feat(Form): add parameter to omit security token in forms

This is useful for anonymously useable forms, like the search.

feat(search): trigger new event for small search field form

This also renames the event for the search form on the search page.

The scheme for naming events that provide the new Form-class as $data

feat(search): trigger new event for small search field form

This also renames the event for the search form on the search page.

The scheme for naming events that provide the new Form-class as $data is
FORM_<formname>_OUTPUT

show more ...

feat(search): use dedicated url-parameter for search query

This way we do not loose the context of the current page. Further, the
new id generated from the query before wasn't really that useful (se

feat(search): use dedicated url-parameter for search query

This way we do not loose the context of the current page. Further, the
new id generated from the query before wasn't really that useful (see
issue #1124 ). And we can still generate a meaningful link "create a
page for your query", if that is considered useful.

Further redirects exist for the old urls, so bookmarked searches etc.
should mostly keep working.

show more ...

fix: readd div with no-class to tpl_searchform

Quick-search positioning and other templates break when removing this
tag.

feat(search): add origin page as parameter

There are several use cases in which knowing the page where a search
request originated would be useful. This commit adds a `from` parameter
which provides

feat(search): add origin page as parameter

There are several use cases in which knowing the page where a search
request originated would be useful. This commit adds a `from` parameter
which provides that information.

show more ...

refactor: make tpl_seachform use dokuwiki\Form

This makes it easier to read, reason and extend.

feat(metaheaders): Set theme-color meta header

This color is for example shown in Chrome on Android as menu-bar
coloring.

Match documentation to function

Merge remote-tracking branch 'upstream/master'

Added return flags to breadcrumbs and you are here to allow later processing

feat: provide web app manifest (dynamically geneated)

feat: DOKU_UH[N|C] to jsinfo and add deprecation message

I'm not sure that setting the constants in template.php is the best
place. However if we set them in doku.php, we have to duplicate it in
lib

feat: DOKU_UH[N|C] to jsinfo and add deprecation message

I'm not sure that setting the constants in template.php is the best
place. However if we set them in doku.php, we have to duplicate it in
lib/exe/mediamanager.php and lib/exe/detail.php, which is not ideal as
well.

show more ...

feat: canonically provide $ACT to javascript

It would be helpful if there were a reliable way to determine the
current mode in javascript, for example if we only want to execute some
javascript in `

feat: canonically provide $ACT to javascript

It would be helpful if there were a reliable way to determine the
current mode in javascript, for example if we only want to execute some
javascript in `show` or `preview` modes. This writes the final mode to
the JSINFO object right before it is written out as header, so we can
hopefully capture the actual mode without an plugin changing it later
on.

show more ...

do no index hidden pages

fix: link the old version in MM when view it

This commit fixes a bug in the media manager when viewing an old version
of a media file. While, in case of an image, the old image would be
displayed in

fix: link the old version in MM when view it

This commit fixes a bug in the media manager when viewing an old version
of a media file. While, in case of an image, the old image would be
displayed in the third pane, the link above would still link to the
current version.

show more ...

added deprecation tags to the old action related tpl funcs

Merge branch 'master' into svgpagetools

* master: (72 commits)
fix platform to the minimum requirement
translation update
translation update
translation update
translation update
transla

Merge branch 'master' into svgpagetools

* master: (72 commits)
fix platform to the minimum requirement
translation update
translation update
translation update
translation update
translation update
replace conditional with array_pad
refactor: more extensible Content-Type header handling
fix: correctly show conflicts in extension manager
fix: check if key is set to fix PHP Notice
fix: access first element of associative arrays
fix: set default value for empty var
fix: initialize vars to prevent PHP Notice
adjust default bcrypt iterations to 10. fixes #2093
always send Vary: Cookie header. fixes #1594
moved function and fixed whitespace errors
show more info on failed HTTP requests
do not export the appveyor config
Added appveyor config for automated windows testing
Update check supports HTTPS
...

show more ...

removed old tpl_content_core method

Merge branch 'master' into actionrefactor

* master: (65 commits)
updated composer dependencies
Release preparation
translation update
do not disclose email or IP addresses of users through R

Merge branch 'master' into actionrefactor

* master: (65 commits)
updated composer dependencies
Release preparation
translation update
do not disclose email or IP addresses of users through RSS
small fix
Make default encapsulation more readable and less duplicate.
Replace htmlspecialchars to hsc in core
Add the preview-bool for the cache file.
Add htmlspecialchars when showing $DATE_AT
#2021 broken links to W3C validators also dokuwiki and php are on https
made bin/wantedpage.php more flexible
doc abbreviation
Fix PHP Notices: Reduce error log noise
Create valid empty options
translation update
doc fix
translation update
using $options->getCmd to retrieve show-pages parameter
added option to wantedpages.php to show or not show pages where broken links occur
show pages where broken links occur: page_id => broken_link
...

show more ...

Replace htmlspecialchars to hsc in core

Create valid empty options

The HTML-spec[0] specifies:

> If the element has no label attribute and is not a child of a datalist element: Text that is not inter-element whitespace.

So a non-breakin

Create valid empty options

The HTML-spec[0] specifies:

> If the element has no label attribute and is not a child of a datalist element: Text that is not inter-element whitespace.

So a non-breaking space is valid solution.

[0] https://html.spec.whatwg.org/multipage/form-elements.html#the-option-element

show more ...

hidden pages should not be indexed by search engines

When a page is marked as hidden (through the hidepages option) it should
not be indexed by search engines.

make use of the new classes in tpl_get_action()

This function is now deprecated.

Tests even surfaced some smaller bugs :-)

let tpl_action_dropdown use the MobileMenu

Merge branch 'master' into actionrefactor

* master:
fix error in config manager caused by changes visibility
Continue if there are no attributes
avoid dependency tests being marked as risky

Merge branch 'master' into actionrefactor

* master:
fix error in config manager caused by changes visibility
Continue if there are no attributes
avoid dependency tests being marked as risky
replaced some more each calls
remove deprecated each() call
test constructors need to call parent constructor
use dataprovider in password tests
removed deprecated blowfish class
replace some var keywords
translation update
PassHash.class.php: in case of brcrypt, use the most recent variant $2y$
translation update
Fix Typo in remote API (#1938)
translation update
translation update
translation update
use 403 response on bad logins. closes #1937

show more ...