remove DOKU_INC checks

There is no need for this check, since these files should not have any
main code that is executed on direct call.

Fixes PSR1.Files.SideEffects.FoundWithSymbols

throw exception in nice_die during tests

Exits during testing will break the whole test suite. It makes more
sense to throw an exception in that case. The exception's stack trace
will help to debug

throw exception in nice_die during tests

Exits during testing will break the whole test suite. It makes more
sense to throw an exception in that case. The exception's stack trace
will help to debug the actual problem

show more ...

always send Vary: Cookie header. fixes #1594

moved function and fixed whitespace errors

response on review

cleaning

fix tests on windows

remove magic quote handling

I supplemented the existing comments on the methods in which there was not enough information to the standard phpDoc.

adjust session ID check to specification

The documentation says sessionIDs are between 22 and 256 chars long. A
quick test only showed 26 chars in common configurations, but this
should cover all po

adjust session ID check to specification

The documentation says sessionIDs are between 22 and 256 chars long. A
quick test only showed 26 chars in common configurations, but this
should cover all possibilities.

show more ...

do not use invalid session IDs #1883

When an invalid session ID is passed to PHP a warning is thrown, but the
session is still initialized with this invalid ID (throwing additional
warnings on save)

do not use invalid session IDs #1883

When an invalid session ID is passed to PHP a warning is thrown, but the
session is still initialized with this invalid ID (throwing additional
warnings on save).

This makes sure such invalid IDs are removed from the cookie array
before initializing the session.

PHP bug references:

https://bugs.php.net/bug.php?id=68063
https://bugs.php.net/bug.php?id=73860

show more ...

removed commented out code

Fixed broken links to php.net and redirecting pages to php.net

streamline zlib checking #1410

Instead of having various function_exists checks all over the place,
this introduces the constants DOKU_HAS_GZIP and DOKU_HAS_BZIP. All
non-3rdparty parts of the code

streamline zlib checking #1410

Instead of having various function_exists checks all over the place,
this introduces the constants DOKU_HAS_GZIP and DOKU_HAS_BZIP. All
non-3rdparty parts of the code using gz* functions should now check if
zlib is actually available.

show more ...

added composer setup and the first composer package php-archive

consistency: failure exit with status code 1

Remove error supression for file_exists()

In an older version of PHP a file_exists() call would issue a warning
when the file did not exist. This was fixed in later PHP releases. Since
we require PH

Remove error supression for file_exists()

In an older version of PHP a file_exists() call would issue a warning
when the file did not exist. This was fixed in later PHP releases. Since
we require PHP 5.3 now, there's no need to supress any error here
anymore. This might even give a minor performance boost.

show more ...

Merge remote-tracking branch 'splitbrain/master'

Move check after libraries are loaded, so that $conf['compression'] is not turned off in the case that gzopen doesn't exist while gzopen64 does exist, as inc/compatibility.php ought to have fixed.

Merge remote-tracking branch 'origin/master' into overridablelangstrings

Conflicts:
inc/plugin.php

use config cascade for loading of localizations

Merge remote-tracking branch 'splitbrain/master'

adding X-Forwarded-Proto support in is_ssl()

This commit adds support for X-Forwarded-Proto in case dokuwiki runs
behind a reverse (SSL) proxy, but the connection between the proxy and
the web serve

adding X-Forwarded-Proto support in is_ssl()

This commit adds support for X-Forwarded-Proto in case dokuwiki runs
behind a reverse (SSL) proxy, but the connection between the proxy and
the web server running dokuwki is plain HTTP. If an authenticated
user is accidentaly dropped to HTTP from HTTPS the securecookie setting
should be honored and the redirection when saving or canceling a page
edit should point to the correct protocol. This happens every time a
user hits cancel after editing a page, and likely even after saving. If
the webserver doesn't enforce HTTPS the coockie might be sent in clear.

show more ...

Check for basedir and baseurl

If these configuration values are not set php will throw an unnecessary
NOTICE.

extend lang file cascade, so users can override some lang strings

Fixes #692