Permalink
Commits on Jul 13, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    marcin-szczerba committed Jul 13, 2018
    - security patch for User Forms
Commits on Jul 3, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jul 3, 2018
    - Fix for a security vulnerability, where an attacker could change the images and/or
      text of of the slides in a "Slideshow 2" plugin.
    
    - Fixed a bug where output buffering was enabled for large file downloads, which was
      causing an out-of-memory error which crashed PHP and corrupted the download.
    - Fixed a bug with the page caching system, where the stats were not being recorded.
    - Fixed an infinite redirect loop that could be triggered by creating a first-draft in
      the primary language, creating and publishing a translation, then going to the
      primary language page when not logged in.
    - Fixed a bug with placeholder language page links.
    - Fixed a bug when a new admin is first setting their password, where the password
      status indicator did not change as they typed.
    - Fixed a bug when creating a content item, where the picker allowed the admin to
      select the wrong kind of layout.
    - If you try to trash a content item that has a managed link to it from a nest or a
      slideshow, you should now correctly see a link in the warning message to see said
      nest or slideshow.
    - Fixed a bug in Organizer, where things could not be correctly selected if the first
      character of their code-name was a dot.
Commits on May 24, 2018
  1. - Improved Document Container module to always display folders withou…

    marcin-szczerba committed May 24, 2018
    …t privacy warnings.
    
    - Added side notes to Content Summary List and Banner modules to clarify handling of retina images.
    - Added a checkbox to Newsletter module to exclude recipients without consent from newsletters.
    - Fixed an XSS vulnerability in User Forms module.
Commits on May 15, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed May 15, 2018
    - Fixed a bug when placing an image in a WYSIWYG Editor, where you set the image to
      100% width, Zenario would rerender the image to be 100px wide.
    - Fixed a bug with the page caching system, where pages with PHP warnings or notices
      could get entered into the cache. (If a page contains a warning or notice, it will
      now not be cached, as was intended.)
    - Fixed a PHP error occurred when trying to set a background image on a content item
      or layout, and pressing the "Use existing" button.
    - Added a workaround for Cloudflare blocking our AJAX requests, if they contained a
      form submission with a rich-text field or WYSIWYG editor.
    - Fixed a buggy message that appeared when saving the settings of a library plugin,
      when the library plugin was only used on draft content items.
    - Fixed a PHP crash that could be triggered when viewing an email template in the
      Email Templates panel in Organizer, if the email template was very short.
    - Fixed a bug where URL fields in TUIX forms would automatically add "http://" to the
      start of the URL you enter, even if the URL you enter already contains that text.
  2. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed May 15, 2018
    - Fixed a bug when placing an image in a WYSIWYG Editor, where you set the image to
      100% width, Zenario would rerender the image to be 100px wide.
    - Fixed a bug with the page caching system, where pages with PHP warnings or notices
      could get entered into the cache. (If a page contains a warning or notice, it will
      now not be cached, as was intended.)
    - Fixed a PHP error occurred when trying to set a background image on a content item
      or layout, and pressing the "Use existing" button.
    - Added a workaround for Cloudflare blocking our AJAX requests, if they contained a
      form submission with a rich-text field or WYSIWYG editor.
    - Fixed a buggy message that appeared when saving the settings of a library plugin,
      when the library plugin was only used on draft content items.
    - Fixed a PHP crash that could be triggered when viewing an email template in the
      Email Templates panel in Organizer, if the email template was very short.
    - Fixed a bug where URL fields in TUIX forms would automatically add "http://" to the
      start of the URL you enter, even if the URL you enter already contains that text.
Commits on Apr 23, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Apr 23, 2018
    - Fixed a bug where the Menu Tree Explorer would not open.
    - If you have a library plugin called P123, searching for "P123" in the Plugin Library
      will now bring it up the search results.
    - Fixed a bug where a newly created administrator would see an error page when first
      logging in and confirming their password.
Commits on Apr 3, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Apr 3, 2018
    - If you wish to show Zenario's 404 not-found page in place of Apache's 404 not-found
      page, you can now do so by adding the following line of code to your .htaccess file
      or Apache Config:
        ErrorDocument 404 /SUBDIRCTORY/index.php?cID=~
      (Where you should replace /SUBDIRCTORY/ with your subdirectory.)
    - Adding "/admin" to the end of any hierarchical URL will now redirect you to the
      admin login, rather than the 404 error page.
    - Fixed a bug where you were not redirected back to the previous page you were on
      after adding /admin to the end of the URL to log in.
    - Fixed a bug when uploading a backup in Organizer, where the uploaded file was not
      selected after the upload was finished
    - Fixed a in the Template Families panel in Organizer, where the count of skins was
      wrong.
    - Fixed an obscure bug that sometimes caused Zenario to create random .json files in
      the CMS ROOT directory rather than inside the cache/ directory as intended.
Commits on Mar 22, 2018
  1. Adding the public release of 8.1 onto the GitHub repo.

    Chris-Turnbull committed Mar 22, 2018
    This version has the following changes and new features:
    
    - GDPR and Data Protection features
    - Friendly URLs are now used in Admin Mode
    - Salutation field on forms now has a drop-down
    - Improvements to FEA (Front End Application) plugins
    - New Meta Data plugin
    
    For more information please see http://zenar.io/zenario-81
  2. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Mar 22, 2018
    - Fixed a bug where restricted administrators would see a JavaScript error on pages
      where they did not have permission to edit.
    - Fixed a bug in Zenario's file uploaders, where sometimes nothing would happen after
      you selected a file.
    - Fixed a bug where the image picker opened in the wrong panel when editing a
      newsletter.
    - Disabled the typeahead in the code editor when writing HTML.
    - When writing any other language, the typeahead in the code editor will no longer
      suggest the names of local variables.
  3. Fixed a security vulnerability, where an attacker could change the te…

    Chris-Turnbull committed Mar 22, 2018
    …xt of any version
    
    controlled Banner on a published page of a website.
Commits on Mar 9, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Mar 9, 2018
    - The Copyright module (which displays the current year on the page) is now included
      in the build.
    - Added a CSS class to all required fields in TUIX forms, so they can be styled
      differently if needed.
    - Added some styles for tabs in nests and slideshows to the Duke Street skin.
    - Copying plugins into a nest will no longer delete cause unused plugins to be deleted
      from the library.
    - When downloading a backup using Google Chrome, your password will no longer be
      automatically filled in for you.
    - When using the "Show menu structure in friendly URLs" option, any anchor links to the
      current page (e.g. <a href="#top">) should now work as expected, and will no longer
      take you back to the homepage instead.
    - When upload a document in Organizer, the document you've just uploaded should now be
      correctly selected after it is saved.
    - When generating links to documents on a UN*X server, symlinks to the original
      document will be created rather than a hard-copy
    - Fixed a bug when generating links to documents on a Windows server, where Zenario
      was attempting to generate a symlink when Windows doesn't support them.
    - Fixed a problem with the links in the Advanced Search module's framework.
    - Removed some junk tables from the installer, that were only there due to a
      copy-paste mistake. (A future patch will delete any of these junk tables for anyone
      with an existing site.)
    - Fixed a speed issue on Chrome, where some overly large SVGs were causing massive lag
      and slowdown in admin mode if the developer tools were enabled.
Commits on Feb 23, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Feb 23, 2018
    - Added an option to the Extranet Login plugin that forces users to accept the terms
      and conditions every time they log in, even if they have previously accepted.
    - If a layout was not created using Grid Maker, it should no longer have a broken
      icon in Organizer.
    - Fixed a bug where the "Add to/remove from categories" button on the admin toolbar 
      was appearing when categories were disabled.
    - Fixed some database errors/PHP errors that could occur when attempting to edit
      the details of an event.
    - Fixed a bug where the list of possible sizes for the page preview were not being
      populated on new sites.
    - Fixed a bug with user forms that load values from a post request from an external
      source.
    - Fixed a bug where the width and height information in the slot drop-down menu were
      sometimes missing in Firefox.
    - Some more bugfixes for running the CMS on MySQL 5.7.
    - Fixed a bug where deleting a module from the disk could sometimes lock you out of
      admin mode due to a CMS caching issue.
    - You can now manually trigger the CMS cache to be cleared by changing the
      last-modified date of the site_description.yaml file, and reloading a page in
      admin mode.
Commits on Jan 29, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jan 29, 2018
    - Restored the Menu Forward Back Navigator plugin.
    - Removed an exploit that where someone could trigger a database error by entering
      multilingual characters into the URL of the file.php script.
    - When creating a content item from the Menu Panel in Organizer, the content item
      should now be correctly placed where you selected in the panel.
    - When attempting to restore a database backup, if the backup fails or is corrupted,
      Zenario will no longer leave partially restored data in the database.
    - Fixed a bug where pressing the "check again" button on the diagonstics screen
      immediately after running the installer would sometimes display a glitched screen.
    - Fixed a bug with the "Work in progress" drop-down where the links were broken.
    - Fixed a bug when editing an existing content item, where the search engine preview
      did not display the URL of the page correctly.
    - Added a partial fix for an issue where the WYSIWYG editor will scroll to the
      top of the screen when inserting/editing an image or link. (Note that this problem
      is fixed completely in version 8.1.)
Commits on Jan 11, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jan 11, 2018
    - Fixed a bug where a CMS backup taken from a 8.0 site would not work
      when used in the installer's "install from backup" feature.
      (Any backups you've previously taken will work fine after you apply
      this software patch.)
Commits on Jan 9, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jan 9, 2018
    - If running on an installation of PHP that is not built with the
      apache_get_modules() function, the CMS will now no longer crash on the system
      requirements/diagnostics screen.
    - Fixed a JavaScript error that could occur on TUIX forms upon pressing the submit
      button.
    - Fixed some glitched styling that was being applied to the Prev/Next buttons
      in Floating Admin Boxes when creating a plugin, or editing the settings of a
      plugin with a preview window open.
    - Fixed a bug where the images used by library plugins were not correctly tracked,
      leading to Organizer to sometimes claim that images were unused when they were in
      fact in use.
Commits on Jan 5, 2018
  1. Adding the public release of 8.0 onto the GitHub repo.

    Chris-Turnbull committed Jan 5, 2018
    Here are the major changes:
    
    - Zenario has been rewritten to use an Autoloader.
    - All frameworks have been rewritten to use Twig
    - A lot of new features are now available to designers when
      writing Twig frameworks
    - A lot of new features are now available to designers when
      writing skins and CSS.
    - The admin toolbar is now responsive.
    - Improvements to creating content items.
    - Improvements to managing plugins.
    
    There a lot of big changes in this version, for more information
    please see the change-log at https://zenar.io/zenario-8
Commits on Jan 4, 2018
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jan 4, 2018
    - Fixed a bug with the "View next version" tooltip on the admin toolbar.
    - Fixed several problems when using MySQL version 5.7.
Commits on Dec 21, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Dec 21, 2017
    - Updated our system requirements to make it clear that we need at least version 2.4.7
      of Apache.
    - You should no longer see errors if the modphp module is not running in Apache.
    - Fixed a bug where the installer could not be accessed using Safari due to a bug with
      a session name.
    - Fixed a bug where a draft content item was not flagged as modified if it was created
      by editing the content item's metadata.
    - Fixed a bug where you could not enable a second language if it had a hyphen in its
      code-name.
    - In a user form, where a field is only visible depending on the value of another field,
      you can now enter more than one values to check against.
    - Added a warning when navigating away from a partially completed form in a nest or
      conductor slide.
    - Removed a garbled character that was appearing when translating the word "Saturday"
      into Spanish.
Commits on Nov 27, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Nov 27, 2017
    - Added a warning on the admin login screen when database that the site is pointed to
      contains an installation of Zenario from a later version. (E.g. if you use 7.7
      software with a database from a 8.0 site, you'll see this warning.)
    - When there is a database connection error on a website, the warning email sent
      to the support address will no longer use the email address of the current linux
      user as the "from" address.
    - When adding an additional language to a website, the menu node for the language's
      home page is now correctly flagged as a translation of the existing home page's
      menu node.
    - Fixed a bug on the Content FAB where the WYSIWYG editor on the first tab
      sometimes vanished when a form-redraw was triggered.
    - Fixed a bug when importing users, where the screen names were not correctly
      validated.
    - Fixed a bug when saving previous text on a form page.
Commits on Nov 2, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Nov 2, 2017
    - Fixed a bug with the Full-page previews when editing a plugin's Framework/CSS.
    - Fixed some migration issues when updating sites using the Location Manager
      module to this version of Zenario.
    - The images displayed by the Location Map and Listing module now have alt-tags.
Commits on Oct 6, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Oct 6, 2017
    - Our last patch release caused a bug for anyone using an older version of
      Chrome. We've added a temporary fix that allows them to continue working
      without needing to update their browser to the latest version.
    - Fixed a security vulnerability where an administrator could launch a SQL
      injection attack by renaming a document, generating a public link for the
      document, and then uploading a replacement.
    - Fixed a security vulnerability in older versions of Zenario, where an
      administrator could launch a SQL injection attack by renaming a document.
      (This doesn't affect more recent versions.)
Commits on Oct 5, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Oct 5, 2017
    - On fluid grids, the width guide on the slot controls now displays the
      maximum possible value, rather than the current width.
    - Fixed an issue when exporting checkbox dataset fields.
    - Fixed a bug in the latest version of Chrome where the drop-down menus
      for slots appeared in the wrong position.
    - Fixed a bug where the "View plugins in this nest" button was visible
      for non-nests.
    - Fixed a display bug where some labels were appearing as checkboxes in the
      UI when setting permissions on a content item.
    - Fixed a bug where the selected item would sometimes scroll out of view
      in Organizer.
Commits on Sep 15, 2017
  1. Adding the public release of 7.7 onto the GitHub repo.

    Chris-Turnbull committed Sep 15, 2017
    This version has the following changes and new features:
    
    - A redesigned admin toolbar.
    - Lazy-loading of images available to Multiple Image Container plugins.
    - Untranslated "placeholder" pages for multi-lingual sites.
    - The ability for visitors to see "embed" links.
    
    For more information please see http://zenar.io/zenario-77
    
    
    Excluding patch releases, this will be the last release for
    the Zenario 7 line.
    
    The next major release will be Zenario 8.0; expect to see a change log
    for this at some point in the next few weeks.
Commits on Sep 8, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Sep 8, 2017
    - Fixed a bug when duplicating a nest or slideshow, where some properties
      of the slides inside were not copied correctly.
    - Fixed a bug where an empty "Linked content item" dropdown menu sometimes
      appeared in the Menu Panel in Organizer.
    - Fixed a bug where the "Content items protected by this group" panel in
      Organizer did not actually show the correct content items.
Commits on Aug 10, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Aug 10, 2017
    - Fixed a security vulnerability in the backups panel in Organizer,
      where an admin could request to delete or restore a file from outside
      the backups directory.
    - Fixed a bug where searching for a "." in the search plugin caused a database
      error.
    - Fixed a bug in the banner where some of the resize options would not resize the
      images properly on non-retina screens.
    - Fixed a bug in the UI when replacing a document, where the form appeared to
      allow you to upload more than one file.
    - Fixed a bug when migrating a site from version 6, where slots could be deleted
      from the site's layouts during the migration.
    - Added a message to the admin login screen for anyone using PHP version 5,
      explaining that they need PHP version 7 to continue.
Commits on Jul 6, 2017
Commits on Jul 4, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jul 4, 2017
    - If you put form plugins on one or more layouts, the "Forms" Panel in Organizer
      now shows you which forms are on which layouts.
    - Fixed a bug where several core modules were appearing in the "Custom modules"
      Panel in Organizer.
    - Fixed a bug where the slot controls would not open in Firefox.
    - Fixed a bug where the buttons in the installer sometimes appeared
      to be disabled when they were in fact clickable.
    - Downgraded our copy of TinyMCE from version 4.6.4 back down to 4.5.7 as this
      older version seems a lot less bugggy.
Commits on Jun 23, 2017
  1. Adding the public release of 7.6 onto the GitHub repo.

    Chris-Turnbull committed Jun 23, 2017
    This version adds the following changes:
    
    - Improvements to Banners and Images
    - Built-in optimisation for images
    - Improved support for Retina displays
    - Improvements to User Forms/dataset editor
    - A faster user impersonation feature
    - A delayed user sign-up email
    - Better site diagnostics
    - Faster database backups and restores for large sites
    
    - You can now delete suspended extranet users.
    - Renamed "sticky images" to "feature images".
    - Rearranged some of the buttons on the admin toolbar.
    - Added a "blockquote" button to the WYSIWYG editor.
    
    - Fixed a bug where users of the latest version of Chrome could not click on images in WYSIWYG editors.
    
    For more information please see http://zenar.io/zenario-76
Commits on Jun 22, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Jun 22, 2017
    - Speed improvements for Document Container plugins that contain lots of
      thumbnail images.
    - User forms can now have custom buttons at the top.
    - When an extranet user logs in to a site that is using a load balancer,
      the IP of the load balancer will no longer be recorded next to their IP.
    - Removed the preview when editing plugins in version-controlled nests, as
      this wasn't actually implemented and was being displayed by mistake.
    - Security fix for Admin Boxes - the client can no longer change the tuix.key
      variables, these can now only be changed in PHP code on the server.
    - When doing a fresh installation, the admin doing the installation will no longer
      be immediately logged out at the end due to a SESSION bug.
    - Fixed some bugs with translating the titles of slides in nests on
      multilingual sites.
    - Fixed a bug where the CMS would occasionaly stop you from publishing a
      content item when the release date was set to the current day.
Commits on May 19, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed May 19, 2017
    - Fixed a bug with the visitorIP() function when using a load balancer,
      where the IP of the load balancer would be included along with the
      visitor's IP address.
Commits on May 18, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed May 18, 2017
    - Fixed a bug where contacts who were converted to extranet users were not
      able to log in if they had the "password needs changing" flag set.
    - Fixed a bug in Organizer where searching either the Layouts or the Image Library
      panels for certain symbols or multilingual characters would trigger a database
      error.
    - Fixed a bug with the zip downloads from a Document Container plugin.
    - Fixed a bug where a text field in a Location Listing plugin was being
      doubly-escaped.
    - Fixed a bug when migrating from an earlier version, where the "Apply slide-specific
      permissions" option for slides was not correctly migrated.
    - Added more options into the list of purge times for the email log.
    - Zenario will no longer check that the pcntl extension is running in PHP
      before allowing you to enable a scheduled task.
Commits on Apr 20, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Apr 20, 2017
    - User Permissions for the Assetwolf/Company/Locations modules are now hidden in the
      site settings until their respective module is running.
    - Zenario will now check that the calendar and pcntl extensions are running in PHP
      before allowed you to run Scheduled Tasks.
Commits on Apr 10, 2017
  1. Syncing our private svn repo with the public repo on GitHub:

    Chris-Turnbull committed Apr 10, 2017
    - Fixed a bug where uploading an image into a nest did not flag the image as being "used".