v0.9.19-rc1
Pre-release
Pre-release
Overall changes
- Extensions version numbering scheme changes (#1464)
- CoTemplate can use classes and class properties in template callbacks (14d52fb) and vardumps (404a804)
- Extended config types (see #1368, #1056, f5ee937)
- fix
custom
config type (read the docs) - extending
radio
config type to allow custom list (see doc page) - extending
callback
type to supportvalue=>title
assoc. arrays (see doc page)
- fix
Security updates
- #1431 security aspects based on reports of Acunetix Web Vulnerability Scanner:
- Prevent XSS by use of canonical URL (as side effect results in #1435 )
- Solves error messages on input variable type spoofing
- Eliminates direct access to some internal files
- Reduce clickjacing danger
- #1436 Unexpected session data sharing for different installs bug
- #1442 Unexpected rights reset in Structure
- #1474 Omit default port 443 in Canonical and Base URL for HTTPS mode
New extensions
indexnews — next gen. news plugin as replacement to currently outdated and corny news
Functions related (new, update, fix)
- new
cot_page_enum()
[page API] — Generates page list widget - new
cot_url_sanitize()
[API - Functions] — Sanitize given URL to prevent XSS () - new
cot_themes_info()
[API - Functions] — Returns themes info data () - new
cot_lang_determine()
[API - Functions] — Returns a exists language from HTTP_ACCEPT_LANGUAGE (b3453e4) - reworked
cot_schemefile()
— #1493 - extended
cot_load_structure()
withcot_load_structure_custom()
(#1466) - improved
cot_selectbox_structure()
(149e3d4) - fix
cot_infoget()
breaks data if addition=
sign found bug minor ( #1469 ) - fix
cot_safename()
for causing duplicate filenames ( #1420 ) - fix
cot_plugin_active()
as returns modules list ( #1471 ) - fix
cot_selectbox_theme()
treats empty folder as a valid theme bug (#1485)
Enhancements
- #1491 Hides User's profile theme selector in
force default theme
mode - #1426 Added Theme and language selectors for user edit
- #1401 Option to remember language selection in cookie for i18n
- #1398 Default Admin resources rearranged
- #1112 Аnti_xss parameter «x» can be switched off for certain forms
Extensions related
«User Images» renew
- #1500, #1496: Def. avatar is not displayed
- #1462 User avatar not cleared in row cycle
- #1423 Allow admin to upload users images in edit mode + fix redirect after image had been deleted.
- #1422 deleting old image on new uploads.
- #1421 unexpected overwriting files
- #1407 Avatar is not displayed for guests
«I18n» updates and fixes
- display search results content on current locale
- search only in main and user selected locale (not show «junk» locales)
- First display results with user locale
- #1455 i18n loads incorrect lang file
- #1449 Search in pages with i18n
- #1428 fatal error if no ID
«Search» plugin:
- #1475 breaking markup on results page
- #1450 Fix custom date range usage
- #1434 Search plugin: SQL error bug
«Tags» plugin:
- #1459 Enchanced plugin meta tags generation
- #1457 duplicates tags on Tags cloud pagination
- #1439 Pagination on «all tags» page
«CKEditor» updated to version 4.5.7
«Page» module:
- #1477 Add {DESC_OR_TEXT_CUT} tag
- #1454 Page module: fatal error on some outdated sorting modes
- #1432 Page: Administration: filtering pages list
- #1406 Page: form data reset on error
«URLEditor»
- #1498 URLEditor + I18n: not consider omit language parameter flag
- #1478 admin page: breaks markup after saved with AJAX bug UX
«htmlpurifier» updated to 4.7.0 (#1497)
Resources Class fixes
- #1409 error on non existing files
- #1467 Resources::addFile() must not check if remote file exists bug
- and other fixes: f4e66c2, d8b9273, ccf4ff3, e010492, ea03bf8,
Other fixes
- #1492 User selected Scheme not override with
force def. theme
- #1479 Star Ratings Ajax Error
- #1470 cot_get_extensionparams() called with wrong params
- #1453 Structure config defaults rewrites values for individual categories while update
- #1433 Page list: SQL query inconsistency (page count and pagelist)
- #1417 PFS files attachments in Forums
- #1414 Publication with the same name as the category
- #1411 Fixed some php5.4 related bug
- #1402 Uploaded exrtafield file with set the custom directory
- #1397 Dealing with
memory_limit
- (0484bea) MarkitUp preview fix
- (66e61e1) fix cot_import(). ['REQUEST_METHOD'] is undefined in cli mode
- (f839607) RSS fix
- (6ffc2cb) ajaxPageLoad fix
For more detailed info see: