prefer the upper part of portrait photos when cropping

darcs-hash:20080516122354-7ad00-9da7f5011631ad40855d7becd1258a415f2e1f48.gz

removed debugging code

darcs-hash:20080516114051-7ad00-ea7c2350c4e3bfda05686c1c6de3027c649cb0ab.gz

image cropping support in fetch.php - no syntax yet

darcs-hash:20080516113856-7ad00-fb8dc6c7be6b0f9db6a4e6f11c5f0bf5bc66dd9c.gz

Set cache permissions after image resize FS#1359

darcs-hash:20080325181825-8d1e6-9f3156da7769530634f29859226d0cb0652fbb99.gz

Propritary Nginx X-Accel-Redirect header

Example nginx configuration :
location /var/www/dokuwiki0/ {
internal;
alias /var/www/dokuwiki/dokuwiki0/;
}

darcs-hash:20080315155631-b0461-68c08d68660

Propritary Nginx X-Accel-Redirect header

Example nginx configuration :
location /var/www/dokuwiki0/ {
internal;
alias /var/www/dokuwiki/dokuwiki0/;
}

darcs-hash:20080315155631-b0461-68c08d68660e554c62a748c1954699791decd000.gz

show more ...

Check memory settings on ?do

This should help with diagnosing memory related problems

darcs-hash:20080223180701-7ad00-1308829c3d7432b1d0c23c3f1acc8228c0a41e1e.gz

fix for resetting timelimit in fetch.php FS#1243

darcs-hash:20080215152132-7ad00-57dfd552c1fa5bc4421f64abf5552f4bb377040c.gz

transparent_gif

darcs-hash:20071221181419-3d7ce-f05705a0357412a87e7984a041ac5812eea83048.gz

X-Sendfile support for fetch.php

This patch enables the use of the X-Sendfile extension offered by certain
webservers to deliver static files after running a dynamic script. This
combines the flexib

X-Sendfile support for fetch.php

This patch enables the use of the X-Sendfile extension offered by certain
webservers to deliver static files after running a dynamic script. This
combines the flexibility of a PHP file to check for authorization, caching
and resizing with the low memory footprint and high performance of static
file delivery of the webserver.

See http://blog.lighttpd.net/articles/2006/07/02/x-sendfile for details

darcs-hash:20071008185019-7ad00-1e6d4768fb60d58955e4253c7786eaf8cf13d0bb.gz

show more ...

don't use fullpath() before initialized

darcs-hash:20070930201133-7ad00-a35a6c40f880116009efd9e50cb002bd75733369.gz

don't use realpath() anymore (FS#1261 and others)

The use of realpath() to clean up relative file names caused some
trouble in certain setups relying on symlinks or having restricitve
file structure

don't use realpath() anymore (FS#1261 and others)

The use of realpath() to clean up relative file names caused some
trouble in certain setups relying on symlinks or having restricitve
file structure setups.

This patch replaces all realpath() calls with a PHP only replacement
which should solve those problems.

darcs-hash:20070930184250-7ad00-512ff04c95f57fc9eaf104f80372237a3c94286f.gz

show more ...

better check for images in fetch.php

This patch is an enhancement to yesterday's changes. The ability to download
external content could be used for XSS attacks, when faking the sent MIME
type. This

better check for images in fetch.php

This patch is an enhancement to yesterday's changes. The ability to download
external content could be used for XSS attacks, when faking the sent MIME
type. This patch adds a check on the received data for valid images.

darcs-hash:20061018124942-7ad00-4e8bca7d3877e6a10c348b5d45499cf8adf8b087.gz

show more ...

restrict fetch.php's download abilities

This patch changes fetch.php ability to download external files. It now checks
for the returned MIME type and will only download images. For all other
MIME ty

restrict fetch.php's download abilities

This patch changes fetch.php ability to download external files. It now checks
for the returned MIME type and will only download images. For all other
MIME types a redirect is sent back to the browser. This reduces the risc of
being misused as open proxy.

Additionally the download facility is disabled completly by default by setting
the fetchsize option to 0. Users who want the feature need to overwrite the option
in their local.php.

Background: The ability to download external files is needed to resize external
images on the server side. When disabled, a redirect is sent to the browser which
will download the fullsize image and rescale it on the client side which is more
bandwidth and CPU intensive.

darcs-hash:20061017175329-7ad00-cd1b1bfa043a04540c51ca8380d28deaa14147d1.gz

show more ...

strip controlchars in fetch.php #935

Fixes a header injection/XSS vulnerability

darcs-hash:20061008100523-7ad00-be06a942badb6a2a9ed862be003ee0050504b4b0.gz

security fixes for fetch.php #924 #962

Fixes a shell injection and a DOS vulnerability

darcs-hash:20060926200551-7ad00-5ef27940dda6e48e7e2f8743fc90fa80b7b5cdff.gz

$conf['fetchsize'] added

This patch adds an option to configure the maximum size for files the fetch.php
will ever download. Setting this to 0 completely turns of the caching of external
media files

$conf['fetchsize'] added

This patch adds an option to configure the maximum size for files the fetch.php
will ever download. Setting this to 0 completely turns of the caching of external
media files.

Disadvantages of setting a low or zero fetchsize:

* fetch.php needs to download images to be able to resize them. When the used
fetchsize prevents the downloading the images can only be resized by the
browser which means the browser will need to download the fullsized image first.

* If the linked external media files vanishes it will no longer display in the
wiki because it is not cached.

Advantages of setting a low or zero fetchsize:

* fetch.php may be used for a possible denial of service attack by requesting
many big external files.

* The created cache files may take a lot of space on the server

I recommend to leave the setting at 2MB for internal and private wikis and lower
the setting to about 200 to 500 Kb for bigger public Wikis.

Note: the caching of files uploaded through the media manager is not affected by
this setting.

darcs-hash:20060615184847-7ad00-04fc39928f7d72e56f5c5e271013ef265436e6c9.gz

show more ...

moved gzip compression to init.php

darcs-hash:20060519212751-7ad00-ace54b61706fdf4f1b7c2abdbabee215a1e256ab.gz

jpg quality option

- Adds a jpg quality setting for scaled images
(Some images were getting too many jpg artifacts
at the hard-coded compression setting.)
- Creates a group for the medi

jpg quality option

- Adds a jpg quality setting for scaled images
(Some images were getting too many jpg artifacts
at the hard-coded compression setting.)
- Creates a group for the media settings in the
config plugin.

darcs-hash:20060516062321-05dcb-a175b0de3264322a335cf60d8ee96317f7b03144.gz

show more ...

smart cache-control headers for media fetch

The HTTP Cache-Control header output now respects the Dokuwiki media parameters
'cache', 'recache', and 'nocache'.
- cache: cachetime or one hour (which

smart cache-control headers for media fetch

The HTTP Cache-Control header output now respects the Dokuwiki media parameters
'cache', 'recache', and 'nocache'.
- cache: cachetime or one hour (which ever is larger)
- recache: remaining cachetime + 10 seconds so the newly recached media is used
- nocache: no caching

Notes:
- 'proxy-revalidate' should ensure that public caches always revalidate, this
will keep caches from (accidentally) ignoring Dokuwiki's ACL rules.
- 'no-transform' should keep media from being modified in transit by caches.

Impact:
Speeds up page layout/display by browsers when they already have the media
in their [memory] cache. For example the 2nd time a page is viewed. This
also reduces server load by eliminating most of the overhead needed to
return '304 Not Modified' responses each time an image is viewed.

darcs-hash:20060421025424-05dcb-23ff26c5cb410bcd166299a840f4c500fa0d112e.gz

show more ...

bugfix fetch remote media (recache and nocache)

Fixes a major bug in fetching remote media with 'recache' and improves
the efficiency of 'nocache'.

Recache:
- Used to reload the remote media on E

bugfix fetch remote media (recache and nocache)

Fixes a major bug in fetching remote media with 'recache' and improves
the efficiency of 'nocache'.

Recache:
- Used to reload the remote media on EVERY request.
- Now it behaves as intended and only reloads the remote media
into the Dokuwiki cache every $conf['cachetime'] time.

Nocache:
- No longer stores remote media in the Dokuwiki cache.
- No longer loads, saves, and forwards remote media -- just redirects.
- No longer resizes images on the server because the cached results
can not be reused.
Overall this is faster for Dokuwiki. The bandwidth usage for
the 3rd party server is the same (less for Dokuwiki). Page loading
should also be faster because data is not being forwarded through
Dokuwiki (and the 3rd part server's cache control headers will be
respected automatically).

darcs-hash:20060421012210-05dcb-a6029baa0fad218ace28e0e3c2f442b1ca645a99.gz

show more ...

fixed bug where '304 Not Modified' worked every other time because cache headers were not sent

darcs-hash:20060315120248-05dcb-5d5d4e06d0074a687185131cda2000b914346e19.gz

refactored http_conditionalRequest($timestamp) to inc/pageutils.php

darcs-hash:20060315064506-05dcb-92833a95f37a43ef50e6b993930ac9d25caed81f.gz

fetch.php now understands partial and conditional requests, fix for #593

darcs-hash:20060302125020-6e07b-25b701312aa4da899f299d82ccac1f5fd66e0255.gz

check for available memory in GD resizing #655

darcs-hash:20051203145501-7ad00-a5c1f52b98fc26772d6585fe9218a3351da39b95.gz

cleanups in resize_imageGD (maybe #631)

darcs-hash:20051203133713-7ad00-6c4d3126fb5de8e5396c214b1f6c82f99eca98ae.gz