| #
1d839f03 |
| 10-Dec-2017 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #2063 from BS666/dontshowhiddenpagesintarce
prevent hidden pages to be shown in trace
|
| #
c084674a |
| 02-Sep-2017 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #1831 from mazamachi/1337-parent_namespace_pattern
Add parent namespace pattern replacement
|
| #
27c0c399 |
| 02-Sep-2017 |
Andreas Gohr <andi@splitbrain.org> |
reworked notifications to the test system
No globals required anymore, somewhat more general approach to sending
data to the test system. Clean access through keys.
|
| #
572dc222 |
| 27-Aug-2017 |
LarsDW223 <lars_paulsen@web.de> |
Test code for workflow 'show - sectionedit - save/cancel' (with modifications in test classes and 'send_redirect()' and 'act_dispatch()'.
|
| #
0ea5ebb4 |
| 05-Aug-2017 |
B_S666 <i@frostbitten.de> |
prevent pages to be shown in trace if you don't have rights to read
|
| #
4d1fee4c |
| 01-Aug-2017 |
B_S666 <i@frostbitten.de> |
prevent hidden pages to be shown in trace
|
| #
bad6fc0d |
| 31-Mar-2017 |
Andreas Gohr <andi@splitbrain.org> |
replace deprecated create_function with anonymous functions
|
| #
3680e2cd |
| 28-Feb-2017 |
Andreas Gohr <andi@splitbrain.org> |
do not generate CSRF tokens when no session or user exists
This partly fixes #1883
|
| #
8a7bcf66 |
| 10-Feb-2017 |
Shota Miyazaki <jmsf0203@gmail.com> |
Add @CURNS@ replacement
|
| #
4cd2074f |
| 05-Feb-2017 |
Andreas Gohr <andi@splitbrain.org> |
fixed typo in function name
|
| #
71de5572 |
| 05-Feb-2017 |
Andreas Gohr <andi@splitbrain.org> |
changed embedSVG to inlineSVG and make it return contents
This makes it more flexible to use on the expense of needing one echo
more.
|
| #
2d90435a |
| 03-Feb-2017 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #1507 from ssahara/pageinfo
remove fullpath() call in pageinfo
|
| #
77cd1300 |
| 03-Feb-2017 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #1791 from splitbrain/delayed_writes
Handle delayed writes gracefully
|
| #
0849fa88 |
| 31-Jan-2017 |
Andreas Gohr <andi@splitbrain.org> |
more cleanup in embedSVG
now comments and line breaks between tags are removed
|
| #
ebf33c90 |
| 21-Jan-2017 |
Andreas Gohr <andi@splitbrain.org> |
old PHP versions can't calculate in the initialzing
|
| #
0470c28f |
| 21-Jan-2017 |
Andreas Gohr <andi@splitbrain.org> |
refactor Admin UI
This introduces a new dokuwiki\Ui namespace and refactors the Admin
screen into a Ui class. The ultimate goal is to split up the big,
complex functions in inc\html.php in better ma
refactor Admin UI
This introduces a new dokuwiki\Ui namespace and refactors the Admin
screen into a Ui class. The ultimate goal is to split up the big,
complex functions in inc\html.php in better maintainable classes in the
Ui namespace. This is the first go at it. Others function->class
conversions should follow.
This also switches the icons for our base admin plugins to inline SVG.
(files and styling not included, yet).
show more ...
|
| #
3c27983b |
| 21-Jan-2017 |
Andreas Gohr <andi@splitbrain.org> |
Use inline SVG for Admin Plugin icons and style them via CSS
This introduces an embedSVG() function that can be used at other places.
|
| #
2d69eb44 |
| 01-Jan-2017 |
Michael Hamann <michael@content-space.de> |
Fix typo in saveWikiText that could lead to wrong changelog entries
This fixes saving the actually saved timestamp for deleted revisions in
the change log. Before this, the change log got 0 as time
Fix typo in saveWikiText that could lead to wrong changelog entries
This fixes saving the actually saved timestamp for deleted revisions in
the change log. Before this, the change log got 0 as timestamp and
therefore used the current time - which might be wrong if the current
second changed in between touching the page and adding the entry to the
changelog.
show more ...
|
| #
6efc45a2 |
| 19-Oct-2016 |
Dmitry Katsubo <dmitry.katsubo@gmail.com> |
Implemented interwiki substitution for external images (issue #1614).
|
| #
33d979e7 |
| 21-Sep-2016 |
Michael Große <mic.grosse@posteo.de> |
Fix save content modified in COMMON_WIKIPAGE_SAVE
The event COMMON_WIKIPAGE_SAVE offers the opportunity to save the content by modifying $data['newContent']. However saveWikiText still saves the ori
Fix save content modified in COMMON_WIKIPAGE_SAVE
The event COMMON_WIKIPAGE_SAVE offers the opportunity to save the content by modifying $data['newContent']. However saveWikiText still saves the original $text variable instead of the possibly modified $svdta['newContent'].
show more ...
|
| #
ef08383e |
| 01-Jul-2016 |
Andreas Gohr <andi@splitbrain.org> |
filesize_h might not be used in HTML content only #1622
Using an HTML entitiy might be problematic in non HTML renderers or when
the output is escaped again.
|
| #
59752844 |
| 14-Jun-2016 |
Anders Sandblad <runeson@gmail.com> |
Fixed broken links to php.net and redirecting pages to php.net
|
| #
25692208 |
| 23-May-2016 |
Anika Henke <anika@selfthinker.org> |
always separate a number and a unit by a non-breaking space
|
| #
3bc01074 |
| 18-Apr-2016 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #1316 from splitbrain/revsizechange
Show change of file sizes in the revision log
|
| #
98ca30d2 |
| 31-Mar-2016 |
Andreas Gohr <andi@splitbrain.org> |
avoid HTTP Response Splitting attacks via redirects #1513
The header() method of PHP is vulnerable to HTTP Response Splitting
attacks.
This change makes sure the URL passed to send_redirect (and th
avoid HTTP Response Splitting attacks via redirects #1513
The header() method of PHP is vulnerable to HTTP Response Splitting
attacks.
This change makes sure the URL passed to send_redirect (and thus to
header()) does not contain any control characters that would be needed
to execute such an attack.
Cleaning input is recommended anyway.
show more ...
|