includes/pageutils.php
2009-12-19 Dan Logs: Fully integrated an author_uid column. Logs are now linked by user ID instead of just username, so they survive username changes better. Database is changed. Fixes issue 6.
2009-12-07 Dan PostgreSQL: bugfix in ACL related SQL query
2009-09-26 Dan Fixed handling of blank urlname as guest main page / other main page for members
2009-09-15 Dan Fixed (well, implemented) log clearing functionality on uploaded files.
2009-08-21 Dan Fixed some upgrade bugs; added support for choosing one's own date/time formats; rebrand as 1.1.7
2009-07-06 Dan History: Fixed missing $q in fetchrow()
2009-06-01 Dan Comments: SECURITY: Fixed IP not recorded in non-JSON submit and a few other non-security issues
2009-05-15 Dan Fixed some bugs with history viewing and log display (wrong row counts, failing to provide result resource, etc.); added "view" button to edits in log display; fixed underscores in auto generated titles
2009-05-05 Dan Made some more changes to the way namespaces are handled, for optimization purposes. This is a bit of a structural reorganization: $paths->pages is obsoleted in its entirety; calculating page existence and metadata is now the job of the Namespace_* backend class. There are many things in PageProcessor that should be reorganized, and page actions in general should really be rethought. This is probably the beginning of a long process that will be taking place over the course of the betas.
2009-04-15 Dan Deletion vote reset is now logged and able to be rolled back
2009-04-15 Dan Finished core of log display interface including filter management. There is still a bit of a to-do list, especially regarding rollbacks and reuploads.
2009-04-13 Dan Live Re-Auth is now required for deleting pages, editing ACLs, protecting pages, and clearing logs. Committing in a hurry as a storm is coming in, hope everything is in there.
2009-04-12 Dan When changing namespace of a File: page, associated files are now deleted. Also fixed some issues with image scaling.
2009-02-16 Dan Major redesign of rendering pipeline that separates pages saved with MCE from pages saved with the plaintext editor (full description in long commit message)
2009-01-26 Dan Added (very basic) spam filtering plugin support. Plugins can mark a message as spam by hooking into the spam check API, which is documented in functions.php. No spam checking functionality is built-in.
2009-01-04 Dan Two big commits in one day I know, but redid password storage to use HMAC-SHA1. Consolidated much AES processing to three core methods in session that should handle everything automagically. Installation works; upgrades should. Rebranded as 1.1.6.
2009-01-03 Dan Major underlying changes to namespace handling. Each namespace is handled by its own class which extends Namespace_Default. Much greater customization/pluggability potential, at the possible expense of some code reusing (though code reusing has been avoided thus far). Also a bit better handling of page passwords [SECURITY].
2008-11-21 Dan Added dependency checking in ACL tracer
2008-11-09 Dan Fixed exception handling from session->fetch_page_acl() in ACL trace server side
2008-11-09 Dan Merging in the past three months' work on ACL tracing tools.
2008-08-18 Dan Revamped page deletion interface; fixed bug where page_meta cache was not being cleared upon restoration of deleted page.
2008-08-13 Dan Fixed ACL_TYPE_PRESET pseudo-rules being shown in rule list
2008-08-12 Dan Rebranded as 1.1.5 (Caoineag alpha 5) and fixed a couple bugs related to CDN support in template_nodb and installerUI. Updated readme.
2008-08-11 Dan Added preliminary support for ACL presets. Yay!
2008-07-10 Dan Added Gravatar support! And it's really configurable too.
2008-07-09 Dan Fixed a few places where page metadata cache should have been purged (there may be a few more commits like this)
2008-07-03 Dan More optimization work. Moved special page init functions to common instead of common_post hook. Allowed paths to cache page metadata on filesystem. Phased out the redundancy in $paths->pages that paired a number with every urlname as foreach loops are allowed now (and have been for some time). Fixed missing includes for several functions. Rewrote str_replace_once to be a lot more efficient.
2008-06-25 Dan Majorly reworked Javascript runtime stuff to use on-demand loading.
2008-04-14 Dan Rebrand as 1.1.4 (Caoineag alpha 4)
2008-03-29 Dan AJAX interface for listing ACL rules implemented
2008-03-27 Dan ACL: Added API call to edit rule based only on numeric rule ID; to be used later with lister for existing rules and effective permissions viewer
2008-03-27 Dan Made some improvements to ACL system including: warning on setting Deny for Everyone on the entire site, added ACL_ALWAYS_ALLOW_ADMIN_EDIT_ACL, and changed behavior as noted in the docs so that Deny for Everyone is no longer able to be overridden
2008-03-07 Dan Hopefully completed rewrite and localization of rollback backend and interface
2008-03-01 Dan Fixed the fact that cron just didn't work at all (brain fart that day or something)
2008-02-22 Dan Merging fixes and updates from stable branch
2008-02-02 Dan Made all captcha fields case-insensitive (thanks pkeating)
2008-02-12 Dan Added "is_draft != 1" where appropriate in SQL queries to prevent drafts from being treated as real revisions.
2008-02-12 Dan Added autosave functionality and resurrected the old toolbar code that was added about a year ago but never uesd.
2008-02-11 Dan Modified editor and rename functions to go through the API when rolling back. This causes rollbacks to be logged.
2008-02-07 Dan Fixed some captcha bugs and made all captcha fields case-insensitive
2008-02-06 Dan Implemented a new CAPTCHA API; the frontend ($session->{make,get}_captcha) is API-compatible but the backend (the captcha class) is deprecated.
2008-01-30 Dan Localization is FINISHED, DAMN IT HELLAH YEAH! OVER WITH! Man, it feels to get that off my chest. Release is in under 48 hours, folks. And we're ready for it.
2008-01-25 Dan A number of scattered changes. Profiler added and only enabled in debug mode (currently on), but awfully useful for fixing performance in the future. Started work on Admin:LangManager
2008-01-21 Dan PageUtils::createpage(): $name was being sanitized too strictly
2008-01-21 Dan Implemented (well stubbed) IP logging in non-AJAX comment interface
2008-01-18 Dan Initlogs stage of installer now working
2008-01-03 Dan WiP commit for admin panel localization. All modules up to Admin:UserManager (working down the list) are localized except Admin:ThemeManager, which is due for a rewrite
2007-12-28 Dan Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
2007-12-26 Dan More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
2007-12-21 Dan Added initial avatar support. Currently rather feature complete except for admin controls for avatar.
2007-12-20 Dan Redid merge, the previous one had a few problems
2007-12-19 Dan Many changes. Installer with PostgreSQL is broken badly and will be for some time.
2007-12-15 Dan SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
2007-12-13 Dan Rebrand as 1.0.3 (Dyrad)
2007-12-02 Dan Merging in the newly stable Coblynau
2007-11-23 Dan Changed all urlname/page_id columns to varchar(255) because 63 characters just isn't long enough
2007-11-19 Dan Merging in fixes and updates from stable
2007-11-18 Dan Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
2007-11-18 Dan Merging in fixes from stable
2007-11-17 Dan Rewrote some security code in PageUtils::savepage to accommodate the ACL system better; there was an issue with non-admin users saving pages on which they have edit rights but wiki mode is turned off
2007-11-15 Dan Merging in all changes from revision 185 (90b7a52bea45)
2007-11-06 Dan Localized default sidebar; installer should work now including the lang import; l10n in installer to follow
2007-11-06 Dan Merge in new installer framework from stable
2007-11-05 Dan Renaming config.php and .htaccess to *.new to allow tarbombing an Enano installation with no adverse effects; first attempt, may not work right.
2007-11-03 Dan Merging in fixes from rev. 207
2007-11-03 Dan Fixed the one FIXME in PageUtils regarding static HTML comment system's greeting line; fixed parsing of external links in template->tplWikiFormat
2007-10-30 Dan Failsafe ACL editor interface localized
2007-10-30 Dan Javascripted ACL editor interface localized
2007-10-29 Dan All on-page AJAX applets should be localized now
2007-10-29 Dan Localized history page and static HTML comment interface
2007-10-26 Dan You know what folks, a lot of Mercurial merges failed, and I just now figured out why. So now all changes from stable are permanently synced in.
2007-10-21 Dan Merging in changes from db8a849ad4c9
2007-10-21 Dan SECURITY: Fixed possible SQL injection in PageUtils page protection; general cleanup of PageUtils; blocked using Project: prefix for page URL strings
2007-10-07 Dan Rebrand as 1.1.1; everything should now be bumped to "unstable" status
2007-10-02 Dan SECURITY: tightened up validation for rollbacks
2007-09-24 Dan Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
2007-09-04 Dan Fixed the obnoxious issue with forms using GET and index.php?title=Foo URL scheme (this works a whole lot better than MediaWiki now
2007-09-02 Dan Rewrote all code related to delvote_ips column to use serialize()
2007-08-27 Dan Several major improvements: Memberlist page added (planned since about beta 2), page group support added for non-JS ACL editor (oops!), and attempting to view a page for which you lack read permissions will get you logged.
2007-08-26 Dan [comments] fixed edit button (source wasn't getting filled)
2007-08-05 Dan Replaced the menu in the admin theme with something much more visually pleasureable; minor fix in Special:UploadFile; finished patching a couple of XSS problems from Banshee; finished Admin:PageGroups; removed unneeded code in flyin.js; finished tag system (except tag cloud); 1.0.1 release candidate
2007-07-29 Dan Modified Text_Wiki parser to fully support UTF-8 strings; several other UTF-8 fixes, international characters seem to work reasonably well now
2007-07-21 Dan Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
2007-07-10 Dan Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
2007-07-03 Dan Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
2007-07-03 Dan Changed animation on flying message boxes; bugfix for "Array" response in theme changer; added diff CSS to enano-shared; allowed spaces in username during install
2007-07-01 Dan Finished everything on the TODO list (yay!); several CSS cleanups; tons more changes in this commit - see the patch for details
2007-06-28 Dan Rewrote change theme dialog; a few minor stability fixes here and there; fixed IE + St Patty background image
2007-06-27 Dan Deleting pages now requires a reason
2007-06-26 Dan Updated all version numbers back to Banshee; a few preliminary steps towards full UTF-8 support in page URLs
2007-06-23 Dan Added demo mode functionality to various parts of Enano (unlocked only with a plugin) and fixed groups table
2007-06-23 Dan Emergency version change to 1.0rc3 to fix XSS vulnerabilities
2007-06-23 Dan Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability
2007-06-13 dan Adding /includes
less more (0) tip