| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-09-22 | Change the link on the "Be first to comment" link to do a request to the ↵ | Tim Almdal | |
| server to get the comment add form. Fixes ticket #699. | |||
| 2009-09-01 | Add missing mark_clean() for t() calls with %attr parameter. | Andy Staudacher | |
| 2009-09-01 | XSS / style fixes for newly detected issues (after fixing XSS scanner) | Andy Staudacher | |
| 2009-08-31 | Fix XSS vectors in HTML attributes (mostly t() calls) | Andy Staudacher | |
| 2009-08-30 | XSS fixes in admin_comments.html.php | Andy Staudacher | |
| 2009-08-29 | Update all code to use helper method html::clean(), html::purify(), ... ↵ | Andy Staudacher | |
| instead of SafeString directly. | |||
| 2009-08-29 | Merge commit 'upstream/master' | Andy Staudacher | |
| Conflicts: modules/akismet/views/admin_akismet.html.php modules/comment/helpers/comment_rss.php modules/gallery/helpers/gallery_rss.php modules/gallery/libraries/I18n.php modules/gallery/views/permissions_browse.html.php modules/gallery/views/simple_uploader.html.php modules/info/views/info_block.html.php modules/organize/controllers/organize.php modules/organize/views/organize.html.php modules/organize/views/organize_album.html.php themes/default/views/album.html.php themes/default/views/movie.html.php themes/default/views/photo.html.php | |||
| 2009-08-29 | Update status message styles. Lighten backgrounds, don't show background on ↵ | Chad Kieffer | |
| Admin Maintenance rows, and added gModuleStatus class. | |||
| 2009-08-29 | Refactor all calls of p::clean() to SafeString::of() and p::purify() to ↵ | Andy Staudacher | |
| SafeString::purify(). Removing any p::clean() calls for arguments to t() and t2() since their args are wrapped in a SafeString anyway. | |||
| 2009-08-28 | Fix ticket #591: reCaptcha always on the page. | Tim Almdal | |
| 1) move creating the "Add a comment" button into the comments.html.php 2) use $.get() to retrieve the comment add form | |||
| 2009-07-23 | Convert instances of theme_url() to just url() to match the API change | Bharat Mediratta | |
| made in dbeadc1407293d0c7af36723db6fe5699890b845 | |||
| 2009-07-07 | Change references to Gallery 2 and Gallery 3 to consistently refer to | Tim Almdal | |
| Gallery n as opposed any variants of this. | |||
| 2009-07-04 | Forgot this file when i was fixing #477 | Tim Almdal | |
| 2009-07-04 | Fix for ticket #477. Use nl2br method when rendering comment::text and | Tim Almdal | |
| item::description. In addition add p::clean or p::purify to places that xss cleaning had missed (i.e. rss feeds) | |||
| 2009-07-03 | Split the clean method into two clean and purify. clean is a light weight | Tim Almdal | |
| approach using html::specialchars and purify uses HTMLPurifier to intelligently cleanse the output fields. Use purifier for text and title fields where it is likely that a user would enter html to format their data. | |||
| 2009-06-28 | Rename $theme->url() to $theme->theme_url() for consistency wiht | Bharat Mediratta | |
| $theme->theme_script(). | |||
| 2009-06-24 | Comment out [reply] and [edit] links because they're not implemented | Bharat Mediratta | |
| yet. This closes ticket #416, and I'll open a new ticket to implement these functions. | |||
| 2009-06-18 | Fix l10n messages (malformed html) | Andy Staudacher | |
| 2009-06-16 | Fix html bug in l10n message | Andy Staudacher | |
| 2009-06-14 | Refactor feed code to use stdClass everywhere. Fix bugs in the | Bharat Mediratta | |
| max-pages calculation code. Move feed related data into the $feed variable and only pass that to the view. | |||
| 2009-06-12 | Create gallery::date_time(), gallery::date() and gallery::time() | Bharat Mediratta | |
| functions that format a unix timestamp into a date+time/date/time string. Partial fix for ticket #347. | |||
| 2009-06-12 | Move the processing of rss feeds from the rss controller to callbacks in the | Tim Almdal | |
| modules that are supplying the feed. The rss controller becomes a router. In this change the comment and updates fields are distributed. | |||
| 2009-05-31 | Run p::clean() on any variables that contain data entered by users. | Bharat Mediratta | |
| 2009-05-11 | Refactor to support pagination and simplify the code. | Bharat Mediratta | |
| - Simplify the public controller methods - Fix a bug where missing thumbnails would cause a divide by zero error - actually pay attention to the page # for pagination and limit the query accordingly. | |||
| 2009-04-06 | Hide the "no comments yet" text after the first comment is posted. | Bharat Mediratta | |
| Fixes ticket #196. | |||
| 2009-04-03 | Concatenate chopped up internationalized string. | Bharat Mediratta | |
| 2009-03-27 | Put csrf token into Admin_View and Theme_View by default, then use it | Bharat Mediratta | |
| directly wherever possible instead of access::csrf_token(). | |||
| 2009-02-23 | Temp fix for photostreamin admin dashboard, other miscellaneous css fixes. ↵ | Chad Kieffer | |
| Apply jQuery UI button css to submit inputs in the admin theme. | |||
| 2009-02-23 | added additional comment link, if no comments have been made yet. | Jakob Hilden | |
| 2009-02-22 | Leave the comments title around, but add the "Be the first to comment" | Bharat Mediratta | |
| message below it. | |||
| 2009-02-20 | Fixes to comment admin buttons. | Chad Kieffer | |
| 2009-02-15 | Apply buttons to comment moderation and action buttons, beginnings of a ↵ | Chad Kieffer | |
| photo stream carousel block in admin dashboard. | |||
| 2009-02-12 | Added a show comment form button. Add comment form is revealed when the ↵ | Chad Kieffer | |
| button is clicked. Used jQuery UI Effect to .highlight() to bring attention to newly added comments. Also added a named anchor to our block library to allow direct linking/scrolling to those blocks on the page. | |||
| 2009-01-24 | Admin theme style cleanup. Merged separate selected, available, unavailable ↵ | Chad Kieffer | |
| into a single set of reusable classes. Applied alternating row bg colors. Removed inline CSS from admin views. Moved user admin css into admin_default theme style sheet. | |||
| 2009-01-15 | Changing t() placeholder syntax from {{replace_me}} to %replace_me. | Andy Staudacher | |
| 2009-01-15 | Simplifying the way t() is called. Refactoring localization function ↵ | Andy Staudacher | |
| t($message, $options=array()) into 2 separate functions: - the new t($message, $options=array()) is for simple strings, optionally with placeholder interpolation. - t2($singular, $plural, $count, $options=array()) is for plurals. | |||
| 2009-01-11 | Use the author's avatar, not the logged in user's one. | Bharat Mediratta | |
| 2009-01-11 | Fix all file structure issues (tabs, bad preambles, etc). | Bharat Mediratta | |
| Note: installer/install.php is now on the "direct access" list. | |||
| 2009-01-10 | (no commit message) | Chad Kieffer | |
| 2009-01-10 | HTML format cleanup | Chad Kieffer | |
| 2009-01-10 | Auto-delete 7-day old spam/deleted comments. | Bharat Mediratta | |
| 2009-01-10 | Create a 'recently deleted' queue | Bharat Mediratta | |
| 2009-01-10 | Update the queue counts in the menu list whenever we | Bharat Mediratta | |
| approve/unapprove/spam a comment. | |||
| 2009-01-10 | Use the theme's avatar as the default if Gravatar doesn't have one. | Bharat Mediratta | |
| 2009-01-10 | Integrate Gravatar. Boy, that was easy. | Bharat Mediratta | |
| 2009-01-10 | Big set of changes to comments, with related changes to akismet and | Bharat Mediratta | |
| user modules. * Don't delete vars when we delete a module. This makes reinstalling a module a lot easier. * Add user::lookup() as the preferred way to load a user, so that other modules don't delve into the user module (that'd be a problem when we swap out user modules) * Notify site admins if Akismet is not fully configured * Bundle all server variables into the comment so that if/when we re-check the comment, we are not using the server info from the site admin's request. * Update Akismet to grab request context data from the comment * Pre-seed comment fields if we have a logged in user. Update comment::create() API to clarify it for this. * Delete comment::update(), that's a controller function. * Add url to User_Model * Add author_name() author_email() and author_url() to Comment_Model. It'll return the appropriate values depending on whether the comment was left by a logged in user or a guest. * Use resetForm() instead of clearForm() when we reload the comment form after ajax submit, this way we preserve the pre-seeded values. * In the user profile page, ignore blank passwords. | |||
| 2009-01-09 | Added gCommentsAdminMenu to clearfix. | Chad Kieffer | |
| 2009-01-09 | Reformated comment admin table layout. Added bulk action checkboxes and ↵ | Chad Kieffer | |
| menu, reply link, and edit link, all of which need to be wired up. | |||
| 2009-01-09 | Eliminate unused avatar code (for now) | Bharat Mediratta | |
| 2009-01-08 | i18n refactoring: Rename all _() (reserved by gettext) calls to t(). | Andy Staudacher | |
| - And refactor printf to our string interpolation / pluralization syntax - Also, a slight change to the translations_incomings table, using binary(16) instead of char(32) as message key. | |||
 |
index : gallery3.git | |
| A clone of the Gallery3 code for testing and development. | root |
| summaryrefslogtreecommitdiff |