summaryrefslogtreecommitdiff
path: root/debian
AgeCommit message (Collapse)Author
2010-03-13openid: Use Openid Simple Registration or OpenID Attribute Exchange to get ↵Joey Hess
the user's email address and username. The info is stored in the session database, not the user database. There should be no reason to need it when a user is not logged in. Also, hide the email field in the preferences page for openid users. Note that the email and username are not yet actually used for anything. The email will be useful for gravatar, while the username might be used for a more pretty display of the openid.
2010-03-13websetup: Add websetup_unsafe to allow marking other settings as unsafe.Joey Hess
2010-03-12htmlscrubber: Security fix: In data:image/* uris, only allow a few ↵Joey Hess
whitelisted image types. No svg.
2010-03-11formattingJoey Hess
2010-03-11redundancyJoey Hess
2010-03-11search: Avoid '$' in the wikiname appearing unescaped on omega's query ↵Joey Hess
template, where it might crash omega. Really, a more general fix, this deals with any $ that might appear on the misctemplate.
2010-03-11Fix missing span on recentchanges page template.Joey Hess
2010-03-11moderatedcomments: Added moderate_pagespecJoey Hess
* moderatedcomments: Added moderate_pagespec that can be used to control which users or comment locations are moderated. This can be used, just for example, to moderate http://myopenid.com/* if you're getting a lot of spammers from one particular openid provider (who should perhaps answer your emails about them), while not moderating other users. * moderatedcomments: The moderate_users setting is deprecated. Instead, set moderate_pagespec to "!admin()" or "user(*)" instead.
2010-03-09Fix utf8 issues in calls to md5_hex.Joey Hess
This prevented comments containing some utf-8, including euro sign, from being submitted. Since md5_hex is a C implementation, the string has to be converted from perl's internal encoding to utf-8 when it is called. Some utf-8 happened to work before, apparently by accident. Note that this will change the checksums returned. unique_comment_location is only used when posting comments, so the checksum does not need to be stable there. I only changed page_to_id for completeness; it is passed a comment page name, and they can currently never contain utf-8. In teximg, the bug could perhaps be triggered if the tex source contained utf-8. If that happens, the checksum will change, and some extra work might be performed on upgrade to rebuild the image.
2010-03-02releasing version 3.20100302Joey Hess
2010-02-28Add new --clean option; this makes ikiwiki remove all built files in the ↵Joey Hess
destdir, as well as wrappers and the .ikiwiki directory.
2010-02-27Fix admin openid detection in setup automator, and avoid prompting for a ↵Joey Hess
password.
2010-02-27Add force_overwrite setting to make setup automator overwrite existing ↵Joey Hess
files/directories. This can be useful if you're driving the setup automator from another program.
2010-02-26Loosen regexp, to allow empty quoted parameters in directives.Joey Hess
2010-02-14comments: Display number of comments in comment action link.Joey Hess
This was not doable before, but when I added transitive dependency handling in the big dependency rewrite, it became possible to include a comment count when inlining. This also improves the action link when a page has no comments. It will link direct to the cgi to allow posting the first comment. And if the page is locked to prevent posting new comments, the link is no longer shown.
2010-02-12releasing version 3.20100212Joey Hess
2010-02-11Group related plugins into sections in the setup file, and drop unused rcs ↵Joey Hess
plugins from the setup file.
2010-02-11Allow globs to be used in user() pagespecs.Joey Hess
2010-02-11httpauth: Add httpauth_pagespec setting that can be used to limit pages to ↵Joey Hess
only being edited via users authed with httpauth.
2010-02-11httpauth: When cgiauthurl is configured, httpauth can now be used alongside ↵Joey Hess
other authentication methods (like openid or anonok). Rather than always redirect to the cgiauthurl for authentication, there is now a button on the login form to use it.
2010-02-09amazon_s3: Fix to support the EU S3 datacenter, which is more picky about ↵Joey Hess
attempts to create already existing buckets.
2010-02-06Fix color and format plugins to appear in the websetup interface.Joey Hess
2010-02-06add opendiscussion to auto-blog.setupJoey Hess
2010-02-06opendiscussion: This plugin will also now allow posting commentsJoey Hess
to otherwise locked-down sites.
2010-02-06auto-blog.setup: Lock all pages, so only admin can post to the blog by default.Joey Hess
2010-02-04Add link to userpage (or creation link) to top of preferences page.Joey Hess
2010-02-04Improve display of openid in preferences page.Joey Hess
Now that openiduser is in IkiWiki core, it's ok to have passwordauth check for it, and avoid displaying useless password fields when showing preferences for an openid. Also improved the styling of the display of the openid in the preferneces page.
2010-02-04Allow jumping directly into account registration process by going to ↵Joey Hess
ikiwiki.cgi?do=register
2010-02-01setup automator: Configure Term::Readline to use bold for prompt, rather ↵Joey Hess
than default underline. Closes: #517656
2010-01-28img: Fix a bug that could taint @links with undef values.Joey Hess
2010-01-26template: Preprocess parameters before htmlizing.Joey Hess
Consider a template like: [[!template type=note text=""" [[!inline pages="*foo*"]] """]] The text parameter is htmlized before being passed into the template (in case the template wraps it in a <span> that prevents markdown from htmlizing it later). But, when markdown sees "*foo*", it turns that into <em>foo</em>. Later, when preprocessing the inline directive, that leads to suprising results. To fix this, I made template parameters be preprocessed (and filtered) before being htmlized. Note that I left in the preprocessing (and filtering) of the template output at the end. That's still relevant when the template itself contains preprocessor directives.
2010-01-22releasing version 3.20100122Joey Hess
2010-01-21po: avoid crash when page is emptyJoey Hess
Note that there is an associated po4a warning when a page is empty: Use of uninitialized value $file in substitution (s///) at /usr/share/perl5/Locale/Po4a/Text.pm line 205. I've filed a bug with po4a about that, but the important thing is fixing the crash here.
2010-01-19handle git-notes breakageJoey Hess
The new git-notes feature in git 1.6.6 changes git log output in a way that broke ikiwiki's parser if notes are added to commits. I decided to deal with this by disabling notes when ikiwiki uses git, by setting GIT_NOTES_REF="". AFAICS, looking up notes when dumping logs will only waste time, since it does not currently seem to make sense for ikiwiki to do anything with the notes.
2010-01-18typosJoey Hess
2010-01-09linkmap: Simplify and improve browser compatability by using an img, not ↵Joey Hess
object tag. I noticed that chromium was not hyperlinking the areas in the object-based linkmap, while img works ok. Dunno why, but img based is nicer anyway since it is allowed right through the htmlscrubber with no workarounds.
2010-01-09websetup: Fix bug in array change detection.Joey Hess
2010-01-09websetup: Fix utf-8 problems.Joey Hess
2010-01-07closeJoey Hess
2010-01-04comments: Fix permalinks for comments using new conflict-free filenames.Joey Hess
2010-01-04lockedit can make sense with no auth pluginsJoey Hess
On second though, you might want a wide-open wiki with some locked pages that cannot be edited online. So, the right thing for lockedit to do when there are no auth plugins is to just say the page cannot be edited.
2010-01-04lockedit: Detect if no authentication plugins are enabled, and die with an ↵Joey Hess
error message as this configuration does not make sense.
2010-01-04signinedit: Auto-disable the plugin when all authentication methods are ↵Joey Hess
disabled.
2010-01-04inline: Avoid showing edit links if page editing is disabled. (Sjoerd)Joey Hess
2010-01-02releasing version 3.20100102.3Joey Hess
2010-01-02Fix several places that did not properly handle capitalization of the ↵Joey Hess
discussionpage setting. Specifically, fixes discussion actions on discussion pages, and unbreaks the opendiscussion plugin.
2010-01-01inline: Fix bug that limited displayed pages when feedshow was specified w/o ↵Joey Hess
show.
2010-01-01linkmap: Add option to omit disconnected pages from the map.Joey Hess
2009-12-30comments: Add a checksum to the name of comment pages, to avoid merge ↵Joey Hess
conflicts when comments are posted to two branches of a site.
2009-12-29Use env hack in python scripts.Joey Hess