more fixes. this version finally loads fine.
todo: validate input (fix javascript, add POST checks)
change tables to dl/dt to enable fold/unfold
start this automatically the first time
fix include_path
eval index-user.php or index.php to get the actual settings.
ask to store it in index.php or index-user.php
fixed some minor bugs.
preliminary new javascript code from Martin Geisler to validate input and to
fold/unfold parts. But before we have to get rid of the tables.
Fixed so that wiki.listLinks() returns external as well as internal links.
Since the external links aren't currently stored in the link database,
we need to scan the page text for the links. We might as well pull the
internal links out from the same scan. (Commented out the old code
which queries the link db.)
Also fixed a couple bugs/features:
o wiki.listLinks() was listing backlinks not outgoing links.
o When urlencoding short strings we only really need to encode
the ascii control characters (which aren't allowed in XML 1.0 :-/)
I was starting to hack together a counter part to ExtractWikiPageLinks()
to extract the external links (for the XML-RPC interface). In so doing,
discovered yet more bugs in the current ExtractWikiPageLinks().
(Bumpy words within raw URLs and interwiki links were being counted
as links when they shouldn't have been.)
So instead converted ExtractWikiPageLinks() to ExtractLinks() which finds
both internal and external links. ExtractWikiPageLinks() is now a wrapper
around ExtractLinks(). (Also new function ExtractExternalLinks() is another
wrapper.)
Fix for backlinks to pages with digits in their names bug.
(Really, the link extraction code should be unified with the
markup transformation code so that the two are guaranteed to
agree about what is a link and what's not.)
The main script will now notice when you're directing and XML-RPC
request at it (and act accordingly). (The method with be POST,
and the content-type will be text/xml.)
This makes the RPC2.php script obsolete, though I've left a vestigal
version for now... the XML-RPC server code has been moved into
the new file lib/XmlRpcServer.php.
Updated to current CVS version of the php XMLRPC code.
Also added my patches to support the system.multicall method.
(For more on my patches, see:
http://sf.net/tracker/index.php?func=detail&aid=605246&group_id=34455&atid=411302
)
Prevent from possible XSS attacks (cross site scripting)
see http://www.cert.org/advisories/CA-2000-02.html, http://www.perl.com/pub/a/2002/02/20/css.html
<script> tags, ...
sample exploit: /wiki/?pagename=<script>alert(document.cookie)</script>
FileFinder: added OS specific code. Just for testing. Will be changed to seperate classes per OS for efficiency.
config: better locale handling
plugin/All*: support sortby
DebugInfo: show password to WikiAdmin
signin.tmpl: experimental optional EditingPolicy popup.
head.tmpl: added document rating (no PICS yet)
According to the WikiRPC spec, all of the returned
string values (or at least those which might contain non-ascii characters)
need to be converted to UTF-8. Then short strings (e.g. page names
and authors) are to be rawurlencode()d an returned as XML-RPC string
values, while long strings (e.g. page content) are to be returned as
XML-RPC base64 values.
A lot of this was being done inconsistently or not at all --- I've just
gone through and made sure everything gets properly encoded.
Convert to unix line endings (newline instead of carriage-return).
Otherwise CVS sees the file as one big line (which kind of negates
the usefulness of 'cvs diff'...)
Re-indented.
first rough versions of new plugins:
UnfoldSubpages: no pages, quiet, sort, sortby, sections, section, sectionhead yet
WikiBlog: SUBPAGE_SEPARATOR and table layout hardcoded. => CSS classes
SystemInfo should be cachable.
rurban [Tue, 27 Aug 2002 21:51:31 +0000 (21:51 +0000)]
LANG still broken, working on better locale handling.
improved PageList: added checkbox, sortby
added <?plugin-head for FrameInclude and RedirectTo
fixed some minor UserPreferences quirks
solidified templates
added PhpWeather
added a new generic WikiAdminSelect to simulate the commandline:
work with sets of pages, pass the request to underlying WikiAdmin* plugins
rurban [Fri, 23 Aug 2002 18:32:12 +0000 (18:32 +0000)]
aha, the two missing files for FrameInclude.
one more notes on these:
changed the default template names.
eg. top => html for all
frame=top would display the topframe and not everything
same for frame=left, frame=bottom, frame=body, ...
rurban [Thu, 22 Aug 2002 23:28:32 +0000 (23:28 +0000)]
First (unfinished) UserAuth version, storing prefs in page meta-data.
in cookies only the userid from now on.
login in some cases broken.
Missing is WikiDb_User for external SQL Auth.
Improved UserPreferences (changepass, themes, email notification)
Fixed assert.
Added Create HomePage on login of unknown user.
rurban [Tue, 20 Aug 2002 16:51:46 +0000 (16:51 +0000)]
fixed Conflicting Edits Bug from http://phpwiki.sourceforge.net/phpwiki/KnownBugs
lib/diff3.php:153: Warning[2]: First argument to array_splice() should be an array
rurban [Tue, 20 Aug 2002 11:17:08 +0000 (11:17 +0000)]
fixed (again) the Double Page-Transformation bug. http://phpwiki.sourceforge.net/phpwiki/FixedBugs
somehow the CVS fix from 2002.03.05 didn't made it to me.
rurban [Tue, 20 Aug 2002 08:56:58 +0000 (08:56 +0000)]
seperated index.php from lib/main.php loading.
This allows external inclusion of index.php and easier local overrides,
such as getimg.php, or as in PhpWikiDemo en/de/fr/... overrides.
rurban [Mon, 19 Aug 2002 11:32:30 +0000 (11:32 +0000)]
fixed TitleSearch and other plugin-form problems with USE_PATH_INFO = false
renamed the constant HomePage to HOME_PAGE
fix it in your templates with:
cd themes
find . -name \*.tmpl -exec \
perl -pi~ -e's/([^ ])HomePage/$1HOME_PAGE/g' \{\} \;
changed version string to 1.3.3
removed -jeffs-hacks, since it's officially released.
rurban [Sat, 17 Aug 2002 15:52:53 +0000 (15:52 +0000)]
added SubPages support: see SUBPAGE_SEPERATOR in index.php
added ImageLinks [ img | link ], like [images/prev.gif|PrevLink][images/next.gif|NextLink]
external image links might be a security risk.
added support for a local pear copy (DB, Cache)
added Johannes Große's VisualWiki and cached plugins.
fixed some Subpage related pages and templates. (Calender plugin)