make JWT available in session

When a token authentication was successful, the token is now added to
the user session. This allows other plugins (like twofactor) make use of
it.

TreeBuilder: skip invalid pages and namespaces

This will hide namespace templates or weird folders from listings.
Can be disabled with a flag if needed.

reuse bcrypt default difficulty #2093

Instead of hardcoding our own default, we can use PHP's constant

Translation update (ko)

set explicit referrer-policy

This emits a referrer policy header. It will instruct browsers to send
an abbreviated (host name only) referrer header on cross-origin
requests.

This fixes issues with

set explicit referrer-policy

This emits a referrer policy header. It will instruct browsers to send
an abbreviated (host name only) referrer header on cross-origin
requests.

This fixes issues with YouTube embeds reported at
splitbrain/dokuwiki-plugin-vshare#154

This setting is the default in many browsers, so it doesn't change
behavior for most people.

More info at:

* https://github.com/splitbrain/dokuwiki-plugin-vshare/issues/154
* https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Referrer-Policy

show more ...

lint(Ip32.php): fix spacing

still unsure about function names and order

```
./vendor/bin/phpcbf --standard=PSR12 ../inc/Ip32.php

------------------------------------------------
FILE

lint(Ip32.php): fix spacing

still unsure about function names and order

```
./vendor/bin/phpcbf --standard=PSR12 ../inc/Ip32.php

------------------------------------------------
FILE FIXED REMAINING
------------------------------------------------
dokuwiki/inc/Ip32.php 35 0
```

show more ...

fix: 32bit IP tests w/string of decimal representation, overflows

Math in PHP is hard!
sprintf("%.0f",0x7FFFFFFFFFFFFFFF) == sprintf("%.0f",0x7FFFFFFFFFFFFF00)

Changes
* 32bit gets own version o

fix: 32bit IP tests w/string of decimal representation, overflows

Math in PHP is hard!
sprintf("%.0f",0x7FFFFFFFFFFFFFFF) == sprintf("%.0f",0x7FFFFFFFFFFFFF00)

Changes
* 32bit gets own version of tests where expected values are strings
* decimalToBinary32 to replace `sprintf("%032b%032b"...)`, avoids overflow
* overflow check in ipv4 too
* refactor
* partsTo64 for 32bit parts into dec value as str (bcmath)
* Ip32::$b32 as class constant
* condition always PHP_INT_SIZE == 4 for 32bit (instead of == 8 for 64)

show more ...

refactor(ip): PSR-12 functions

bitmask64_32 -> bitmask64On32
make_bitmask_32 -> makeBitmaskOn32
ipv6_upper_lower_32 -> ipv6UpperLowerOn32

also
* uncomment working 7FFF ipv6 test a

refactor(ip): PSR-12 functions

bitmask64_32 -> bitmask64On32
make_bitmask_32 -> makeBitmaskOn32
ipv6_upper_lower_32 -> ipv6UpperLowerOn32

also
* uncomment working 7FFF ipv6 test and
* fix README suggested podman to use `docker://wpstaging`

show more ...

test on php 8.5

allow underscore methods in renderers #4554

build action: improve export-ignore handling. fixes #4555

Insted of parsing the .gitattributes ourselves, we let git do it. All
ignored files are then deleted. Afterwards a find removes any dangling

build action: improve export-ignore handling. fixes #4555

Insted of parsing the .gitattributes ourselves, we let git do it. All
ignored files are then deleted. Afterwards a find removes any dangling
directories.

Hard to test without building a release. I did test the individual
parts though.

show more ...

�� Rector and PHPCS fixes

removed old travis file

Translation update (de)

fix import style

gittool: use new Extension classes

Translation update (it)

minor typo in install.html

Minor typo in install.html, changed "info available on it's own page" to "info available on its own page".

Translation update (ca)

Give explanation if no $conf could be loaded

Give explanation if no $conf could be loaded (i. e. DOKU_CONF pointing elsewhere)

Translation update (pt-br)

eliminate warnings in OR search

correctly check for session auth data. fixes #4547

refactor preference cookie handling. fixes #4544

This refactors the DOKU_PREF cookie handling on the PHP side into a
class. It makes encoding/decoding more explicit and easier to
understand.

The ne

refactor preference cookie handling. fixes #4544

This refactors the DOKU_PREF cookie handling on the PHP side into a
class. It makes encoding/decoding more explicit and easier to
understand.

The new class is used in set_doku_pref() and get_doku_pref() which have
not been deprecated for now.

show more ...

Make bin/indexer.php more robust

Wraps the indexing process into a try/catch so that any exceptions
during indexing will not abort the whole process.

This also makes use of the CLI plugin log level

Make bin/indexer.php more robust

Wraps the indexing process into a try/catch so that any exceptions
during indexing will not abort the whole process.

This also makes use of the CLI plugin log levels and deprecates the
quiet option.

show more ...