1 2003-01-18 Ryan T. Sammartino <ryants@shaw.ca>
3 * www/404.php: valid XHTML 1.0 Transitional.
5 * www/sendmessage.php: ditto.
7 * www/include/languages/Base.tab: valid XHTML 1.0 Transitional
8 for sendmessage string.
10 * www/people/editjob.php: Audit: escape special characters from
11 user input before submitting to database.
13 * common/frs/FRSPackage.class: ditto.
15 * common/docman/DocumentGroup.class: ditto.
17 * common/tracker/ArtifactType.class: ditto.
19 * common/tracker/ArtifactGroup.class: ditto.
21 * common/tracker/ArtifactCategory.class: ditto.
23 * common/include/User.class: ditto.
25 * common/include/Group.class: ditto.
27 * common/frs/FRSRelease.class: ditto, plus re-fetch data on
30 * www/project/admin/editrelease.php: ditto, plus fix bogus
31 warning about "file upload attack".
33 2003-01-17 Reinhard Spisser <reinhard@spisser.it>
35 * www/forum/*: there were still a lot of unlocalized strings.
36 Now there should be no more hardcoded strings. The forum
37 localization should be now complete.
39 * www/include/languages/Base.tab: Added labels for forums
40 and general error messages
42 * www/include/languages/Italian.tab: Added translations for italian
44 * common/include/Error.class: added new localized Error functions
45 setPermissionDeniedError(),setInvalidEmailError(),setOnUpdateError(),
46 setGroupIdError(). These functions can be used by all classes that
47 subclass Error.class, and instead of setting
48 $this->setError("Permission Denied"), they should call
49 $this->setPermissionDeniedError()
51 * common/forum/*: localized Forum classes
52 All hardcoded strings are replaced with calls to getText()
54 * common/docman/*: added calls to new localized Error functions
56 2003-01-17 Tom Copeland <tom@infoether.com>
58 * www/scm/index.php, etc/local.inc: Added new sys_cvs_single_host system
59 variable that gives all projects the same CVS hostname. Set it up
60 as being on - i.e., everyone gets the same hostname - by default.
62 2003-01-16 Roland Mas <lolando@debian.org>
64 * www/include/languages/*.tab: Recoded everything to UTF-8.
66 2003-01-15 Reinhard Spisser <reinhard@spisser.it>
68 * www/include/languages/Base.tab: added forum labels
70 * www/forum/*: localized forum
72 * www/include/languages/Italian.tab: translations of new forum strings
74 2003-01-15 Ryan T. Sammartino <ryants@shaw.ca>
76 * www/include/languages/Spanish.tab: translations for Reinhard's
83 2003-01-15 Roland Mas <lolando@debian.org>
85 * common/include/Plugin.class: PHPdoc.
87 * common/include/PluginManager.class: ditto. Also, moved code to
90 * www/include/pre.php: Added code from PluginManager.class.
92 * db/20021214.sql: Added plugin subsystem tables and sequences.
94 2003-01-14 Roland Mas <lolando@debian.org>
96 * www/include/Layout.class: Split subMenu() into BeginSubMenu(),
97 PrintSubMenu() and EndSubMenu(). subMenu() still exists, and
98 calls these three methods in a row, giving the same net result.
100 * www/include/html.php: Replaced the call to subMenu() in
101 site_user_header by successive calls to the three aforementioned
102 methods, with a plugin hook in-between.
104 * deb-specific/install-postfix.sh: Applied patch #102 by Julien
105 Goodwin. Should have a better chance of a working
106 gforge-mta-postfix now. Thanks, Julien.
108 2003-01-13 Reinhard Spisser (reinhard@spisser.it)
110 * www/docman/*: fully localized
112 * www/include/languages/Base.tab: added missing strings
114 * www/include/language/Italian.tab: Italian Docman Localization
116 2003-01-13 Tom Copeland <tom@infoether.com>
118 * www/survey/admin/add_survey.php: Survey title is now a required field.
120 * www/project/admin/qrs.php: File name/type/release name/processor
121 type are now required fields.
123 2003-01-13 Tim Perdue (tim@gforge.org)
125 * more simplication of db_stats_agg.php by creating views
127 2003-01-13 Scott Armstrong (scottbird7)
129 * Fixed/completed /cronjobs/mail/* mailing list and alias creation
132 2003-01-12 Ryan T. Sammartino <ryants@shaw.ca>
134 * README.Custom: update theme info add add info about "include".
136 * www/include/languages/Latin.tab: new file.
138 * db/20030112.sql: add Latin as a supported language.
140 2003-01-11 Ryan T. Sammartino <ryants@shaw.ca>
142 * www/account/index.php: Display new language immediately.
144 * www/include/languages/PortugueseBrazilian.tab: use new include
145 functionality to get default strings from Portuguese.
147 * www/include/languages/Portuguese.tab: add missing newline.
149 * www/include/languages/Base.tab: move Savannah-specific strings
150 into their own .tab files.
152 * www/include/languages/Spanish.tab: ditto.
154 * www/themes/savannah_*/{Base,Spanish}.tab: new files with
155 Savannah-specific strings.
157 * www/include/BaseLanguage.class(loadLanguage): allow
158 customisations of strings on a per-theme basis.
159 (loadLanguageFile): implement "include" functionality.
161 * www/survey/survey_resp.php: Audit: escape special characters
162 from user input before submitting to database.
164 * www/survey/admin/edit_survey.php: ditto.
166 * www/survey/admin/add_survey.php: ditto.
168 * www/survey/admin/add_survey.php: add missing <, don't display
169 empty table if there are no existing surveys.
171 * www/new/index.php: use new frs_dlstats_grouptotal_vw
173 * www/include/features_boxes.php(show_top_downloads): use new
174 frs_dlstats_grouptotal_vw.
176 * cronjobs/db_stats_agg.php: remove file download stat
179 * db/20030112.sql: new file.
181 * common/frs/FRSRelease.class(create): yet another pg_atoi fix.
183 2003-01-10 Ryan T. Sammartino <ryants@shaw.ca>
185 * www/themes/osx/Theme.class: valid XHTML 1.0 Transitional.
187 * www/news/news_utils.php: make project summary valid XHTML 1.0
190 * www/include/trove.php: ditto.
192 * www/include/Layout.class: ditto.
194 * www/include/project_home.php: ditto.
196 * www/include/html.php: make / valid XHTML 1.0 Transitional.
198 * www/include/Layout.class: ditto.
200 * www/include/languages/Base.tab: ditto.
202 * common/include/utils.php: ditto.
204 * www/index_std.php: ditto.
206 * www/news/news_utils.php: ditto.
208 * www/my/diary.php: bug 158: pg_atoi when inserting diary entry.
210 * common/include/utils.php(util_make_links): exclude <> from
211 URL regexp to avoid sucking in the <br /> tag.
213 * www/include/html.php(html_image): XHTML compliance: <img> tag
216 * www/forum/include/ForumHTML.class: revert nl2br changes.
218 2003-01-10 Edward Ritter
220 * Gargantuan patch to lower-case and bring our entire HTML
221 within the realm of being XHTML-compliant. Significant refinement
222 is still necessary to be 100% compliant.
224 2003-01-10 Tom Copeland <tom@infoether.com>
226 * www/account/register.php,
228 common/include/utils.php
229 www/forum/include/ForumHTML.class: Began work on task #63 - adding a
230 red * to all required fields.
232 2003-01-09 Ryan T. Sammartino <ryants@shaw.ca>
234 * common/include/session.php(session_issecure, session_redirect):
235 use $HTTP_SERVER_VARS instead of $_SERVER.
236 * db/20030109.sql: new file.
237 * www/include/project_summary.php: use project_sums_agg table for
238 fora and forum message count.
239 * www/news/news_utils.php: use forum_group_list_vw to get number
244 * www/scm/index.php Cleanup/set to use Group object.
246 2003-01-08 Ryan T. Sammartino <ryants@shaw.ca>
248 * common/include/utils.php(util_make_links): Change e-mail
249 regular expression so that e-mails must either start a line
250 or be preceeded by whitespace. This prevents URLs that
251 contain e-mail addresses from getting messed up (e.g.
252 http://mailman/user=foo@bar.com).
254 * www/forum/include/ForumHTML.class: first call util_make_links,
255 then do nl2br. This prevents <br /> from becoming part of a URL
256 that is at the end of a line.
258 * www/admin/trove/trove_cat_edit.php,
259 www/admin/trove/trove_cat_add.php,
260 common/pm/ProjectCategory.class, www/include/bookmarks.php: Audit:
261 escape special characters from user input before submitting to
264 2003-01-07 Tom Copeland <tom@infoether.com>
266 * Added "submitted by" info to the task detail view. Modified project_task_vw
267 to include user name and realname from user table. [tom] DB changes are in
270 2003-01-06 Richard Offer
272 * www/include/Layout.class, www/project/showfiles.php: patch #134:
273 fix bug #131 - fix bad quotes and missing close bracket.
275 2003-01-06 Tom Copeland <tom@infoether.com>
277 * Modified tracker monitor buttons so they show current monitoring status.
279 2003-01-05 Richard Offer
281 * Contributed OSX theme. [tom] DB changes (along with some other misc changes)
284 2003-01-05 Roland Mas <99.roland.mas@aist.enst.fr>
286 * Removed uuencoded image files. They are not needed anymore
287 after a new upstream release.
289 2003-01-04 Ryan T. Sammartino <ryants@shaw.ca>
291 * www/pm/calendar.php: show tasks in calendar.
293 * www/pm/{add_task,mod_task}.php: update link to View Calendar.
295 * www/include/languages/{Base,Spanish}.tab: new entries for
298 * www/include/languages/Base.tab: Bug 123: tabify "conf" entries.
300 * www/my/index.php: Bug 120: fix link to unmonitor file
302 * www/pm/task.php www/forum/save.php www/forum/new.php
303 www/forum/monitor.php www/project/filemodule_monitor.php
304 docs/xdocs/xdocs/contributions/templating.xml: fix typo:
305 exit_missing_params --> exit_missing_param
307 2003-01-02 Tim Perdue <tim@gforge.org>
309 * Added interface to tracker so you can build relationships w/Task
310 manager. [tom] DB changes are in 20030102.sql and 20030102-drops.sql.
312 2003-01-02 Tim Perdue <tim@gforge.org>
314 * Complete rewrite of doc mgr in GForge coding guidelines.
316 2003-01-02 Ryan T. Sammartino <ryants@shaw.ca>
318 * www/survey/adminedit_survey.php: sanity checks when posting
320 * www/themes/savannah/SavannahTheme.class: missing close quotes.
322 2003-01-01 Ryan T. Sammartino <ryants@shaw.ca>
324 * www/themes/savannah/menu.php: new file.
325 * www/themes/savannah/SavannahTheme.class: new file.
326 * www/themes/savannah_*/Theme.class: make these derived classes of
329 2002-12-31 Ryan T. Sammartino <ryants@shaw.ca>
331 * www/include/Layout.class: optionally add "Show Source" link to
333 * www/source.php: new file.
334 * etc/local.inc: add $sys_show_source option.
335 * db/20021223.sql: Patch 97: drop project_task_vw before create.
336 * www/pm/calendar.php: change output to valid XHTML 1.0 with HTML
339 2002-12-30 Ryan T. Sammartino <ryants@shaw.ca>
341 * www/pm/index.php, www/pm/admin/index.php: Bug 96: fix spuriours
342 errors when no subprojects are defined.
343 * common/include/User.class: Fix pg_atoi problem.
345 2002-12-29 Ryan T. Sammartino <ryants@shaw.ca>
347 * www/pm/calendar.php: rewrite.
348 * www/include/languages/Base.tab: add translations for calendar.
349 * www/include/languages/Spanish.tab: ditto.
350 * www/include/languages/Italian.tab: ditto.
351 * www/include/languages/Japense.tab: ditto.
352 * common/forum/Forum.class: patch 69: Allow non-site-wide admins
354 * cronjobs/{check_stale_tracker_items.php, db_project_sums.php,
355 massmail.php,project_weekly_metric-backfill.php,
356 stats_projects-backfill.php}: Commonise magic headers to
357 '#! /usr/bin/php4 -f'
359 2002-12-24 Tim Perdue <tim@gforge.org>
361 * Gantt charting added and more debugging of new Project Manager.
363 2002-12-23 Tim Perdue <tim@gforge.org>
365 * Committing first working version of new Project Manager.
366 Still needs more testing and coding.
368 2002-12-14 Tim Perdue <tim@gforge.org>
370 * Complete rewrite of FRS using OO style and coding guidelines.
371 Same form and design as tracker.
373 2002-12-13 Tim Perdue <tim@gforge.org>
375 * Quick changes to doc manager to protect binary safe uploads /
376 downloads. Must run a PHP script to migrate your data from pre6
377 to pre7. The script is in db/doc_data-migrate.php
379 2002-12-12 Tim Perdue <tim@gforge.org>
381 * Added skills/profile system patch submitted by John Maguire
383 2002-12-09 Tim Perdue <tim@gforge.org>
385 * Complete forum rewrite using OO style and coding guidlines.
386 Same form and design as Tracker system.
388 2002-12-07 Tim Perdue <tim@gforge.org>
390 * Moved html_build_list_table_top() into Layout.class, and
391 created listTableBottom(), so they can be easily themed.
393 2002-12-06 Tim Perdue <tim@gforge.org>
395 * Jabber Support working. Tracker updates and Forum Posts
396 are now set to use the jabber system. Much more integration
399 2002-11-28 Tim Perdue <tim@gforge.org>
401 * Cleaned up and simplied File Release System. Still needs
402 serious OO rewrite, however it is no longer dependent on
403 setuid "fileforge" and "tempfileforge".
405 2002-11-25 Tim Perdue <tim@gforge.org>
407 * Removed hacky "theming" system and rewrote Layout.class
408 with new sitewide theme. New theming system can be based on
409 extending Layout.class as they did before. Renamed several
410 function calls in Layout.class.
412 * Foundries and all related code removed
414 2001-07-13 Paul Sokolovsky <pfalcon@sourceforge.net>
416 * www/include/logger.php: We should allow to access groups
417 with 'Holding' status.
418 * www/search/index.php: Ditto.
420 2001-07-09 Paul Sokolovsky <pfalcon@sourceforge.net>
422 * common/include/utils.php(util_check_fileupload): New
423 function, checks that file is in fact was uploaded by user
424 and may be safely used without compromising system.
425 * www/docman/new.php, www/project/admin/editimages.php,
426 www/project/admin/editreleases.php, www/project/admin/qrs.php,
427 www/tracker/include/ArtifactFileHtml.class: Use that function.
429 2001-07-08 Tim Perdue <tim@perdue.net>
431 * Quick patch of massive gaping security hole where uploaded
432 files were not verified before being read in.
434 2001-07-01 Paul Sokolovsky <pfalcon@sourceforge.net>
436 * TARBALL: Cleaned up somewhat, made leave /tmp/scratch
437 in place of manual cleanup.
439 2001-06-29 Paul Sokolovsky <pfalcon@sourceforge.net>
441 * www/project/stats/stats_graph.png: Use proper units names.
443 2001-06-29 Paul Sokolovsky <pfalcon@sourceforge.net>
445 * www/project/stats/stats_graph.png: Use proper units names.
447 2001-06-28 Paul Sokolovsky <pfalcon@sourceforge.net>
449 * www/include/html.php(html_dbimage): Allow to pass in
450 additional attributes, like to html_image().
452 2001-06-26 Paul Sokolovsky <pfalcon@sourceforge.net>
454 * www/account/{change_email.php,change_email-complete.php}:
456 * www/admin/useredit.pgp: Ditto.
458 * www/project/admin/userpermedit.php: Provide more obvious
461 2001-06-26 James Byers <jbyers@linux.com>
463 * new optionally encrypted cookie with username set on login
465 * login redirection system allows non-local URLs
467 * addition of jobs.osdn.com links, front page text
469 2001-06-22 Paul Sokolovsky <pfalcon@sourceforge.net>
471 * common/include/User.class(setShell): Validate argument.
473 * common/include/User.class: Add SQL error message for
476 2001-06-22 Tim Perdue <tim@perdue.net>
478 * Fixed subtle bug in tracker where you could get an artifact to
479 display right and update 1/2 right, but not completely right,
480 if you mangled the URL. Also added Site Admin debug code so
481 logged in admins can see query strings at the bottom of the page.
483 2001-06-19 Paul Sokolovsky <pfalcon@sourceforge.net>
485 * common/include/User.class(setPasswd): Validate argument.
487 * www/admin/useredit.php: Show current value of the confirm
490 2001-06-19 James Byers <jbyers@linux.com>
492 * updated administrative files, db/ files with header comment
494 * added generic terms, privacy statement
496 2001-06-18 Paul Sokolovsky <pfalcon@sourceforge.net>
498 * common/include/User.class(setStatus): Validate argument.
500 2001-06-14 Paul Sokolovsky <pfalcon@sourceforge.net>
502 * common/include/utils.php(util_make_links): Do not include
503 <> delimiters in URL.
505 2001-06-12 Paul Sokolovsky <pfalcon@sourceforge.net>
507 * www/project/admin/qrs.php: Allow release technicians to access
510 * www/search/index.php: Within artifact search SQL, order
511 WHERE conditions properly.
513 2001-06-12 Paul Sokolovsky <pfalcon@sourceforge.net>
515 * www/include/BaseLanguage.class(loadLanguage): Add support
516 for comments in message catalogs ('#' as the first char of line).
518 * www/sendmessage.php: Provide proper substs for headers.
520 2001-06-11 Paul Sokolovsky <pfalcon@sourceforge.net>
522 * www/tracker/mod.php: Pass group name as arg to
525 2001-06-09 Paul Sokolovsky <pfalcon@sourceforge.net>
527 * www/partners.php, www/include/languages/Base.tab: Fix
528 last place where raw PHP code was stuffed in msgcat.
530 2001-06-08 James Byers <jbyers@linux.com>
532 * Changed export/rss_foundry_news.php to include group
535 * Created TARBALL process document
537 2001-06-08 Darrell Brogdon <dbrogdon@valinux.com>
539 * (including 6/6 commits) ...
541 2001-06-07 Tim Perdue <bigdisk@sourceforge.net>
543 * (including 6/6 commits) ...
545 2001-06-01 Darrell Brogdon <dbrogdon@valinux.com>
549 2001-05-31 Tim Perdue <bigdisk@sourceforge.net>
551 * cronjobs/project_weekly_metric.php - fixed replication
552 issue that interfered with including download counts in
555 2001-05-30 Darrell Brogdon <dbrogdon@valinux.com>
559 2001-05-30 Paul Sokolovsky <pfalcon@sourceforge.net>
561 * www/account/lostlogin.php: Typo fix.
563 * www/account/lostlogin.php: Invalidate confirm hash on
564 successful operations.
566 * www/include/BaseLanguage.class(loadLanguage): Remove
567 trailing newline from strings to be returned by getText().
569 * common/include/User.class(setNewEmailAndHash): Add
570 convenient feature: if hash value is 0, then generate
573 * www/account/lostpw.php, www/include/languages/Base.tab:
574 Add code to unquote/perform substitutions on mail message
575 from message catalog.
577 2001-05-25 Paul Sokolovsky <pfalcon@sourceforge.net>
579 * common/include/account.php (account_salt): Move local
580 functions out - PHP re-defines local function each time
581 enclosing function is evaluated, so it cannot be called
584 * www/users: Do not allow to access page for non-active
587 * www/include/user_home.php: Fix phpfault when accessing
590 2001-05-24 Darrell Brogdon <dbrogdon@valinux.com>
592 * Added rss_osdnnews.php
594 2001-05-23 James Byers <jbyers@linux.com>
600 2001-03-25 Adrian Aichner <adrian@xemacs.org>
602 * many files: Typo fixes.
604 2000-12-06 Paul Sokolovsky <pfalcon@sourceforge.net>
606 * bugs/bug_data.php,index.php: Fix bug when any bug update
607 by bug admin resulted in two mail notifications: once for
608 properties change and once for comment.
610 * search/index.php: Added parameter aliases and defaults.
611 Finished RSS exports.
613 2000-12-05 Paul Sokolovsky <pfalcon@sourceforge.net>
615 * account/index.php: Add "remember me" checkbox.
616 * account/updateprefs.php: Depending on its value, either
617 set 'sf_user_hash' cookie or clear it.
618 * my/index.php: if sf_user_hash cookie set with correct hash,
619 allow user to view the page.
621 * include/User.class: Added getMD5Passwd() method.
623 2000-11-27 Paul Sokolovsky <pfalcon@sourceforge.net>
625 * include/Group.php, project/admin/userperms.php: Member role
626 selection based on help wanted categories.
628 2000-11-22 Paul Sokolovsky <pfalcon@sourceforge.net>
630 * project/admin/editpackages.php,editreleases.php,index.php,
631 newrelease.php, project_admin_utils.php: Functionality of the
632 file release privilege: 1. Allow any project member to access
633 admin page, but allow only admin to perfom tasks; 2. Allow
634 user with file release privilege access Add/Edit Release page,
635 but allow only to modify releases, not packages.
637 * include/html.php: fix obscure bug when static error message
638 was shoen instead of real one.
640 2000-11-21 Paul Sokolovsky <pfalcon@sourceforge.net>
642 * include/Group.php, project/admin/userperms.php: File release
643 privilege storing and UI.
645 2000-11-13 Paul Sokolovsky <pfalcon@sourceforge.net>
647 * include/HTML_Graphs.php: horizontal_multisection_graph(): render
648 horizontal graph consisting of multiple colored sections.
649 graph_calculate_scale(): calculate scale for such graphs.
651 * project/stats/project_stats_utils.php: period2seconds(),
652 period2sql(): functions to deal with time periods.
654 * include/tool_reports.php: library for tool reporting.
656 2000-11-09 Paul Sokolovsky <pfalcon@sourceforge.net>
658 * include/utils.php: util_result_columns_to_assoc(): converts
659 db result set into associative array.
661 2000-10-27 Paul Sokolovsky <pfalcon@users.sourceforge.net>
663 * project/admin/index.php: make fact that admins cannot be
664 deleted explicitly visible by showing crossed trash icon.
666 2000-10-20 Paul Sokolovsky <pfalcon@users.sourceforge.net>
668 * include/User.class: getUnixStatus() added.
670 * admin/approve_pending.php: Added LDAP support. For this,
671 update each group individually instead of in mass. Also, some
672 UI tweaks: now it's possible to approve projects individually,
673 fields are shown somewhat cleaner. Since data now doubled
674 between SQL and LDAP, steps to detect inconsistencies are
675 performed with (hopefully) proper diagnostics (including
676 preserving LDAP error descriptions in status_comment of
677 group) and rudimentary auto-repair.
679 * include/Error.class: Allow error messages to accumulate.
681 * include/Group.class: addUser() and removeUser() LDAPized.
683 * admin/groupedit.php: LDAPized.
686 2000-10-19 Geoffrey Herteg <gherteg@users.sourceforge.net>
688 * pm/pm_util.php: added mail_followup() to mail followups to
689 task owner and assigned developers...
691 * pm/pm_data.php: modified pm_data_create_task() and
692 pm_data_update_task() to call mail_followup()
693 if create/update successful.
695 2000-10-19 Paul Sokolovsky <pfalcon@users.sourceforge.net>
697 * include/ldap.php: module for LDAP support.
699 * DB: groups: new column 'status_comment', should provide
700 some explaination (for human) while group in given status.
702 2000-10-18 Paul Sokolovsky <pfalcon@users.sourceforge.net>
704 * include/User.class: user_get_object() can take either
707 2000-10-17 Paul Sokolovsky <pfalcon@users.sourceforge.net>
709 * DB: user_group: add 'cvs_flags' column to hold CVS
711 * project/admin/userperms.php: Add CVS access selector
712 for read, write, admin permissions (accumulated).
713 Reformat and add more roles descriptions.
714 * include/Group.class: make updateUser() method take
715 additional argument - cvs permissions (0,1,2 for read,
718 2000-10-15 Paul Sokolovsky <pfalcon@users.sourceforge.net>
720 * include/menu.php: Make docs link bold.
721 * account/first.php: Make docs link bold.
723 2000-10-14 Paul Sokolovsky <pfalcon@users.sourceforge.net>
725 * pre.php: If run without supported_languages table,
726 mod_php died on including the directory instead of
727 language class. Bad behaviour, almost as segfault of
730 2000-10-11 Paul Sokolovsky <pfalcon@users.sourceforge.net>
732 * Russian.class: File submitted by me was magically
733 converted to windows-1251 encoding. Turn back to