[geeklog-cvs] geeklog-1.3/docs changes.html,1.19,1.20 history,1.140,1.141 themevars.html,1.4,1.5 todo,1.4,1.5
dhaun at geeklog.net
dhaun at geeklog.net
Thu Dec 11 16:01:55 EST 2003
Update of /usr/cvs/geeklog/geeklog-1.3/docs
In directory geeklog_prod:/tmp/cvs-serv17988
Modified Files:
changes.html history themevars.html todo
Log Message:
Updated documentation
Index: changes.html
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/changes.html,v
retrieving revision 1.19
retrieving revision 1.20
diff -C2 -d -r1.19 -r1.20
*** changes.html 13 Sep 2003 21:17:54 -0000 1.19
--- changes.html 11 Dec 2003 21:01:52 -0000 1.20
***************
*** 38,41 ****
--- 38,44 ----
It is also possible to provide feeds in formats other than RSS 0.91 by
providing additional feed classes.</li>
+ <li>Admins can change the block order easily from the list of blocks now.</li>
+ <li>There is an alternative interface to adding users to groups (requires
+ JavaScript).</li>
<li>Image upload can now use the GD library to scale images.</li>
<li>Comments now use templates.</li>
***************
*** 55,58 ****
--- 58,67 ----
Daily Digest automatically (uses the $_CONF['emailstoriesperdefault']
setting instead now).</li>
+ <li>Fixed option to delete comments, which previously was only available to
+ users in the Root group (e.g. Admin). Now users that have story.edit
+ permissions for the actual story can delete comments.</li>
+ <li>Deleting a group may have left orphaned entries in the group_assignments
+ table (this has been fixed now). When upgrading to 1.3.9, the install
+ script will remove any orphaned entries from the database.</li>
</ul>
Index: history
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/history,v
retrieving revision 1.140
retrieving revision 1.141
diff -C2 -d -r1.140 -r1.141
*** history 25 Oct 2003 16:47:44 -0000 1.140
--- history 11 Dec 2003 21:01:52 -0000 1.141
***************
*** 1,7 ****
GeekLog History/Changes:
! October ??, 2003 (1.3.9rc1)
! ----------------
- Fixed display of permissions in the "Access" column of the Admin's list of
stories (didn't take Topic permissions into account).
--- 1,12 ----
GeekLog History/Changes:
! ??? ??, 200? (1.3.9rc1)
! ------------
+ - The Admin's link list now uses "google paging", 50 links per page (bug #104).
+ - (Block)Admins can now change the order of blocks and enable / disable blocks
+ directly from the Admin's list of blocks (based on a concept by stratosfear).
+ - An alternative interface to adding (multiple) users to a group is now
+ available from the Admin's list of groups. This feature requires JavaScript.
- Fixed display of permissions in the "Access" column of the Admin's list of
stories (didn't take Topic permissions into account).
***************
*** 81,84 ****
--- 86,106 ----
+ December 5, 2003 (1.3.8-1sr3)
+ ----------------
+
+ This release addresses the following security-related issues:
+
+ 1. As "dr.wh0" pointed out, the category field for link submissions was not
+ filtered at all. Although you probably can't cause too much harm with
+ those 32 characters, this has now been fixed.
+ 2. Vincent Furia found that the restrictions for the form to email users
+ could be circumvented and could even be used to spam users.
+ In addition to fixing theses issues, there is now also a speed limit
+ on that form (defaults to the speed limit for story submissions).
+ 3. There was a way to post comments anonymously even when posting for
+ anonymous users had been disabled.
+ 4. It was possible to post comments under someone else's username.
+
+
October 14, 2003 (1.3.8-1sr2)
----------------
***************
*** 454,457 ****
--- 476,494 ----
Please see docs/staticpages.html for details.
+
+
+ December 5, 2003 (1.3.7sr4)
+ ----------------
+
+ This release addresses the following security-related issues:
+
+ 1. As "dr.wh0" pointed out, the category field for link submissions was not
+ filtered at all. Although you probably can't cause too much harm with
+ those 32 characters, this has now been fixed.
+ 2. Vincent Furia found that the restrictions for the form to email users
+ could be circumvented and could even be used to spam users.
+ 3. There was a way to post comments anonymously even when posting for
+ anonymous users had been disabled.
+ 4. It was possible to post comments under someone else's username.
Index: themevars.html
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/themevars.html,v
retrieving revision 1.4
retrieving revision 1.5
diff -C2 -d -r1.4 -r1.5
*** themevars.html 5 Aug 2003 19:48:26 -0000 1.4
--- themevars.html 11 Dec 2003 21:01:52 -0000 1.5
***************
*** 317,320 ****
--- 317,323 ----
<td><code><a href=".../admin/story.php<br>?mode=edit&sid=20021022234959146">edit</a></code></td>
<td>Link to open the story in the admin's story editor.</td></tr>
+ <tr><td><code>edit_icon</code></td>
+ <td><code><a href=".../admin/story.php<br>?mode=edit&sid=20021022234959146"><img src=".../images/edit.gif"></a></code></td>
+ <td>An icon linking to the admin's story editor to edit the story.</td></tr>
<tr><td><code>edit_url</code></td>
<td><tt>http://www.example.com/admin/story.php<br>?mode=edit&sid=20021022234959146</tt></td>
Index: todo
===================================================================
RCS file: /usr/cvs/geeklog/geeklog-1.3/docs/todo,v
retrieving revision 1.4
retrieving revision 1.5
diff -C2 -d -r1.4 -r1.5
*** todo 11 Aug 2002 18:56:35 -0000 1.4
--- todo 11 Dec 2003 21:01:52 -0000 1.5
***************
*** 5,9 ****
- Allow intro/teaser to be something other than the first part of the story
- Archiving of articles
- - Email admin when a new story is submitted
- User configurable Time Zones
--- 5,8 ----
More information about the geeklog-cvs
mailing list