files
|
Fri, 16 Jan 2009 13:13:37 -0500 |
Dan |
Deprecated old grab_password_hash() functions in session
|
changeset |
files
|
Fri, 16 Jan 2009 13:13:03 -0500 |
Dan |
Whoops! Fixed an SQL injection vulnerability in the CLI installer. (Not like it's a huge deal because the vulnerability was only introduced last commit and if you make it to that stage you already know the database password)
|
changeset |
files
|
Wed, 14 Jan 2009 23:29:14 -0500 |
Dan |
Added already-installed check to cli-core
|
changeset |
files
|
Wed, 14 Jan 2009 20:33:05 -0500 |
Dan |
Added CLI installer. Supports interactive, command-line, and internal-call installation. Fixed a few bugs related to anti-SQL injection parser and plugin installation.
|
changeset |
files
|
Sun, 11 Jan 2009 21:37:49 -0500 |
Dan |
Added support for live re-auth and de-auth; fully AJAX, no page reload required, plus plugin-usable API.
|
changeset |
files
|