Fix revisions title for pages without title with useheading on FS#2597

Remove unused/directly overwritten variable declarations in inc/html.php

Fix/add some PHPDoc comments in inc/html.php

Prevent access to undefined variables and make returns consistent in html.php

Respect useheading setting on revisions page FS#2139

fixed script blocks CDATA for ie on TPL_METAHEADER_OUTPUT FS#2563

Fix type declarations in some PHPDoc comments

Fix icon alt text for page changes

The alt text is now the page id as it is the media id for media changes,
previously it was empty as $filename is undefined in that context.

fixed error in html_diff()

The used syntax was invalid in PHP < 3.4 and seemed to be wrong logical
as well.

Merge branch 'input-validation' of git://github.com/whoopdedo/dokuwiki into pull-request-110

* 'input-validation' of git://github.com/whoopdedo/dokuwiki:
fix incorrect usage of tpl_getMediaFile

Merge branch 'input-validation' of git://github.com/whoopdedo/dokuwiki into pull-request-110

* 'input-validation' of git://github.com/whoopdedo/dokuwiki:
fix incorrect usage of tpl_getMediaFile
fix necessary global declaration
Input wrapper for html forms
Input validation for media manager
Input wrapper for exe scripts
more INPUT wrapper uses: cache purge, sectok, getID
Input wrapper for action.php

Conflicts:
lib/exe/css.php

show more ...

xml compatibility fixes (mainly entities to unicode conversions)

improved preview to have same width as resulting page if it would have a sidebar

Merge branch 'master' of github.com:splitbrain/dokuwiki into frontend_improvements

Conflicts:
lib/tpl/dokuwiki/css/basic.css

Input wrapper for html forms

improved toc changes and sidebar toggling

some edge case checking in search result highlighting

escape target error message (SECURITY) FS#2487 FS#2488

The error message when a non-existant editor was tried to load wasn't
escaped correctly, allowing to introduce arbitrary JavaScript to the
outp

escape target error message (SECURITY) FS#2487 FS#2488

The error message when a non-existant editor was tried to load wasn't
escaped correctly, allowing to introduce arbitrary JavaScript to the
output, leading to a XSS vulnerability.

Note: the reported second XCRF vulnerability is the same bug, the xploit
code simply uses JavaScript to extract a valid CSRF token from the site

show more ...

improved HTML for search results

Attention: Template authors need to adjust their CSS!

Original structure:
div.search_result >
a.wikilink1 > span.search_cnt
br
div.search_snippet

New structu

improved HTML for search results

Attention: Template authors need to adjust their CSS!

Original structure:
div.search_result >
a.wikilink1 > span.search_cnt
br
div.search_snippet

New structure:
dl.search_results >
dt > a.wikilink1
dd

show more ...

rewrote and improved HTML for TOC

Attention: Template authors need to adjust their CSS!

Original structure:
div.toc >
div#toc__header.tocheader.toctoggle > span#toc__toggle.toc_close|toc_open > s

rewrote and improved HTML for TOC

Attention: Template authors need to adjust their CSS!

Original structure:
div.toc >
div#toc__header.tocheader.toctoggle > span#toc__toggle.toc_close|toc_open > span
div#toc__inside > ul.toc > li.level1 > div.li > span.li > a.toc

New structure:
div#dw__toc.open|close >
h3 > strong > span
ul.toc > li.toc > div.li > a

show more ...

added some wanting classes

coding style updates

Merge branch 'resetpassword'

No longer autogenerate passwords for password reset when
$conf['autopasswd'] is disabled. Instead allow to change the password
online.

* resetpassword:
added a timeli

Merge branch 'resetpassword'

No longer autogenerate passwords for password reset when
$conf['autopasswd'] is disabled. Instead allow to change the password
online.

* resetpassword:
added a timelimit for password reset tokens
removed commented line
use correct lang string for password mismatch
removed outdated language string. it has to be retranslated
German translation for password reset
honor autopasswd setting for resend password

Conflicts:
inc/lang/no/lang.php
inc/lang/sl/lang.php

show more ...

removed commented line

added div.table around non-editable content as well (FS#1980)

honor autopasswd setting for resend password

When autopasswd is disabled, the resend password option now asks for a
new password instead of autogenerating a new one and sending it by mail.

Note to

honor autopasswd setting for resend password

When autopasswd is disabled, the resend password option now asks for a
new password instead of autogenerating a new one and sending it by mail.

Note to translators: the wording for btn_resendpwd and resendpwd changed
to be more universal. English and German language files where updated -
other languages need to be adjusted.

Conflicts:

inc/lang/en/lang.php

show more ...