Commit Graph

116 Commits (f7dd1a5fed1bf8301d293fe970dd99ad843257e1)

Author SHA1 Message Date
Dries Buytaert 56f68498ac - small update 2000-11-25 12:59:16 +00:00
Dries Buytaert e282fef076 * fixes the current login problem 2000-10-25 11:21:39 +00:00
natrak 02abb94639 Just trying to change some config settings.. hope it will work :) 2000-10-20 16:06:08 +00:00
Dries Buytaert 50819393d0 increased it even more just to make sure .) 2000-10-11 07:16:22 +00:00
Dries Buytaert ef643bf827 increased the cach expire to see if that fixed the logout problem 2000-10-11 07:13:00 +00:00
Dries Buytaert 44af9b9b43 Just trying a different setting to check whether this fixes the session
timout (cookie expires to fast) problem ... *fingers crosses*
2000-10-05 13:20:27 +00:00
Dries Buytaert e7019c2577 Changelog
---------
- improved the user information page.
- improved the story submission page.
- fixed comments score bug: '.00' --> 'x.00'
- tried fixing the calendar wrapping - UnConeD, is it fixed now?
- provided a link back to the submission queue after having voted
  for a story.
- fixed comment subject bug (and security flaw) by replacing
  quotes by ".
- updated theme 'zaphod': fixed 2 bugs.
- updated theme 'marvin': fixed 1 bug and improved the layout so
  things wrap (hopefully) better in Windows.
- comments have by default no subject pre-set - if no subject is
  provided, the user is warned and when a comment eventually got
  submitted without a subject, a subject is composed using the x
  first characters of the comment's body.
- improved comments on submit.php
- corrected a typo in the FAQ.

UnConeD
-------
- replace 'article.php' by 'discussion.php'
- comment() still uses old references to account.php: the
  parameters you supply to account.php does no longer hold.
  You have to update those links to the new syntax.
- commentcontrol() is outdated - copy paste the one of
  theme 'marvin' and adjust it to your likings.
2000-10-02 07:32:17 +00:00
Dries Buytaert 5fc99970ab I just commit everything what was queued in my backlog:
- Added a basic implementation of comment moderation
- Updated and renamed my 2 themes: I removed redundant boxes and tried to
  work towards simplicity.
- Disabled the other themes as they are broken (I gave you sufficent time
  to update them).
- Removed redundant files.
- Added security checks with regard to the usage of HTML tags.
2000-09-26 07:34:33 +00:00
Dries Buytaert 1f0a87f4e7 Over the last 2 days I redid and reorganized an afwul lot of code and
made quite a lot of additions.   The most remarkable addition is the
diary server, which I slapped together in less then 40 minutes.   Most
of the other changes are however `unvisible' for the user but add much
value to a better maintainability from a developer's objective.  Like
always, I fixed quite a number of small bugs that creeped into the code
so we should have a bigger, better and more stable drop.org.

Unfortunatly, some theme update _are_ required:


REQUIRED THEME UPDATES:
=======================

* use format_username() where usernames are used
* use format_date() where timestamps/dates are used
* use format_email() where e-mail addresses are displayed
* use format_url() where url are displayed
* replace 'formatTimestamp' with format_date
* replace 'morelink_*' with 'display_morelink'

[most of these functions are in function.inc or template.inc]

___PLEASE___ (<- this should get your attention ;) update your themes
as soon as possible - it only takes 30 min. to get in sync with the
other themes.  Don't start whining about the fact you don't know what
to change ... either eat the source cookie, or ask me to elaborate on
a few changes.  Just let me know what's puzzling you and I'll try to
help you out!


TODO LIST FOR NEXT WEEK
=======================
* Add checks for max. text length in textarea's?  Is there an HMTL
  attribute for this or ...?
* Comment moderation + mojo
* Edit/admin user accounts: block, delete, change permissions, ...
* E-mail password, change password, change e-mail address -> extra
  checks and routines to validate such `special' changes.
* Input checking - input filter: bad words, html tags, ...
2000-09-11 07:45:22 +00:00
Dries Buytaert 9a0689a9cf * Added extra PHP variables to .htaccess as discussed earlier this week. 2000-06-22 09:14:16 +00:00
Dries Buytaert 467817f922 * Enhancement: protect the themes/-directory (and subdirectory) from
prying eyes.
2000-06-05 16:10:47 +00:00
natrak a1082cdb9a Changing the httpd conf so the sessions are stored longer and use DROPID as the cookie name :) 2000-06-03 09:20:45 +00:00
Dries Buytaert fbfb8281fb * The CVS directories (automatically created by the CVS repository) can no
longer be accessed from the web.  Let's keep lurking eyes out. ;)
* I'm still idling (except for these kind of tidbits) until Natrak commited
  the new user system.  *evil grin*
2000-06-01 13:33:19 +00:00
Dries Buytaert fd13be20cf sorry - small typoe 2000-05-29 09:46:35 +00:00
Dries Buytaert ff18c8e1a4 Fixed a security flaw:
.inc files can be read from the web including `config.inc' which contains
the account information (login, password) to the MySQL database.  Apache
has now been setup to deny access to all *.inc files from the web.
2000-05-29 09:46:03 +00:00
Dries Buytaert 9bd920debd * Added the foundations to create customized error pages.
http://beta.drop.org/foobar.php
  (The customized error pages need to be beautified.)
2000-05-28 09:23:56 +00:00