/
NEWS
3729 lines (2634 loc) · 147 KB
/
NEWS
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
# $Id$
Version 1.7 ()
------------------------------------------------------------------------
* fixed draft & future entries preview link in backend
* Allow Smarty to fetch .tpl files from all directories so that
s9y plugin can use the fetch() call for their .tpl files no
matter which (symlinked) directory the plugin resides in.
The Smarty security policy to us only serves as a restriction
within .tpl files to not allow arbitrary PHP modifier/function calls.
If in the future Smarty supports enforcing trustedDir checks on
{include} calls seperately to smarty->fetch() calls, we'll also
add that to .tpl files.
(garvinhicking)
* Patch by Markus Brükner: Properly handle files that have no
extension in media database
* Made Spartacus recognize github.com mirror (garvinhicking)
* Add "Summary" output to title of summary archive pages, patch by
hboeck
* Set the smarty object by instance (ophian)
It is often needed to access the Smarty object from anywhere in your code, e.g. in plugins
We now ensure that there is only one instance of the object available.
To obtain an instance of this class: $serendipity['smarty'] = Serendipity_Smarty::getInstance();
The first time this is called a new instance will be created. Thereafter, the same instance is handed back.
To overwrite use $serendipity['smarty'] = new Serendipity_Smarty; to create a new instance.
* Set a global Serendipity errorToExceptionHandler (ophian)
changed some old smarty trigger_errors to PHPs native function
* Updated spamblock plugin (ophian)
changed wordfilter to function and Commenters moderation check verify_once
to get checked via wordfilter to reject known spam comments before
* Changed backend comment (error) messages (ophian)
as now captured and styleable messages
(newly added .serendipity_backend_msg_notice css class)
* Updated nl2br plugin (ophian)
added isolation tag using nl to br
this also adds some NoBR buttons to backend entry forms
* EXPERIMENTAL: Smarty3 support (ophian)
with this upgrade Serendipity / Smarty will at least need a webserver running the PHP 5.2 series.
As of August 2011, all PHP users should note, that the PHP 5.2 series is NOT supported anymore by the PHP developers.
All users are strongly encouraged to upgrade to PHP 5.3.8 and up. Please refer to your ISP about this.
* Added new serendipity['defaultBaseURL'] variable that makes sure
that the baseURL is not overriden when configuring serendipity
with a possibly autodetected currentl URL. Patch by Manko10.
Version 1.6.1 ()
------------------------------------------------------------------------
* Fixed unneccessary preg_match notices in the statistics backend
* Fixed a possible problem where template-specific variables would
not be cleared in favor of the new global ones.
* Fixed serendipity_fetchComments producing wrong SQL code. Please
check your code if you did workarounds already and remove them.
Version 1.6 (October 27th 2011)
------------------------------------------------------------------------
* Fix XSS issue in mediadatabase and karma
filtering, thanks to Stefan Schurtz
* Fix problem with autosave plugin used in conjunction with
entryproperties (chrisbra)
* Removed browsercompatibilitty plugin because it's outdated and
IE6 shall be dead.
* Fixed Spartauc SF.Net download location (Thanks to christian_boltz)
* Added new event hook 'backend_loginfail' to track failed logins
(serendipity_event_externalauth can make use of it for fail2ban)
* Fixed a bug in synchronizing new files with the same basename
but different extensions, where files with the same mimetype
would not get added (garvinhicking)
* Show subscription status of comments in frontend and backend
* Added ability to report spam/ham to akismet (Black Warthog)
* Added localization for {$WEBLOG} in trackbacks.tpl (LazyBadger)
* Added "Options -MultiViews" to .htaccess to prevent IE9 trouble
* Karma plugin: Added option to only track votings when users are
logged in.
* Bugfix: Adjust /admin permalink detection so that it does not listen
on /adminbook for example. Thanks to Lux!
* serendipity_event_mailer now also allows to use commas instead of
spaces to seperate multiple mails. Use distinct email adresses
(Thanks to evanslee)
* Added new rewrite option for 1&1 specific servers, because a
combined htaccess for both variants could not be find. The reason
is the MultiViews option in certain apache configs.
* Fix PDO::SQLite to properly fetch the requested row type
(assoc/both/num), important for staticpage plugin
* TPL fixes for upcoming Smarty3, thanks to timbalu
* Experimental: Config-Groups for template and plugin options,
currently mimics fold in/out of global configuration.
Usage through "config_groups", examples are in config.inc.php of
bulletproof and spamblock plugin. Needs documentation.
(garvinhicking)
* Added new parameter "empty" to {serendipity_showPlugin}. When
no callable plugins were found, the string in the "empty" parameter
will be shown instead, allowing users to get notified of a missing
plugin:
{serendipity_showPlugin
class="serendipity_plugin_twitter"
empty="Twitter plugin not found!"}
* Bundle jquery by default and enable it in frontend and backend
templates; overrides serendipity_event_jquery. If your template
contains its own "jquery.js" file, the core will NOT use it.
(garvinhicking)
* Include API logic to allow the core to utilize event hooks with
internal function calls (used for jquery output, for example)
(garvinhicking)
* Allow to moderate multiple selected comments (garvinhicking)
* Allow to pass 'template' variable to serendipity_showPlugin
* Make CSS permalink pattern compatible to 1&1 servers,
thanks to lfrantzen
* PDO-SQLite patches by nth
* Fix newline before <?xml tag, thanks to deedw
* Only do '*' parameter expansion on the first page of search
results: http://board.s9y.org/viewtopic.php?f=10&t=14810
(onli, Timbalu)
* RSS feed timestamp properly calculates offset (abdussamad)
* (experimental) global theme options (garvinhicking)
Inside template's config.inc.php you can enable a global
navigation configuration feature:
$template_global_config = array('navigation' => true);
serendipity_loadGlobalThemeOptions($template_config, $template_loaded_config, $template_global_config);
More keys apart from "navigation" might get supported in the future.
* Implemented suggestion of removing boilerplate code in plugin API:
Change hack protection, introduce unified language loading, see
http://board.s9y.org/viewtopic.php?f=11&t=16921
Thanks to mt2!
* Fix karma rating plugin missing the text translation for a
specific point area
* Recent entry properties now recognizes multilingual titles
* Include referrer in comment notification email (konus)
* Added new 'fulltext' search option to sidebar plugin
http://board.s9y.org/viewtopic.php?f=4&t=16051
* Truncate suppressed referrer's query string to 255 characters
(ads)
* Fix "viewAuthor" URL detection routine if the path name of a
domain begins with a number. (garvinhicking)
* Fix SQLite substring search to use % instead of * for secondary
matches (SvOlli)
* Recent entries plugin can now fetch the associated categoryid,
when a single entry is displayed. (Garvinhicking)
* Stricter check for sqlite3 extension, only functional interface
instead of OOP currently supported (garvinhicking)
* Experimental: When sending quoted-printable notification mails,
auto-split after 75 characters.
(Ref: http://board.s9y.org/viewtopic.php?f=3&t=16314)
* To support custom PHP sessions, s9y will only issue session_start,
if no session exists yet (garvinhicking)
* Use "Longtext" instead of "text" for new installations on blog entry
body and extended body inside database tables. (garvinhicking)
* Added ability to mark authorgroups as "hidden", so that members
of such groups are excluded from common author listings.
(Ref http://board.s9y.org/viewtopic.php?f=11&t=16237)
(garvinhicking)
* Added option for SMF importer to also import tags
* Added experimental global variable $i18n_filename_utf8 that can
be set in a serendipity_config_local.inc.php or language include
file, which will return Unicode-Permalinks.
(http://board.s9y.org/viewtopic.php?f=11&t=15896)
* Added event hook backend_sendcomment for sending comments and
being able to chang via plugin API (onli)
Version 1.5.5 (December 21st, 2010)
------------------------------------------------------------------------
* Due to security issues in the bundled Xinha WYSIWYG,
disabled the PHP-based plugins (which are not utilized by
serendipity unless manually enabled), until a proper security
fix is available
Version 1.5.4 (August 26th, 2010)
------------------------------------------------------------------------
* Fix XSS in backend, thanks to High-Tech Bridge SA #HTB22595
* Fix PHP 5.3.2 parse error in a file, thanks to fyremoon
* Fix SQL query statement for deleting a category, which on some
DB types (SQlite) might not return "true" and thus not really
delete the category. (garvinhicking)
* Include license output in plugin listing (onli)
* Fix escaping when using ImageMagick to create PDF-thumbnail images
(stm9x9)
* Add new template variable to feed*.tpl files to support new
plugins like pubsubhubbub, so that plugins can embed data to the
main XML element (onli)
Version 1.5.3 (May 10th, 2010)
------------------------------------------------------------------------
* Added workaround for dynamic configuration of Xinha plugins
ExtendedFilemanager, ImageManager,
InsertSnippet and Linker plugins to avoid remote code inclusion.
(Stefan Esser)
Version 1.5.2 (January 25th, 2010)
------------------------------------------------------------------------
* Fixed SQL upgrade path for SQLite.
Version 1.5.1 (December 21st, 2009)
------------------------------------------------------------------------
* Fix bug with not showing "html" type configuration items.
Version 1.5 (December 21st, 2009)
------------------------------------------------------------------------
* Show backend comment pagination in footer and header
* Don't toggle the border of marked comments in the admin section
to 2px, to avoid padding. Thanks to hboeck!
* Added expermiantel PDO::SQLite transport, by nth
* Disallow uploading any files with ".php." in the filename
(garvinhicking)
* Prevent password autocompletion for user passwords to prevent
possible mismatch. In media manager popup, fix bug that did
not properly forward to image selection after upload (onli)
* Fix a bug in statistics output, when statistics for single-number
months is created. (Andreas Bilke)
* Always increase last_modified when an entry is saved to prevent
stale entries in RSS feeds. Thanks to Cenic
* Allow comment sidebar plugin to only show coments for entries
that are allowed to be viewed by the current visitor.
* Also use htmlspecialchars() for the Recent Entries sidebar plugin
(Anson)
* Do not send mails, if the "To:" address is empty, might happen
if authors do not have a mail account entered in their profile.
(nealk)
* Fixed Spartacus download URLs for SF.Net mirror (christian_boltz)
* Allow redirects when fetching remote images (garvinhicking)
* Allow to define sort order for search-results (garvinhicking)
* More PHP 5.3.0 compat (split(), ereg(), ereg_replace()).
* PostgreSQL compatibility for the printArchives() function to
gather only unique timestamps (cite)
-- beta1 release
* PHP 5.3.0 compatibility without E_WARNING triggers (garvinhicking)
* Added 'orderby' parameter to plugin API hooks for the serendipity
fulltext search function (garvinhicking)
* Added new event hook frontend_sidebar_plugins to iterate through
sidebar plugins and modify their output. $eventData is the array
of their data. (garvinhicking)
* Added ability to specify a custom Xinha config. Either supply
a 'my_custom.js' file inside the template directory, or if
omitted, the default htmlarea/my_custom.js is used. With this
you can overwrite the plugins and buttons of all Xinha instances.
See the mentioned default file for usage. (garvinhicking)
* Removed "static" db layer typelist to prevent accidental over-
writes of referenced return values (garvinhicking)
* Upgrade to Smarty 2.6.26
* Removed inline styles of the s9y media insertion, they will now
properly utilize CSS classes (defined in the new file
style_fallback.css). Also added support for entering "ALT/TITLE"
attributes to an <img> tag, can be used as a media property if
you add "ALT" and "TITLE" to the list of "Media properties" in the
main configuration. (garvinhicking)
* Filter entries only by authors that have written at least
one article (garvinhicking)
* Fix PDF imagemagick thumbnail generation to be properly displayed
(http://board.s9y.org/viewtopic.php?f=3&t=15446)
* Warn about non-writable "plugins" directory in installation
* Added new optional parameter for plugin config type "text": rows.
Added new optional parameter "input_type"="password" for plugin
string type configuration (brockhaus)
* pingbacks were not counted as entry trackbacks although added to
entries. (brockhaus)
* Added "exclude urls" to ip validation functionality in spam block
plugin. identi.ca is sending pingbacks but fails the ip validation!
(brockhaus)
* no longer use htmlspecialchars() on the blog's title and sub-
title, to allow for custom HTML code to appear and unify
only letting Smarty do the escaping (garvinhicking,falk)
* Plugin drag/drop now can scroll up/down/left/right when touching
the borders. Thanks to onli!
* Changed shoutbox plugin. Shoutbox input size is configurable now.
Wrong description for dateformat fixed.
(brockhaus)
* Change mail entry plugin to be able to send mails without
hyperlinks and images. (garvinhicking)
* Change uriArgument parsing routine to allow "!" in URLs.
Now we can have absolute serocracy.
* Changed image upload workflow so that the upload results/errors
are shown on top of the media library, allowing to go on
immediately (onli)
* Added new smarty variable $admin_vars.title to the admin/index.tpl
template file to customize the title (onli)
* Add new config option to base server time on UTC
(http://board.s9y.org/viewtopic.php?f=2&t=15123) (Abdussamad)
* Use a unique session name for each blog instance, so that multiple
s9y installations can live on the same domain and having their
own sessions (kleinerChemiker, DrNI)
* Livejournal importer update by Anson now supports importing
comments, see http://board.s9y.org/viewtopic.php?f=11&t=15141
* Enhance xhtml cleanup plugin to also work on <param value="..." />
tags and fix youtube html. (garvinhicking)
* Changed bookmarklet to work with Chrome, thanks to Oliver
Gassner & TextPattern :-) (garvinhicking)
* Enhanced serendipity_printEntries() logic to bypass smarty
parsing ($smarty_fetch) (garvinhicking)
* Changed karma plugin to only track GET requests as visits, not
POSTs. Thanks to Marcus Friedman
* Enhanced nl2br plugin to also use <p> tags, by onli
* Added possibility for templates to register a central function
serendipity_plugin_api_event_hook() and
serendipity_plugin_api_pre_event_hook() that can be used to
use plugin API interaction WITHOUT actual plugins. So special
plugins can be bundled within a template, without the need to
seperately install them. The "pre" function is called BEFORE
all normal plugins are executed, the normal function is called
AFTER plugin execution. (garvinhicking)
* Change javascript non-wysiwyg insertion methods to propery
return to scrollposition, patch by onli
* Enhance TrackExits plugin to also support link redirection for
future german law/access blocking :) (garvinhicking)
* Enhance quicksearch by performing a wildcard-search for the
searchterms, when less than 4 matches are found. (onli)
* Updated czech translation, by Vlada Ajgl
* Use a space instead of comma to seperate DENY rules in spamblock
plugin, patch by brielle
* Added ability to use strftime variables in the spamblock.log
filename. (kleinerchemiker)
* Added improved Blogger.com importer using the API, thanks to jaa
* Change password hashing from plain md5 to salted SHA1. Logins
should continue to work and are migrated to SHA1 keys upon
first login. MD5-logins will only work successfully once. This
mechanism will expire 6 months after the upgrade has been executed.
EXPERIMENTAL! (http://blog.s9y.org/archives/205-hash.html)
(garvinhicking)
* Allow admins to also approve comments awaiting user-confirmation
(garvinhicking)
* Fix statistics sidebar plugin to properly count weekly visitors
(garvinhicking)
* Allow javascript inside Xinha WYSIWYG textarea (garvinhicking)
* Allow anonymized submission to Typepad/Akismet to attribute
possible federal laws for data protection (garvinhicking)
(RFE #2517320)
* Change antispam plugin to also support Typepad as an alternative
to Akismet. (judebert)
Version 1.4.2 ()
------------------------------------------------------------------------
* Changed spamblock plugin for text filtering to ignore trailing
or prepending spaces in blacklists (garvinhicking)
* Change syndication plugin to also support new feeds2.feedburner.com
style URLs (garvinhicking)
* Fix bad link in Remote RSS sidebar plugin (#2521122)
(garvinhicking)
Version 1.4.1 (January 16th, 2009)
------------------------------------------------------------------------
* Fix missing index key creation for statistics tables in the
statistics plugin (isotopp)
* Change "Allow duplicate content" in spamblock plugin to not
operate on (empty) pingbacks (garvinhicking)
* Upgrade to Smarty 2.6.22 to fix a PCRE bug
* Remove warning message when checking for plugin documentation files
on open_basedir servers (garvinhicking)
Version 1.4 (December 29th 2008)
------------------------------------------------------------------------
* Added new event hooks for future support of WYSIWYG button
modifications (judebert) [1.4-beta2]
* Added ability to rename "feeds" in the syndication plugin and
add a big image on top (onli) [1.4-beta2]
* Added more parameters to {serendipity_printComments} function:
"block" (smarty block variable name),
"template" (smarty template file to render)
[1.4-beta2]
* Fixed not remembering entryproperties when re-editing an entry,
introduced with 1.4-beta1 [1.4-beta2]
* Added SMF importer [1.4-beta2]
* Fix setting cookies for 30 Days, not only ~43 Minutes. Thanks
to konus! [1.4-beta2]
* Adjust getting the right URL for karmavoting and shoutbox
plugins [1.4-beta2]
* Added %parentname% permalink property to category structure,
so that a full category name path can be used instead of only
%name%. (garvinhicking) [1.4-beta2]
* Made entrypropertie's password plugin form use "autocomplete=off"
to prevent inserting badly stored passwords. Thanks to sbauer!
[1.4-beta2]
* Added full plugin name and links to documentation/changelog for
plugins on installation and configuration [1.4-beta2]:
You can provide Documentation for your plugins by supplying a local file
called documentation_XX.html inside the plugin directory, which Serendipity
will automatically detect.
You can also (additionally) add a property bag attribute "website" inside
your plugin's introspect() method:
$propbag->add('website', 'http://anypage.com/');
To provide a version history, you can add a file "ChangeLog" (mind the exact
spelling) to your plugin directory.
All three possible links are shown on the Serendipity interface when
configuring or installing a plugin.
(garvinhicking)
* Fix not properly counting trackbacks or resetting comment/tb
counter when editing an entry [1.4-beta2] (garvinhicking)
* Added experimental Serendipity importer (for merging installations,
fore example). (Garvinhicking)
* Use "autocomplete=off" for the default database password in
the installer, to workaround stupid Firefox password
autocompletion inserting the author password at this place.
* Also recreate custom permalinks without using URL rewriting
(garvinhicking)
* Fix WYSIWYG media insertion when being called on pages with
multiple HTML portions/nuggets, and also the staticpage plugin
(garvinhicking)
* Prefix possibly missing http:// of commenting authors URLs
in recent comments sidebar plugin and admin interface.
(garvinhicking)
* Recount trackbacks/comments when a new comment is made, instead
of carrying over an incrementing/decreminting counter for
entries, that might get off. (garvinhicking)
* Add new global config option to support OptIn confirmation for
comment subscriptions (garvinhicking)
* Allow spamblock plugin to use approval mechanism for comments,
so that commenting users first need to approve their comment
via email ("once" or "always" as options).
* Replace htmlarea with XINHA. Thanks to abdussamad!
(Experimental! Needs testing on shared installations. Might
need browser cache refresh!)
* Add link to preview entries by an author into the usermanagement
(garvinhicking)
* Add memory_limit output to s9y installation, 8MB for 32bit and
16MB for 64bit OSes
* Add support for postgreSQL ts_vector fulltext search, thanks
to genesis.
* Bulletproof: Added support for custom, randomized header image.
If you enter a path (relative to the domain root, like
'/blog/uploads/'), any of the contained images will be rotated.
(garvinhicking)
* Added header('Status:...') calls so that some CGI installations
of apache emit proper headers (garvinhicking)
* Add a "Configure this plugin" link to the frontend output for
every sidebar plugin, not only HTML nuggets. (garvinhicking)
* Enhance entryproperties plugin to use sequencing widget: Allows
you to configure which fields you want to see in the 'Edit Entry'
panel for "Advanced Options". (garvinhicking)
* Propagate a 'article_count' smarty variable for each category
in the category sidebar plugin, when article counting is
enabled. (garvinhicking)
* Trackbacks are no longer sent when an entry shall be published
in the future. You can force them by editing and re-saving an
entry, once it is published. TODO: A plugin/cronjob to automatically
execute those trackbacks? (garvinhicking)
* Allow 'sequence' widget to enable/disable each config item,
if the property "checkable" is added to the introspect method.
(garvinhicking)
* Do not show title of entries marked as public/private when
viewed without permissions. Patch thanks to Anthem
* Make cookie deletion routine use the same host like cookie
insertion, thanks to JPhilip
* Added optional token insertion for comment notification
(moderation) e-mails, which you can click without the need
for authentication. This is a convenience feature, note that
if someone can access your mails, he does not need to authenticate
for deleting/approving a comment with the contained link.
(Rob A)
* Fix showing wrong metadata (00:00:00" for uploaded metadata.
(garvinhicking)
* RFE #2006182: Make search highlight plugin also honour serendipity's
search terms. (garvinhicking)
* Improved "Remote RSS" plugin's templating output to select
custom template files. Add demo "Nasa Image of the Day" plugin
by Grigory F. (garvinhicking)
* Fix Generic RSS import to not always assume WPXRSS feed.
(garvinhicking)
* Fix bug in category sidebar plugin, which showed categories that
should have been hidden when the option "Hide parents of
selected sub-tree" was selected and Smarty templating was enabled.
(garvinhicking)
* Change option to allow subscriptions to comments so that
fulltext comments can be mailed to subscribers.
(garvinhicking)
* Default .htaccess now contains a conditional rewrite pattern
for fallback *.html generation. Thanks to absynth.
(TODO: Regenerate .htaccess on update, maybe make this
condition optional)
* Update to Spartacus to support custom mirrors (garvinhicking)
* Added possibility to access more SQL query parts of fetchEntries
through plugin API. New indexes of $eventData:
- 'single_group', 'single_having', 'single_orderby' for
serendipity_fetchEntry (through hook 'frontend_fetchentry')
- 'group', 'having' for
serendipity_fetchEntries (through hook 'frontend_fetchentries')
(judebert&garvinhicking)
* Added RewriteRule to ensure that admin panel can be called,
thanks to rich4647 from the forums.
* Added file checksums to be able to verify integral structure
of a s9y release (judebert)
* Use semantically better HTML output by sidebar plugins
(ordererd lists, less <br>s, ...) (YellowLED)
* Add new configuration option to allow rescaling thumbnails
with height/width/maximum size constraints. (judebert)
* Allow to override $serendipity['languages'] array, do not issue
s9y version number in RSS feed if 'expose_s9y' is disabled.
* Add new config option to entryproperties plugin to not use
extensive joins to save performance in cases where no ACLs
need to be evaluated. (garvinhicking)
Version 1.3.1 ()
------------------------------------------------------------------------
* Add XSS security checks for installer, even though very
hypothetical application :) (Hanno B�ck)
* Add {serendipity_getImageSize} smarty function (judebert)
* Add escaping to "Top Referrers" plugin and honor local configuration
of "Show links" option, thanks to Hanno B�ck
* Fix some PostgreSQL implicit casts for SQL queries (changed
LIKE to =). (Devrim G�nd�z)
Version 1.3 (March 18th, 2008)
------------------------------------------------------------------------
* Fix possible XSS injection for published trackbacks, thanks to
Peter H�we!
* Added "Google Reader" option to syndication plugin, by Adam
Charnock
* Updated recent_entries plugin to show/hide on overview, detailed
entry, or all pages (don chambers).
* Updated statistics plugin to contain per week/day visitors.
(roti)
* Updated hungarian language
* Allow to submit comments to future entries, when showing
future entries is enabled (garvinhicking)
Version 1.3-beta1 (February 25th, 2008)
------------------------------------------------------------------------
* Fix sidebar plugin for the author's list to not include counting
drafted articles (garvinhicking)
* Add option "template" to smarty function call {serendipity_
printSidebar} (garvinhicking)
* Upgrade to Smarty 2.6.19 (garvinhicking)
* Fixed bug #1893108: Missing 'xmlns' attribute in templates for
<html> tag. (garvinhicking)
* Updated karma ranking plugin to use nice graphics (judebert,gregman)
* Added phpNuke importer (garvinhicking)
* Add ability to plugins to check uploaded media files for invalid
file extensions. Added more escaping to user- and groupnames
for untrusted author environments, thanks to Hanno Boeck.
(garvinhicking)
* Added czech translation to bulletproof templates and bundled
plugins, by Vlada Ajgl
* Sidebar plugin comments: URLs of writers now are shown for all
entries not only for trackbacks. You may configure if they should
be shown for all, none, normal writers or trackback/pingbacks.
(brockhaus)
* Pingback/Trackback textfetching: HTML Entities are now converted
to characters. (brockhaus)
* For Pingback it is now possible to define the maximum amount of
characters while fetching text of the remote site. Add
$serendipity['pingbackFetchPageMaxLength'] = 200 to your
serendipity_config_local.php. (brockhaus)
* Add ability to set comments as "pending" again, even when already
approved in the comment-moderation backend panel.
(garvinhicking)
* Insert "serendipity_image_center", "serendipity_image_left" and
"serendipity_image_right" CSS classes to the image tag, when
inserting an image from the mediadatabase (garvinhicking)
* Fix displaying entry title in the backend section exactly like
in the frontend, thanks to Alex (garvinhicking)
* Added hooks to trackback listing in order to let plugins change
it (the avatar plugin in example) (brockhaus)
* Add more verbose CSS classes to remote RSS sidebar plugin, also
only encapsulate the first XML-Item as link. All following
items are only encapsulated in <span>s. Also add possible
plugin_remoterss.tpl smarty output template to this
plugin. (garvinhicking)
* Make browser compatibility plugin bail out for IE7. Thanks to
Freudi from the forums.
* Add possibility to spartacus to upload files via FTP. This can
bypass Safe_mode restrictions on your server to make Spartacus
work for you. (VladaAjgl)
* Add spartacus remote management versioning information subpage.
(garvinhicking)
* Allow the "send mail" plugin to send mails to all registered
authors (garvinhicking)
* New spam blocking method for trackbacks: ip validation. The
senders ip is compared with the ip of the host, the trackback is
set to. If they don't match, the trackback is rejected/moderated.
This should reject most of the trackback spam bots. (brockhaus)
* Updated karma plugin to not track clicks of registered users
(brockhaus)
* Made short-urls index.php?serendipity[id]=X or index.php?p=X
properly show a single entry view (garvinhicking)
* Added new parameter "joinown" and "entryprops" to {serendipity_
fetchPrintEntries} smarty function, to be able to fetch entries
according to their entryprops or other custom SQL.
(garvinhicking)
* New plugin API method "parseTemplate($filename)" to allow a
sidebar- or event-plugin to fetch+display a smarty template.
(garvinhicking)
* The archive sidebar plugin shiped with s9y now displays numbers
of articles correctly for month, catergories and so on, even
if multicategory articles are used. (brockhaus)
* Added LifeType importer (garvinhicking)
* The recent entries sidebar plugin shiped with s9y listed entries
not accessable by the current user because of right restrictions.
(brockhaus)
* Patch popup-HTML-code insertion javascript to better inter-
operate with tinymce, xinha or fckeditor. Thanks to
Assen Tchorbadjiev.
* Add experimental DB layer for "SQLRelay" database proxy extension,
by Dante Mason
* On the fly update of the media database: Not only images are added
but video and audio, too. (brockhaus)
* Trackbacks to links without a RDF-description now get properly
evaluated. Mostly WordPress-specific. (brockhaus)
* Pingback receiving is working now with internal functionality in
comment.php Smarty trackback loader now loads trackbacks and
pingbacks (brockhaus)
* Extended spam blocking plugin to handle pingbacks like trackbacks.
(brockhaus)
* Full pingback support, fallback trackback method for WordPress
blogs. (brockhaus)
Version 1.2.1 (December 8th, 2007)
------------------------------------------------------------------------
* Updated Textile library to 2.0, by Lars Strojny
* Fix wrong entry timestamp used in comment feeds (garvinhicking)
* Highlighting searched words in entries now uses str_replace instead
of slower and possibly insecure preg_replace(). Thanks to
Dietrich Raisin!
* Updated WordPress imported to be able to import from a 2.3
structure (experimental). Also added WPXRSS import to the
generic RSS importer. (garvinhicking)
* Fix proper encoding of '%' sign when used in post titles
(garvinhicking)
* Encode RSS feed links, Patch by Hanno Boeck
* Fix spartacus filter listing showing event plugin groups in the
sidebar listing.
* Patch PEAR.php for better detection, if already included.
Thanks to Assen Tchorbadjiev.
* Fix admin entry list when no entries exist or meet filter
criteria. (Don Chambers)
* Fix PHP notice about session_start()
* Bulletproof template can now include custom user stylesheets
(*_style.css) in the dropdown of a colorset. (garvinhicking)
Version 1.2 (August 26th, 2007)
------------------------------------------------------------------------
* Added bulletproof template by http://s9y-bulletproof.com
* (beta4) Fix comment-RSS feeds
* (beta4) serendipity_plugin_comments now also supports Favatars and
Pavatars in combination with serendipity_event_gravatar instead of
Gravatars only. (brockhaus)
* (beta4) Fix wrong event hook for entry manager to display toolbar
for the main body area.
* (beta4) Stronger autologin cookie encryption, prevent mixup with
template options (which could make foreign users delete your
configured template option keys). Also use new serendpity_db_implode()
function for a safer API on image handling.
All hail Stefan Esser. :)
* (beta4) Backend templating changes to insert more classes to input fields
etc (Don Chambers)
* (beta4) Fix invalid pingback XML code, by Slim
* (beta2) Fix when saving personal configuration the userlevel and
"no_create" flags where not properly saved, thanks to PHPaws!
(garvinhicking)
* When a category or entry does not exist, emit HTTP 404 message
template instead of "No entries to print" and HTTP 200 status.
(garvinhicking)
* Fix URL permalink lookup in some cases (garvinhicking, beta2)
* Add admin backend templates for main area and the entry editor.
Falls back to default PHP output if Smarty cannot be utilized.
(garvinhicking)
* Fix properly reinstantiating sessions and properly deleting cookies
when requested (garvinhicking)
* Add support for sqlite3 (http://php-sqlite3.sourceforge.net/), by
geekmug
* Change database types for IP addresses to varchar(64) to support
IPv6 (garvinhicking)
* Make statistics, karma and spamblock plugin only log 255 characters
of HTTP User-Agent and Referrer strings to the database, as the
fields are only varchar(255). Thanks to jemm4jemm!
* Fix bug in conjunction with PHP 5.2.1 changed variable-by-reference
handling that could result in no groups being listed for author
accounts (garvinhicking)
* Fix redundant space when inserting links through the non-WYSIWYG
editor panel. Fix "null" insertion. Thanks to Alp Uckan.
* Fix RSS fullfeed "let client decide" option typo. Previously this
always enforced a fullfeed to show, regardless of what the client
indicated. Thanks to stm9x9 (garvinhicking)
* Add proper charset to CSS stylesheet. Thanks to SADtg
(garvinhicking)
* Strip tags from comments also in RSS-Feeds for comments, thanks to
tmix from the forums (garvinhicking)
* Patch #1697590: Proper directory name of SQLite DB-error messages,
thanks to Thijs Kinkhorst
* Enabled setting cache-control headers by default.
* Fix wrong next/previous page links when using wrapper.php indexFile
option. (garvinhicking)
* Prevent cookie-based session fixation by regenerationg server-side
session ID. Major thanks to David Vieira-Kurz.
* Display theme's preview_fullsize.jpg image when existing. Added
screenshots by williamts99.
* Upgrade bundled Smarty to 2.6.18 (garvinhicking)
* Make plugins be able to emit their own RSS-Feeds using
$eventData['template_file'] on the 'frontend_rss' event hook
(garvinhicking)
* Fix missing %username% permalink pattern in single entry view.
Patch by cress_cc
* Allow to specify non-default port when using MySQLi
(garvinhicking)
* Show current captcha look in the plugin configuration menu
(garvinhicking)
* Add new category property to hide blog postings made into sub-
categories from the frontend view, per category. Thanks to
netmorix from the forums! (garvinhicking)
* Move possible hazardous personal configuration options ("Rights:
Publishing entries", "Forbid creating entries", "Access level";
"Group memberships") to the user management section.
(garvinhicking)
* Fix track exit url ids off by one when being used in conjunction
with caching plugin (garvinhicking)
* Fix permalink patterns for some cases to properly detect
pagination variables instead of interpreting search words
as those. (garvinhicking)
* Improve performance of displaying the complete archive. Instead
of year*months SQL queries, only one query is now used.
(garvinhicking)
* Improve installation on hosts where fsockopen() is disabled
(garvinhicking)
* Improve memory usage of WordPress importer, add debug output
(garvinhicking)
* EXPERIMENTAL: Modify session language fetch function to allow
earlier plugin API calls (Rob Richards)
* No longer accept trackbacks to draft entries.Thanks to j_b_poquelin