Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
50 check-ins occurring around 6df7a853ec16865b.
|
2019-08-04
| ||
| 22:56 | Merge trunk check-in: fc5f88d6d9 user: jan.nijtmans tags: cleanX | |
| 20:26 | Fix a harmless compiler warning. check-in: 95a6a658d4 user: drh tags: trunk | |
| 20:23 | Improvements to the Security-Audit page - mostly in providing additional information about the files in the CGI extension folder. check-in: a3bc6552ee user: drh tags: trunk | |
|
2019-08-03
| ||
| 19:49 | Fix the repolist function for CGI server invocations, apparently broken by check-in [ec56c69fe98d26d9] check-in: 534b060007 user: drh tags: trunk | |
| 01:07 | merge to logical conclusion (nop) check-in: f4f9c1090b user: bch tags: trunk | |
|
2019-08-02
| ||
| 18:13 | Avoid the clearenv() interface (which seems to be missing on NetBSD according to [2d4c16df5a9e61c2]) and simply set the global "environ" variable directly. check-in: d72aa24ce6 user: drh tags: trunk | |
| 18:01 | Added a comment to fslsrv in place of the just-removed parameter to make it clear what's going on here. check-in: df2eb08e2a user: wyoung tags: trunk | |
| 18:00 | Made --baseurl parameter optional in tools/fslsrv since Fossil complains if you give only a top-level URL; it's right, it doesn't need --baseurl in that case. check-in: 8b2b232886 user: wyoung tags: trunk | |
| 17:34 | Make sure all CGI environment variables are loaded into the CGI cache prior to clearing the environment, when launching extension CGIs. check-in: c6b4d80e9c user: drh tags: trunk | |
| 17:23 | The CGI extension mechanism now passes the HTTPS environment variable. check-in: f5fe221026 user: drh tags: trunk | |
| 14:29 | Add the mirrorlimitations.md document. Update cross-references. check-in: 41d6540d27 user: drh tags: trunk | |
| 13:34 | Update the security audit to report when extension CGI is available. check-in: e2cad541ff user: drh tags: trunk | |
| 05:09 | proper env() handler for (at least) NetBSD Closed-Leaf check-in: 2d4c16df5a user: bch tags: env_handler | |
| 00:10 | The test-httpmsg command now sends the payload uncompressed unless the new --compress option is used. check-in: c31ff76fe9 user: drh tags: trunk | |
|
2019-08-01
| ||
| 23:31 | Implement the fossil_clearenv() function for Win32. check-in: 61fd10ecd1 user: mistachkin tags: trunk | |
| 21:05 | When rendering HTML pages using the fossil-doc class and the data-title="..." attribute, reverse the HTML escapes in the argument to data-title since they will be reencoded prior to rendering. check-in: 54e01c60e2 user: drh tags: trunk | |
| 19:30 | Clear all environment variables prior to invoking a CGI extension. (Works on posix - need to fix it for windows.) check-in: ed63bdd71e user: drh tags: trunk | |
| 14:17 | Add the FOSSIL_URI environment variable to the CGI extension mechanism. check-in: 7b2b9d6995 user: drh tags: trunk | |
|
2019-07-31
| ||
| 12:21 | Fixed fossil_strcmp() usage in cgi_init() when in JSON mode. Through some extremely serendipitous fluke, its broken usage just happened to work until a bit was removed from that function in [ec56c69f] which, purely coincidentally, caused the bug (mine, from 2011!) to start triggering when x-www-form-urlencoded forms were submitted (login/logout). B... check-in: 115a70b2df user: stephan tags: trunk | |
| 08:09 | Merged in autosetupAndJimTcl branch (autosetup updates). check-in: 51d006f851 user: stephan tags: trunk | |
|
2019-07-30
| ||
| 18:55 | Fix the "fossil server" command on windows so that it honors the --https option. check-in: 8ed91bbe44 user: drh tags: trunk | |
| 10:28 | Restore the full CGI extension documentation that was somehow truncated by an earlier commit. check-in: 4130a22cee user: drh tags: trunk | |
| 01:17 | Merge in updates from trunk. check-in: 7e7258b3ed user: andybradford tags: test-updates | |
|
2019-07-29
| ||
| 20:02 | Improved documentation of the repolist-skin setting. check-in: 02bdcf5e9f user: drh tags: trunk | |
| 18:17 | When doing a repository list, use the first repository that has a non-zero value for the "repolist-skin" setting as the skin for the list. If the "repolist-skin" setting is 2 and if the repository list is coming from a directory scan, the omit that repository from the list. All repositories are always shown, regardless of the "repolist-skin" sett... check-in: 8f5399bc7b user: drh tags: trunk | |
| 18:14 | Fix the repolist-skin setting so that it sets up URL on the header menu correctly. Back out the stylesheet hack is that is now covered by the same fix. Closed-Leaf check-in: 6df7a853ec user: drh tags: repolist-skin | |
| 17:25 | Merge fixes from trunk. check-in: 8a0753de2d user: drh tags: repolist-skin | |
| 15:12 | Enhancements to the copy/paste SVG icon and to the global options help page. check-in: 93b0afc889 user: drh tags: trunk | |
| 14:19 | Fix the build for -DFOSSIL_ENABLE_TH1_DOCS. The build was broken by check-in [ed2def5ffb96d74c] and on trunk by [ec56c69fe98d26d9]. check-in: 8abeb62737 user: drh tags: trunk | |
| 14:06 | When to a repolist, if any of the repositories have a non-zero repolist-skin setting, use that repository as the skin for the listing. If the repolist-skin setting is 2, then omit that repository from the list for directory-scan lists, but always show all repos for a "fossil all ui" list. This *almost* works, but still has some small issues. Thi... check-in: 958e0bdc4a user: drh tags: repolist-skin | |
| 08:28 | Move each command-line option to their own paragraph, for consistency with the document structure in "Environment Variables and Global Options", as this seems easier to browse and search. The explicit line-break between the two options was wiped with automatic cleanup of trailing spaces by [e2751b18af]. Closed-Leaf check-in: 14f2ba0436 user: florian tags: svg-and-md-formatting | |
| 08:14 | Trim spaces from the CSS background image SVG data URI for the copy icon, to make it look more compact -- this may not necessarily reduce the overall size of the final gzipped CSS resource delivered by the Fossil web server. The uncompressed source code for the icon is on the [branch/tooltip-copyhash] wiki page, with a comment why the variant with ... check-in: 0be9a2dbb7 user: florian tags: svg-and-md-formatting | |
| 00:12 | Enhancements to the CGI extension documentation. check-in: f80f753050 user: drh tags: trunk | |
|
2019-07-27
| ||
| 17:11 | Enhancements to the CGI extension documentation. Update the 2.10 change log to mention this enhancement and other changes. check-in: dfa5d50971 user: drh tags: trunk | |
| 15:30 | Update the CGI extension documentation. Improved filename security in the CGI extension subsystem. check-in: 12c8cc709d user: drh tags: trunk | |
|
2019-07-26
| ||
| 20:54 | Do not allow /ext to return files whose names begin with "." or "-" even if those files occur in the top-level extroot directory. check-in: e91de28b69 user: drh tags: trunk | |
| 18:15 | Preliminary documentation for the /ext mechanism. check-in: 893fca3a15 user: drh tags: trunk | |
| 13:35 | Fix the fullcap() SQL function so that it correctly expands the capabilities of Admin and Setup users to include everything. check-in: 384fdb6b4f user: drh tags: trunk | |
| 06:14 | Removed an old (#if 0)'d-out block - the permissions check it was blocking out is performed further down in the function. check-in: 7bd4bca2f4 user: stephan tags: trunk | |
|
2019-07-25
| ||
| 23:56 | Neither Setup nor Admin users get Write-Unversioned permission by default. And only Setup users are able to include Write-Unversioned permission when editing a user. check-in: 9ca4eb2bda user: drh tags: trunk | |
| 21:11 | Add the /ext page that will run CGI or deliver static content from a document hierarchy specified by the --extroot command-line option on "fossil server" or the extroot: option in the CGI file. check-in: ec56c69fe9 user: drh tags: trunk | |
| 21:09 | Remove an unused variable. Closed-Leaf check-in: c2a98a5d62 user: drh tags: extension-cgi | |
| 20:53 | Ensure that the cgi_decode_post_parameters() routine does not delete the raw content used by the /xfer page. check-in: af3a8dbe09 user: drh tags: extension-cgi | |
| 20:20 | Enable the extroot: setting in CGI. check-in: c116a9996b user: drh tags: extension-cgi | |
| 19:53 | Do not provide failure diagnostics on the /ext page unless the user has Debug privilege. check-in: 08b9b61972 user: drh tags: extension-cgi | |
| 18:34 | Defer decoding POST parameters until after the webpage name is located. Do not do the decode if the webpage has the new "raw-content" property. Set that property on /ext so that is can relay the encoded content to sub-cgi. check-in: e4849f58e4 user: drh tags: extension-cgi | |
| 18:08 | Add the ability for Debug users to trace sub-CGI responses by adding the fossil-ext-debug query parameter. check-in: cc21a4389e user: drh tags: extension-cgi | |
| 17:40 | Disable HTTP_ACCEPT_ENCODING for the extension CGI. But leave that setting unchanged for Fossil as it might be needed for the relay back to the client. check-in: 54aeb1a8ce user: drh tags: extension-cgi | |
| 17:07 | Add the ability to extend a Fossil server using CGI. This is a refactor of the prior sub-cgi branch. check-in: ed2def5ffb user: drh tags: extension-cgi | |
|
2019-07-24
| ||
| 10:54 | Continuing work on the /aux page. Now working for static content. Closed-Leaf check-in: 77a72fb964 user: drh tags: sub-cgi | |