- Mar 17, 2015
-
-
Jacob Palm authored
-
- Mar 16, 2015
-
-
Andreas Gohr authored
-
Andreas Gohr authored
Add two config options to authldap
-
Sascha Klopp authored
-
Andreas Gohr authored
Get total number of users in ad, needed for paging
-
- Mar 13, 2015
-
-
Sascha Klopp authored
-
- Mar 12, 2015
-
-
Michael Große authored
-
Michael Große authored
-
Michael Große authored
-
Michael Große authored
Since we cannot effectively filter for groups and have to work with incremental prefetching, the ``last`` button is mostly broken/buggy. Hence it is disabled in this usecase.
-
Michael Große authored
-
Michael Große authored
-
- Mar 11, 2015
-
-
Michael Große authored
-
- Mar 03, 2015
-
-
Andreas Gohr authored
While Browsers (IE of course) still fail to accept the correct application/javascript mimetype in the type attribute of the script element, we should serve the scripts with the correct Content-Type header at least. This is especially important as the default configuration of mod_deflate expects application/javascript and will not compress text/javascript.
-
Sascha Klopp authored
attribute holding the username, 'modPass' allows to disable password changing by the user.
-
- Feb 25, 2015
-
-
Andreas Gohr authored
simple fix for pageID clash with sidebar in mobile view
-
Andreas Gohr authored
-
Andreas Gohr authored
Translation update (fr)
-
- Feb 24, 2015
-
-
Schplurtz le Déboulonné authored
-
Andreas Gohr authored
Security Fix Severity: Medium Type: Remote Priviledge Escalation Remote: yes Vulnerability Details: This fixes a security hole in the ACL plugins remote API component. The plugin failed to check for superuser permissions before executing ACL addition or deletion. This means everybody with permissions to call the XMLRPC API also had permissions to set up their own ACL rules and thus circumventing any existing rules. Risk Assessment: The XMLRPC API in DokuWiki is marked experimental and off by default. It also implements an additional safeguard by giving access to a configured circle of users and groups only. So only a minor number of DokuWiki installations will be affected at all. For affected installations the risk is high if users with access to the API are not to be trusted. Thus the overall severity of medium. Resolution: Installations applying this commit are safe. A hotfix is about to be released. Meanwhile users are advised to disable the XMLRPC API in the config manager.
-
Andreas Gohr authored
Since the pageid is no longer positioned absolute it clashed with the sidebar since #1027. this introduces a very simplisitc fix.
-
Andreas Gohr authored
avoid messages pushing down page tools. fixes #1011
-
Andreas Gohr authored
-
Andreas Gohr authored
-
- Feb 23, 2015
-
-
Andreas Gohr authored
Add missing tbody to renderer
-
Andreas Gohr authored
Normalization is required to manage multibyte characters.
-
- Feb 19, 2015
-
-
SC Yoo authored
-
Anika Henke authored
-
Andreas Gohr authored
New event: HTML_SHOWREV_OUTPUT
-
- Feb 18, 2015
-
-
ghi authored
-
- Feb 17, 2015
-
-
SC Yoo authored
The OSX uses Unicode-NFD so normalization is required to manage multibyte characters. ( http://unicode.org/reports/tr15/ ) If don't do that, DokuWiki can't find the file uploaded from OS X with multibyte filename like '도쿠위키.jpg'
-
ghi authored
-
-
-
- Feb 16, 2015
-
-
Andreas Gohr authored
Update template.php
-
Rainbow Spike authored
Added placeholder in search textarea
-
Andreas Gohr authored
Update wordblock.conf
-
- Feb 13, 2015
-
-
Andreas Gohr authored
Translation update (es)
-
Álvaro Iradier authored
-
chang-zhao authored
moved those keywords to http & added penis
-
