summaryrefslogtreecommitdiff
path: root/IkiWiki
AgeCommit message (Collapse)Author
2010-04-05txt: Add a special case for robots.txt.Joey Hess
2010-04-05comments: Fix missing entity encoding in title.Joey Hess
The meta title data set by comments needs to be encoded the same way that meta encodes it. (NB The security implications of the missing encoding are small.) Note that meta's encoding of title, description, and guid data, and not other data, is probably a special case that should be removed. Instead, these values should be encoded when used. I have avoided doing so here because that would mean forcing a wiki rebuild on upgrade to have the data consitently encoded.
2010-04-04fix test suiteJoey Hess
2010-04-04more idiomatic perlJoey Hess
2010-04-04rename hash and avoid unnecessary hash refJoey Hess
Variable renamed to be a bit more self-explanatory. Probably more idiomatic perl to not use a hash ref when a hash can be used.
2010-04-04fix indentation & whitespaceJoey Hess
2010-04-04Fix bzr plugin to work with bzr 2.0.Lars Wirzenius
The output of "bzr log" seems to have changed a bit, so we change the parsing accordingly. This has not been tested with earlier versions of bzr. Several problems seemed to occur, all in the bzr_log subroutine: 1. The @infos list would contain an empty hash, which would confuse the rest of the program. 2. This was because bzr_log would push an empty anonymous hash to the list whenever it thought a new record would start. 3. However, a new record marker (now?) also happens at th end of bzr log output. 4. Now we collect the record to a hash that gets pushed to the list only if it is not empty. 5. Also, sometimes bzr log outputs "revno: 1234 [merge]", so we catch only the revision number. 6. Finally, there may be non-headers at the of the output, so we ignore those.
2010-04-02qualify template_fileJoey Hess
2010-04-02template: Search for templates in the templatedir, if they are not found as ↵Joey Hess
pages in the wiki.
2010-04-02htmlscrubber: Allow colons in url fragments after '?'Joey Hess
Colons are not allowed at the start of urls, because it can be interpreted as a protocol, and allowing arbitrary protocols can be unsafe (CVE-2008-0809). However, this check was too restrictive, not allowing use of eg, "video.ogv?t=0:03:00/0:04:00" to seek to a given place in a video, or "somecgi?foo=bar:baz" to pass parameters with colons. It's still not allowed to have a filename with a colon in it (ie "foo:bar.png") -- to link to such a file, a fully qualified url must be used.
2010-03-29add warning about incomplete tla supportJoey Hess
2010-03-29add warning messages about bzr and mercurial hooks that are not correctly setupJoey Hess
2010-03-28don't check $@ after pagespec_translateJoey Hess
pagespec_translate may set $@ if it fails to parse a pagespec, but due to memoization, this is not reliable. If a memoized call is repeated, and $@ is already set for some other reason previously, it will remain set through the call to pagespec_translate. Instead, just check if pagespec_translate returns undef.
2010-03-28use __TINYC__ define to avoid tinyc compat fixes breaking FreeBSDJoey Hess
To review, tcc does not really use environ, so you have to use clearenv there. But POSIX, in their wisdom, didn't standardise clearenv yet, so on FreeBSD, one still needs to manipulate environ on their own. (If you use tcc on FreeBSD, this may leave you unsatisfied.)
2010-03-28fix printing of $@, which is clobbered by the call to gettextJoey Hess
problem reported by viric
2010-03-26fix the other half of the filecheck filename bugJoey Hess
2010-03-25filecheck: Fix bug that prevented the pagespecs from matching when not ↵Joey Hess
called by attachment plugin.
2010-03-25remove a few leftover manual folding indicatorsJoey Hess
2010-03-24fix unicode with YAML::SyckJoey Hess
Syck-- it doesn't use unicode by default?! Hello, 2010 calling..
2010-03-24use perl YAML for dumpingJoey Hess
Only it understands $YAML::UseHeader
2010-03-24fix back-compat with old Net::OpenIDJoey Hess
Debian stable's Net::OpenID does not support getting extension fields.
2010-03-24fall back from YAML::Any to just YAMLJoey Hess
for portabilty to old YAML in Debian stable that lacks the former.
2010-03-24use YAML::Any to allow faster versions to be used if availableJoey Hess
2010-03-21reset setuptype first, actuallyJoey Hess
so setup file can override default
2010-03-21check for 'require' instead of 'use'Joey Hess
2010-03-21reset setuptype to standard after an automator setup file is loadedJoey Hess
so a standard file is generated (by default)
2010-03-19fix newlines in commented defaultsJoey Hess
2010-03-19load YAML on demandJoey Hess
so as not to break test suite if YAML is not avilable
2010-03-19shorten setuptypeJoey Hess
2010-03-19Add support for setup files written in YAML.Joey Hess
Not the default. (Yet?)
2010-03-19parameterized indentJoey Hess
2010-03-19improve commentsJoey Hess
2010-03-19move generic comment into IkiWiki::SetupJoey Hess
2010-03-19factored out generic commented line dumpingJoey Hess
2010-03-19whitespaceJoey Hess
2010-03-19allow multiple setup file types, and support safe parsingJoey Hess
Finally removed the last hardcoding of IkiWiki::Setup::Standard. Take the first "IkiWiki::Setup::*" in the setup file to define the setuptype, and remember that type to use in dumping later. (But it can be overridden using --set, etc.) Also, support setup file types that are not evaled.
2010-03-19audited use POSIXJoey Hess
The POSIX perl module exports a huge number of functions by default, so make sure all imports are qualified. (And remove one that was not necessary.)
2010-03-18Allow wrappers to be built using tcc.Joey Hess
2010-03-18C warning cleanupJoey Hess
2010-03-13openid: Use Openid Simple Registration or OpenID Attribute Exchange to get ↵Joey Hess
the user's email address and username. The info is stored in the session database, not the user database. There should be no reason to need it when a user is not logged in. Also, hide the email field in the preferences page for openid users. Note that the email and username are not yet actually used for anything. The email will be useful for gravatar, while the username might be used for a more pretty display of the openid.
2010-03-13websetup: Add websetup_unsafe to allow marking other settings as unsafe.Joey Hess
2010-03-12typoJoey Hess
2010-03-12htmlscrubber: Security fix: In data:image/* uris, only allow a few ↵Joey Hess
whitelisted image types. No svg.
2010-03-11search: Avoid '$' in the wikiname appearing unescaped on omega's query ↵Joey Hess
template, where it might crash omega. Really, a more general fix, this deals with any $ that might appear on the misctemplate.
2010-03-11moderatedcomments: Added moderate_pagespecJoey Hess
* moderatedcomments: Added moderate_pagespec that can be used to control which users or comment locations are moderated. This can be used, just for example, to moderate http://myopenid.com/* if you're getting a lot of spammers from one particular openid provider (who should perhaps answer your emails about them), while not moderating other users. * moderatedcomments: The moderate_users setting is deprecated. Instead, set moderate_pagespec to "!admin()" or "user(*)" instead.
2010-03-09typoJoey Hess
2010-03-09Fix utf8 issues in calls to md5_hex.Joey Hess
This prevented comments containing some utf-8, including euro sign, from being submitted. Since md5_hex is a C implementation, the string has to be converted from perl's internal encoding to utf-8 when it is called. Some utf-8 happened to work before, apparently by accident. Note that this will change the checksums returned. unique_comment_location is only used when posting comments, so the checksum does not need to be stable there. I only changed page_to_id for completeness; it is passed a comment page name, and they can currently never contain utf-8. In teximg, the bug could perhaps be triggered if the tex source contained utf-8. If that happens, the checksum will change, and some extra work might be performed on upgrade to rebuild the image.
2010-02-28Add new --clean option; this makes ikiwiki remove all built files in the ↵Joey Hess
destdir, as well as wrappers and the .ikiwiki directory.
2010-02-27Fix admin openid detection in setup automator, and avoid prompting for a ↵Joey Hess
password.
2010-02-27Add force_overwrite setting to make setup automator overwrite existing ↵Joey Hess
files/directories. This can be useful if you're driving the setup automator from another program.