[geeklog-cvs] geeklog-1.3/docs changes.html,1.19,1.20 history,1.140,1.141 themevars.html,1.4,1.5 todo,1.4,1.5

dhaun at geeklog.net dhaun at geeklog.net
Thu Dec 11 16:01:55 EST 2003 

Update of /usr/cvs/geeklog/geeklog-1.3/docs
In directory geeklog_prod:/tmp/cvs-serv17988

Modified Files:
	changes.html history themevars.html todo 
Log Message:
Updated documentation


Index: changes.html
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/changes.html,v
retrieving revision 1.19
retrieving revision 1.20
diff -C2 -d -r1.19 -r1.20
*** changes.html	13 Sep 2003 21:17:54 -0000	1.19
--- changes.html	11 Dec 2003 21:01:52 -0000	1.20
***************
*** 38,41 ****
--- 38,44 ----
      It is also possible to provide feeds in formats other than RSS 0.91 by
      providing additional feed classes.</li>
+ <li>Admins can change the block order easily from the list of blocks now.</li>
+ <li>There is an alternative interface to adding users to groups (requires
+     JavaScript).</li>
  <li>Image upload can now use the GD library to scale images.</li>
  <li>Comments now use templates.</li>
***************
*** 55,58 ****
--- 58,67 ----
      Daily Digest automatically (uses the $_CONF['emailstoriesperdefault']
      setting instead now).</li>
+ <li>Fixed option to delete comments, which previously was only available to
+     users in the Root group (e.g. Admin). Now users that have story.edit
+     permissions for the actual story can delete comments.</li>
+ <li>Deleting a group may have left orphaned entries in the group_assignments
+     table (this has been fixed now). When upgrading to 1.3.9, the install
+     script will remove any orphaned entries from the database.</li>
  </ul>
  

Index: history
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/history,v
retrieving revision 1.140
retrieving revision 1.141
diff -C2 -d -r1.140 -r1.141
*** history	25 Oct 2003 16:47:44 -0000	1.140
--- history	11 Dec 2003 21:01:52 -0000	1.141
***************
*** 1,7 ****
  GeekLog History/Changes:
  
! October ??, 2003 (1.3.9rc1)
! ----------------
  
  - Fixed display of permissions in the "Access" column of the Admin's list of
    stories (didn't take Topic permissions into account).
--- 1,12 ----
  GeekLog History/Changes:
  
! ??? ??, 200? (1.3.9rc1)
! ------------
  
+ - The Admin's link list now uses "google paging", 50 links per page (bug #104).
+ - (Block)Admins can now change the order of blocks and enable / disable blocks
+   directly from the Admin's list of blocks (based on a concept by stratosfear).
+ - An alternative interface to adding (multiple) users to a group is now
+   available from the Admin's list of groups. This feature requires JavaScript.
  - Fixed display of permissions in the "Access" column of the Admin's list of
    stories (didn't take Topic permissions into account).
***************
*** 81,84 ****
--- 86,106 ----
  
  
+ December 5, 2003 (1.3.8-1sr3)
+ ----------------
+ 
+ This release addresses the following security-related issues:
+ 
+ 1. As "dr.wh0" pointed out, the category field for link submissions was not
+    filtered at all. Although you probably can't cause too much harm with
+    those 32 characters, this has now been fixed.
+ 2. Vincent Furia found that the restrictions for the form to email users
+    could be circumvented and could even be used to spam users.
+    In addition to fixing theses issues, there is now also a speed limit
+    on that form (defaults to the speed limit for story submissions).
+ 3. There was a way to post comments anonymously even when posting for
+    anonymous users had been disabled.
+ 4. It was possible to post comments under someone else's username.
+ 
+ 
  October 14, 2003 (1.3.8-1sr2)
  ----------------
***************
*** 454,457 ****
--- 476,494 ----
  
  Please see docs/staticpages.html for details.
+ 
+ 
+ December 5, 2003 (1.3.7sr4)
+ ----------------
+ 
+ This release addresses the following security-related issues:
+ 
+ 1. As "dr.wh0" pointed out, the category field for link submissions was not
+    filtered at all. Although you probably can't cause too much harm with
+    those 32 characters, this has now been fixed. 
+ 2. Vincent Furia found that the restrictions for the form to email users
+    could be circumvented and could even be used to spam users.
+ 3. There was a way to post comments anonymously even when posting for
+    anonymous users had been disabled.
+ 4. It was possible to post comments under someone else's username.
  
  

Index: themevars.html
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/themevars.html,v
retrieving revision 1.4
retrieving revision 1.5
diff -C2 -d -r1.4 -r1.5
*** themevars.html	5 Aug 2003 19:48:26 -0000	1.4
--- themevars.html	11 Dec 2003 21:01:52 -0000	1.5
***************
*** 317,320 ****
--- 317,323 ----
      <td><code><a href=".../admin/story.php<br>?mode=edit&sid=20021022234959146">edit</a></code></td>
      <td>Link to open the story in the admin's story editor.</td></tr>
+ <tr><td><code>edit_icon</code></td>
+     <td><code><a href=".../admin/story.php<br>?mode=edit&sid=20021022234959146"><img src=".../images/edit.gif"></a></code></td>
+     <td>An icon linking to the admin's story editor to edit the story.</td></tr>
  <tr><td><code>edit_url</code></td>
      <td><tt>http://www.example.com/admin/story.php<br>?mode=edit&sid=20021022234959146</tt></td>

Index: todo
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/todo,v
retrieving revision 1.4
retrieving revision 1.5
diff -C2 -d -r1.4 -r1.5
*** todo	11 Aug 2002 18:56:35 -0000	1.4
--- todo	11 Dec 2003 21:01:52 -0000	1.5
***************
*** 5,9 ****
  - Allow intro/teaser to be something other than the first part of the story
  - Archiving of articles
- - Email admin when a new story is submitted
  - User configurable Time Zones
  
--- 5,8 ----

More information about the geeklog-cvs mailing list