Timeline
Not logged in

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

50 check-ins occurring around 6df7a853ec16865b.

2019-08-04
22:56
Merge trunk check-in: fc5f88d6d9 user: jan.nijtmans tags: cleanX
20:26
Fix a harmless compiler warning. check-in: 95a6a658d4 user: drh tags: trunk
20:23
Improvements to the Security-Audit page - mostly in providing additional information about the files in the CGI extension folder. check-in: a3bc6552ee user: drh tags: trunk
2019-08-03
19:49
Fix the repolist function for CGI server invocations, apparently broken by check-in [ec56c69fe98d26d9] check-in: 534b060007 user: drh tags: trunk
01:07
merge to logical conclusion (nop) check-in: f4f9c1090b user: bch tags: trunk
2019-08-02
18:13
Avoid the clearenv() interface (which seems to be missing on NetBSD according to [2d4c16df5a9e61c2]) and simply set the global "environ" variable directly. check-in: d72aa24ce6 user: drh tags: trunk
18:01
Added a comment to fslsrv in place of the just-removed parameter to make it clear what's going on here. check-in: df2eb08e2a user: wyoung tags: trunk
18:00
Made --baseurl parameter optional in tools/fslsrv since Fossil complains if you give only a top-level URL; it's right, it doesn't need --baseurl in that case. check-in: 8b2b232886 user: wyoung tags: trunk
17:34
Make sure all CGI environment variables are loaded into the CGI cache prior to clearing the environment, when launching extension CGIs. check-in: c6b4d80e9c user: drh tags: trunk
17:23
The CGI extension mechanism now passes the HTTPS environment variable. check-in: f5fe221026 user: drh tags: trunk
14:29
Add the mirrorlimitations.md document. Update cross-references. check-in: 41d6540d27 user: drh tags: trunk
13:34
Update the security audit to report when extension CGI is available. check-in: e2cad541ff user: drh tags: trunk
05:09
proper env() handler for (at least) NetBSD Closed-Leaf check-in: 2d4c16df5a user: bch tags: env_handler
00:10
The test-httpmsg command now sends the payload uncompressed unless the new --compress option is used. check-in: c31ff76fe9 user: drh tags: trunk
2019-08-01
23:31
Implement the fossil_clearenv() function for Win32. check-in: 61fd10ecd1 user: mistachkin tags: trunk
21:05
When rendering HTML pages using the fossil-doc class and the data-title="..." attribute, reverse the HTML escapes in the argument to data-title since they will be reencoded prior to rendering. check-in: 54e01c60e2 user: drh tags: trunk
19:30
Clear all environment variables prior to invoking a CGI extension. (Works on posix - need to fix it for windows.) check-in: ed63bdd71e user: drh tags: trunk
14:17
Add the FOSSIL_URI environment variable to the CGI extension mechanism. check-in: 7b2b9d6995 user: drh tags: trunk
2019-07-31
12:21
Fixed fossil_strcmp() usage in cgi_init() when in JSON mode. Through some extremely serendipitous fluke, its broken usage just happened to work until a bit was removed from that function in [ec56c69f] which, purely coincidentally, caused the bug (mine, from 2011!) to start triggering when x-www-form-urlencoded forms were submitted (login/logout). B... check-in: 115a70b2df user: stephan tags: trunk
08:09
Merged in autosetupAndJimTcl branch (autosetup updates). check-in: 51d006f851 user: stephan tags: trunk
2019-07-30
18:55
Fix the "fossil server" command on windows so that it honors the --https option. check-in: 8ed91bbe44 user: drh tags: trunk
10:28
Restore the full CGI extension documentation that was somehow truncated by an earlier commit. check-in: 4130a22cee user: drh tags: trunk
01:17
Merge in updates from trunk. check-in: 7e7258b3ed user: andybradford tags: test-updates
2019-07-29
20:02
Improved documentation of the repolist-skin setting. check-in: 02bdcf5e9f user: drh tags: trunk
18:17
When doing a repository list, use the first repository that has a non-zero value for the "repolist-skin" setting as the skin for the list. If the "repolist-skin" setting is 2 and if the repository list is coming from a directory scan, the omit that repository from the list. All repositories are always shown, regardless of the "repolist-skin" sett... check-in: 8f5399bc7b user: drh tags: trunk
18:14
Fix the repolist-skin setting so that it sets up URL on the header menu correctly. Back out the stylesheet hack is that is now covered by the same fix. Closed-Leaf check-in: 6df7a853ec user: drh tags: repolist-skin
17:25
Merge fixes from trunk. check-in: 8a0753de2d user: drh tags: repolist-skin
15:12
Enhancements to the copy/paste SVG icon and to the global options help page. check-in: 93b0afc889 user: drh tags: trunk
14:19
Fix the build for -DFOSSIL_ENABLE_TH1_DOCS. The build was broken by check-in [ed2def5ffb96d74c] and on trunk by [ec56c69fe98d26d9]. check-in: 8abeb62737 user: drh tags: trunk
14:06
When to a repolist, if any of the repositories have a non-zero repolist-skin setting, use that repository as the skin for the listing. If the repolist-skin setting is 2, then omit that repository from the list for directory-scan lists, but always show all repos for a "fossil all ui" list. This *almost* works, but still has some small issues. Thi... check-in: 958e0bdc4a user: drh tags: repolist-skin
08:28
Move each command-line option to their own paragraph, for consistency with the document structure in "Environment Variables and Global Options", as this seems easier to browse and search. The explicit line-break between the two options was wiped with automatic cleanup of trailing spaces by [e2751b18af]. Closed-Leaf check-in: 14f2ba0436 user: florian tags: svg-and-md-formatting
08:14
Trim spaces from the CSS background image SVG data URI for the copy icon, to make it look more compact -- this may not necessarily reduce the overall size of the final gzipped CSS resource delivered by the Fossil web server. The uncompressed source code for the icon is on the branch/tooltip-copyhash wiki page, with a comment why the variant with ... check-in: 0be9a2dbb7 user: florian tags: svg-and-md-formatting
00:12
Enhancements to the CGI extension documentation. check-in: f80f753050 user: drh tags: trunk
2019-07-27
17:11
Enhancements to the CGI extension documentation. Update the 2.10 change log to mention this enhancement and other changes. check-in: dfa5d50971 user: drh tags: trunk
15:30
Update the CGI extension documentation. Improved filename security in the CGI extension subsystem. check-in: 12c8cc709d user: drh tags: trunk
2019-07-26
20:54
Do not allow /ext to return files whose names begin with "." or "-" even if those files occur in the top-level extroot directory. check-in: e91de28b69 user: drh tags: trunk
18:15
Preliminary documentation for the /ext mechanism. check-in: 893fca3a15 user: drh tags: trunk
13:35
Fix the fullcap() SQL function so that it correctly expands the capabilities of Admin and Setup users to include everything. check-in: 384fdb6b4f user: drh tags: trunk
06:14
Removed an old (#if 0)'d-out block - the permissions check it was blocking out is performed further down in the function. check-in: 7bd4bca2f4 user: stephan tags: trunk
2019-07-25
23:56
Neither Setup nor Admin users get Write-Unversioned permission by default. And only Setup users are able to include Write-Unversioned permission when editing a user. check-in: 9ca4eb2bda user: drh tags: trunk
21:11
Add the /ext page that will run CGI or deliver static content from a document hierarchy specified by the --extroot command-line option on "fossil server" or the extroot: option in the CGI file. check-in: ec56c69fe9 user: drh tags: trunk
21:09
Remove an unused variable. Closed-Leaf check-in: c2a98a5d62 user: drh tags: extension-cgi
20:53
Ensure that the cgi_decode_post_parameters() routine does not delete the raw content used by the /xfer page. check-in: af3a8dbe09 user: drh tags: extension-cgi
20:20
Enable the extroot: setting in CGI. check-in: c116a9996b user: drh tags: extension-cgi
19:53
Do not provide failure diagnostics on the /ext page unless the user has Debug privilege. check-in: 08b9b61972 user: drh tags: extension-cgi
18:34
Defer decoding POST parameters until after the webpage name is located. Do not do the decode if the webpage has the new "raw-content" property. Set that property on /ext so that is can relay the encoded content to sub-cgi. check-in: e4849f58e4 user: drh tags: extension-cgi
18:08
Add the ability for Debug users to trace sub-CGI responses by adding the fossil-ext-debug query parameter. check-in: cc21a4389e user: drh tags: extension-cgi
17:40
Disable HTTP_ACCEPT_ENCODING for the extension CGI. But leave that setting unchanged for Fossil as it might be needed for the relay back to the client. check-in: 54aeb1a8ce user: drh tags: extension-cgi
17:07
Add the ability to extend a Fossil server using CGI. This is a refactor of the prior sub-cgi branch. check-in: ed2def5ffb user: drh tags: extension-cgi
2019-07-24
10:54
Continuing work on the /aux page. Now working for static content. Closed-Leaf check-in: 77a72fb964 user: drh tags: sub-cgi