PR#43524 by Wen Heping.
Known main issues:
* The GUI WYSIWYG editor has still some issues and limitations.
If you can't live with those, you can simply switch it off by using:
editor_force = True
editor_default = 'text' # internal default, just for completeness
Version 1.9.3:
Fixes:
* Fix XSS in Despam action (CVE-2010-0828).
* Fix XSS issues (see MoinMoinBugs/1.9.2UnescapedInputForThemeAddMsg):
* by escaping template name in messages
* by fixing other places that had similar issues
* Make moin compatible to werkzeug 0.5 .. 0.6.2 (1.9.2 had issues
with xmlrpc when used with werkzeug 0.6.x).
* MoinMoin.util.filesys: disable usage of dircache, deprecate dc* functions,
because the dircache stdlib module can't work correctly for fast updates of
directories.
* rss_rc and sisterpages actions: fix Content-Type header (mimetype)
* Fix associating OpenID identity with user, wasn't adapted to werkzeug yet.
* openidrp auth: fix undefined _ (gettext)
* Fix auth.cas and userprefs.oidserv request object usage.
* highlight parser: fixed MoinMoinBugs/LineNumberSpansForProcessInstructionsMissed
* Pygments syntax highlighting: add missing code files
* Notifications: use same email subject format for every notification
* Fix docbook formatter crashing, see MoinMoinPatch/IncludeMacroWithDocBookFormatter
* Fix regex content search for xapian search.
* Get rid of the empty line at the end of code highlights.
* GUI editor: compute editor height like the text editor does.
* Added help texts for: standalone server and moin migration.
* script.maint.cleancache: clean also i18n cache files
* Improved formatter.text_plain, see FeatureRequests/TextPlainFormatterRewrite
(fixes many issues of this formatter).
* text_html_text_moin_wiki: fixed index error for width="", see also:
MoinMoinBugs/GUI_convertor_list_index_out_of_range
* xmlrpc: disable editor backup for putPage, renamePage and revertPage
because if pages get uploaded by xmlrpc then the draft cache file can
rapidly increase in size, causing high memory usage because it needs to
get loaded into memory for updating/processing.
* Emit Content-Type header (with charset) for SlideShow action and many other
actions that just call send_title().
* ActionBase: better compatibility to moin 1.8, use request.values by
default, optionally use request.form data only
New features:
* RenamePage action: added ability to create redirect pages when renaming
(turned off by default, see show_rename_redirect config option).
* formatter/text_html: Added line number links to code blocks.
* diff action:
* Fixed whitespace in generated (html) diff view table so white-space: pre
can be used (and whitespace in diffs preserved).
* Added links to first/last revision.
* MoinMoin.widget.browser: introduced feature for sorting tables, see:
http://moinmo.in/FeatureRequests/SortableTables
* SystemAdmin user and attachment browsers: sorting feature used there now
* Scrolling the text editor to the double clicked line.
* Enable double-click-editing by default.
* WikiConfigHelp macro: make heading and description display optional,
heading level as a parameter (default 2)
* If edit ticket check fails, send the editor with the current content.
* moin import wikipage - use this script to import local files as a wiki page
Other changes:
* upgraded pygments from 1.2.2 to 1.3.1
* upgraded FCKeditor from 2.6.4.1 to 2.6.6
* added configuration snippet for ldap authentication against 2 servers
* improved script help output
NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::File::Sass is a Plack middleware
component that works with Plack::App::File or Plack::Middleware::Static
to compile Sass templates into CSS stylesheet in every request.
PR#43500 by Tim Larson.
v0.2.6
+ Show a dialogue when quitting while downloading
+ Render icons in errors/ speed dial properly
+ Fix a build error with API documentation
+ Fix error pages in frames, and a related crash
+ Allow more shortcuts or columns in speed dial
+ Add 'Copy All' button to Console panel
* Changes to avoid display of ugly google openids, by displaying
a username taken from openid.
* API: Add new optional field nickname to rcs_recentchanges.
* API: rcs_commit and rcs_commit_staged are now passed named
parameters.
* openid: Store nickname based on username or email provided from
openid provider.
* git: Record the nickname from openid in the git author email.
* comment: Record the username from openid in the comment page.
* Fixed some confusion and bugginess about whether
rcs_getctime/rcs_getmtime were passed absolute or relative filenames.
(Make it relative like everything else.)
* hnb: Fixed broken use of mkstemp that had caused dangling temp files,
and prevented actually rendering hnb files.
* Use comment template on comments page of example blog.
* comment.tmpl: Fix up display when inline uses it to display a non-comment
page. (Such as a discussion page.)
* git: Added git_wrapper_background_command option. Can be used to eg,
make the git wrapper push to github in the background after ikiwiki
runs.
* po: Added needstranslation() pagespec. (intrigeri)
* po: Added support for .html source pages. (intrigeri)
* comment: Fix problem moderating comments of certian pages with utf-8
in their name.
o The New Introduction Package
o Fresh and Improved Backend
o Easier Installation than Ever
o Revised and Faster Rich Text Editor
And more, please refer release note.
http://typo3.org/download/release-notes/typo3-44/
pkgsrc change: added some patches to fix known problems on 1.7.
Changes:
o E-mail module improvements
o Export reports as CSV
o Latest activity
o And more:
- LDAP support
- guest users
- a new five day view for the calendar
- prettier email notifications
- ...
NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::JSConcat is a Plack middleware.
It allows you to concatenate multiple javascripts files into one.
in the NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::ConsoleLogger captures logs
from PSGI applications and plack middleware components and makes
them available to see on JavaScript console for Firebug and Webkit
Inspector.
the NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::ReverseProxy is a Plack
middleware. It resets some HTTP headers, which were changed by
reverse-proxy. You can specify the reverse proxy address and stop
fake requests using 'enable_if' directive in your app.psgi.
This module allows for encoding and decoding complex (multi level
datastructures) using native Query String manipulators (such as CGI.pm).
It takes complex data and turns it into a flat hashref which can then be
turned into a URI query string using URL encoding. It also takes a flat
hashref of data passed in and translates it back to a complex structure.
the NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::Auth::Digest is a Plack
middleware. It enables digest authentication. Your authenticator
callback is given an username as a string and should return a
password, either as a raw password or a hashed password.
NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::Debug is a Plack middleware.
It offers a configurable set of panels that displays information
about the current request and response. The information is generated
only for responses with a status of 200 (OK) and a Content-Type
that contains text/html or application/xhtml+xml and is embedded
in the HTML that is sent back to the browser.
NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::Session is a Plack middleware
component for session management. By default it uses cookies to
keep session state and store data in memory. It also comes with
other state and store solutions.
NetBSD Packages Collection.
The Perl 5 module Plack::Middleware::Deflater is a middleware to
encode your response body in gzip or deflate, based on Accept-Encoding
HTTP request header. It would save the bandwidth a little bit but
should increase the Plack server load, so ideally you should handle
this on the frontend reverse proxy servers.
Packages Collection.
The Perl 5 module AnyEvent::HTTPD provides a simple HTTPD for serving
simple web application interfaces. It's completly event based and
independend from any event loop by using the AnyEvent module.
Several bugs in encoding and refreshing in Konsole have been fixed
A couple of crashes in Okular's PDF viewer have been fixed
Alarms have received some fixes in KDE PIM
The changelog lists more, if not all improvements since KDE SC 4.4.4.
0.04 in the NetBSD Packages Collection.
The Perl 5 module Plack::Handler::AnyEvent::ReverseHTTP is Plack
handler that runs your PSGI application on AnyEvent::ReverseHTTP.
It uses ReverseHTTP gateway to access your PSGI application on your
desktop or behind the firewall from the internet. Just like Ruby's
hookout does with Rack applications.
Packages Collection.
The Perl 5 module AnyEvent::ReverseHTTP is an AnyEvent module that
acts as a Reverse HTTP server (which is actually a polling client
for Reverse HTTP gateway). This module implements simple Reverse
HTTP client that's tested against reversehttp.net demo server. More
complicated specification like relaying or pipelining is not (yet)
implemented.
NetBSD Packages Collection.
The Perl 5 module POE::Filter::HTTP::Parser is a POE::Filter for
HTTP which is based on HTTP::Parser. It can be used to easily
create POE based HTTP servers or clients.
Collection.
The Perl 5 module HTTP::Parser is an HTTP request parser. It takes
chunks of text as received and returns a 'hint' as to what is
required, or returns the HTTP::Request when a complete request has
been read. HTTP/1.1 chunking is supported.
MFSA 2010-33 User tracking across sites using Math.random()
MFSA 2010-32 Content-Disposition: attachment ignored
if Content-Type: multipart also present
MFSA 2010-31 focus() behavior can be used to inject or steal keystrokes
MFSA 2010-30 Integer Overflow in XSLT Node Sorting
MFSA 2010-29 Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal
MFSA 2010-28 Freed object reuse across plugin instances
MFSA 2010-27 Use-after-free error in nsCycleCollector::MarkRoots()
MFSA 2010-26 Crashes with evidence of memory corruption
MFSA 2010-25 Re-use of freed object due to scope confusion
MFSA 2010-33 User tracking across sites using Math.random()
MFSA 2010-32 Content-Disposition: attachment ignored
if Content-Type: multipart also present
MFSA 2010-31 focus() behavior can be used to inject or steal keystrokes
MFSA 2010-30 Integer Overflow in XSLT Node Sorting
MFSA 2010-29 Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal
MFSA 2010-28 Freed object reuse across plugin instances
MFSA 2010-26 Crashes with evidence of memory corruption
for a handful of bugfixes, to 3.20100623. From the changelog:
* openid: Add openid_realm and openid_cgiurl configuration options,
useful in a few edge case setups.
* attachment: Show files from underlay in attachments list.
* img: Support hspace and vspace attributes.
* editpage: Rename "comments" field to avoid CSS conflict with the
comments div.
* edittemplate: Make silent mode not disable display when the template
page does not exist, so it can be easily created.
* edittemplate: Look for template pages under templates/ like everything
else (still looks in old location for backwards compatibility).
* attachment: When inserting links, insert img directives for images,
if that plugin is enabled.
* websetup: Allow enabling plugins listed in disable_plugins.
* editpage, comments: Fix broken links in sidebar (due to forcebaseurl).
(Thanks, privat)
* calendar: Tune archive_pagespec to only match pages, not other files.
* Fix issues with combining unicode srcdirs and source files.
(Workaround bug #586045)
* Make --gettime be honored after initial setup.
* git: Fix --gettime to properly support utf8 filenames.
* attachment: Support Windows paths when taking basename of client-supplied
file name.
* theme: New plugin, allows easily themeing a site via the underlay.
* Added actiontabs theme by Svend Sorensen.
* Added blueview theme by Bernd Zeimetz.
* mercurial: Fix buggy getctime code. Closes: #586279
* link: Enhanced to handle URLs and email addresses. (Bernd Zeimetz)
o properly fully disable multi-file mode for now
o fix the -t and -U options when used without the -e option, broken since
the library-ifcation
o be explicit that logs go to the FTP facility in syslog
o fix some compile issues
o fix SSL mode. from rtr
o fix some cgi-bin issues, as seen with cvsweb
o disable multi-file daemon mode for now, it breaks
o return 404's instead of 403's when chdir of ~user dirs fail
o remove "noreturn" attribute from bozo_http_error() that was
causing incorrect runtime behaviour
with approval from agc.
- Support multiple database in one Django instance
- Model validation inspired by the Form validation
- Vastly improved protection against Cross-Site Request Forgery
- New user "message" framework, incl. support for anonymous users
- Hooks for object-level permissions and permissions for anonymous users
- Customization of e-mail sending via the new e-mail backend
- Smarter if template tag
* Translation of Trac in your language using Babel (http://babel.edgewall.org)
* Multiple Repository Support per environment
* Improved Wiki, more powerful syntax and nicer user interface with automatic
preview in side-by-side editing mode
* Improved Ticket user interface, with editable comments and automatic preview
* Some general minor bugs fixed in different areas.
* Four security fixes (see below).
Some of these vulnerabilities are potentially serious so we strongly
recommend you upgrade.
Full details to be released soon.
- New http_uwsgi_module, replacing the (optional) external one
- New ngx_http_split_clients module
- Support "map" directive with keys longer than 255 charecters
- Allow overriding client request header in fastcgi_param
- New "proxy_no_cache" and "fastcgi_no_cache" directives
- Automatically redirect from "rewrite" if $scheme is used
- Various bugfixes
PyBlosxom is a file-based blogging system in the spirit of Blosxom.
PyBlosxom uses directory tree to represent the category hierarchy.
All entries in a PyBlosxom blog are text files where the first line is
the title of the blog entry and the rest is the body of the entry.
PyBlosxom runs as a CGI script and WSGI application.
PyBlosxom can run as a "static renderer" and compile your blog into
HTML pages for any web server. This is a good solution for blogs with
millions of entries or servers that are really slow or don't have a
way to run applications.
PyBlosxom supports templates (called flavours) to change the look and
feel of your blog.
PyBlosxom supports plugins to modify the existing default behavior.
