gallery3.git - A clone of the Gallery3 code for testing and development.

Age	Commit message (Collapse)	Author
2009-10-23	Moved remaining user and group admin css into the new user.css style sheet.	Chad Kieffer

2009-10-23	Created user.css. Moved user-related form css to the new sheet.	Chad Kieffer

2009-10-23	move controllers and views to the user module to make the Identity Provider ↵	Tim Almdal
	refactor smaller
2009-10-23	Move the filters that the File_Structure_Test use into a seperate file so ↵	Tim Almdal
	other tests. can use them. Add a No_Direct_ORM_Access_Test to find all places that the user or group table are accessed outside of the user module. This test will fail at this point, as it in preparation for the IdentityProvider refactor.
2009-10-18	Wrap all admin views in g-block and g-block content. This provides the means ↵	Chad Kieffer
	to visually separate the view's title and description from everything else. Primary admin view title should always be h1, and only one h1 per view. Removed some unused admin CSS id's.
2009-10-17	Drop our g-clearfix in favor of using jQuery UI's ui-helper-clearfix.	Chad Kieffer

2009-10-15	Move all the edit/update forms for users and groups back to the user module.	Tim Almdal

2009-10-14	Move the ui for user adminsitration back to the user module.	Tim Almdal

2009-10-13	refactor the user and group helpers into the gallery core module. 2 reason, ↵	Tim Almdal
	first it makes sense that users and groups are a gallery requirement and belong in core. secondly, prepares the way for the Identity refactor.
2009-10-13	Refactor the ui component of the user module into the gallery core module.	Tim Almdal

2009-10-13	Continue to refactor locale and gallery3 ui from the user module to the ↵	Tim Almdal
	gallery module
2009-10-13	remove the unused private function user::_md5Salt()	Tim Almdal

2009-10-13	refactor locale related functionality out of the user module and into the ↵	Tim Almdal
	gallery module.
2009-10-09	Add support for the in filter to get_user_list and get_group_list. Convert ↵	Tim Almdal
	the notifications to use user::get_user_list instead of accessing the table directly.
2009-10-09	Convert direct lookups for the user table using ORM to using the ↵	Tim Almdal
	user::lookup_by_name and user_lookup API methods. Convert the Admin_User controller Convert the login and password change controller Change the item model to call user::lookup to get the owner. On the log model, delete the relationship between the log and user table, and replace with a call to user::lookup (cherry picked from commit 194cc3b27a73afe5119da9f09407c1e068dc6fa3) Create the get_user_list, lookup_by_name, lookup_by_hash and get_group_list api functions
2009-10-08	Change the users.php controller so its no longer restful. The problem with ↵	Tim Almdal
	our approach to restfulness is that it assumes that the resource will be found in the gallery database. It may well be there, but in the case of using plugable drivers for users management, there are no guarantees that it is in our database or it could be in a ldap directory. So it was just easier to remove the restfulness and just call user::lookup instead. (cherry picked from commit b3211cb2a8282556d410c91771baeb764d47ed10)
2009-10-07	Replaced most clear fix hacks with generic class.	Chad Kieffer

2009-10-04	Renamed more CSS selectors from gName to g-name.	Chad Kieffer

2009-10-04	Renamed most, if not all css selectors from gName to g-name. Moved a few ↵	Chad Kieffer
	shared images from wind to lib. Deleted unused images in the admin_wind. This will likely break a few ajax features.
2009-10-03	Renamed and moved gOdd/gEven CSS classes.	Chad Kieffer

2009-09-30	Convert gDialog and gCancel over to g-dialog and g-cancel. Refactor CSS id's ↵	Chad Kieffer
	and classes in the login/reset password dialog.
2009-09-30	Apply button style and hover effect to password reset button.	Chad Kieffer

2009-09-30	Missed g-right application on add group	Chad Kieffer

2009-09-30	Removed blank line.	Chad Kieffer

2009-09-30	Merge branch 'master' into talmdal_dev	Tim Almdal

2009-09-30	Use the block_manager to manage site sidebar panels. Fixes ticket #110.	Tim Almdal
	* Extend block_manager to handle sidebar blocks. get_available has become get_available_admin_blocks, get_list becomes get_admin_list. * Create new functions get_available_site_blocks which will look for gallery_block get_available_site_blocks. * Refactor sidebar_blocks into a separate function and then call block_manager::get_html(site.sidebar). Convert image_block to use block management instead of theme::sidebar_blocks * Change the block_manager api so that the theme is passed into the get method. convert info to the new sidebar block approach * Convert the user module to use the new sidebar block structure. remove the installers for info and image_block modules. * Convert tag and rss modules to the new sidebar framework. reset the version number to 1 for info and image_block modules. * Change the get_html method to ignore empty blocks and change the individual handlers to return an empty string if no block is generated * Add a warning message if no sidebar blocks are active and provide a link to the admin page that configures the sidebar.
2009-09-30	Replaced gButtonLink with g-button.	Chad Kieffer

2009-09-30	First round of CSS refactor updates. Added calls to gallery.common.css from ↵	Chad Kieffer
	wind and admin_wind. Replaced basic text align and block float classes. Removed section #2 from both themes screen styles.
2009-09-15	CSRF / auth fixes, golden data file checkpoint	Andy Staudacher

2009-09-10	Use abs_url() inside url::redirect() calls so that we don't just wind	Bharat Mediratta
	up tacking onto the base url.
2009-09-08	Move specialized (pretty) url generation back into Item_Model so that	Bharat Mediratta
	we're not relying on overriding url::site() to do tricks around item urls. This means that you won't get item urls by doing url::site("albums/37"), for example, but it also means that we won't get pretty urls where we don't expect them (like in the action of a <form> element). Incidentally, this will help us move over to using the slug format because if you've got a bad character in a url, the edit forms will now work on it since they'll be id based.
2009-09-05	Change click() to change() so that we immediately update the UI when	Bharat Mediratta
	the user picks a new option.
2009-09-05	Revert previous edit. Prefer « none » (sweet, nice Unicode characters) ↵	Andy Staudacher
	instead of HTML entities.
2009-09-05	Add missing view for language selection	Andy Staudacher

2009-09-04	placeholder for a missing view	Bharat Mediratta

2009-09-04	Shorten the name in the block so that it doesn't wrap.	Bharat Mediratta
	Use « and » in the << none >> text.
2009-09-04	When changing user preferences, reset the session based locale preferences.	Andy Staudacher

2009-09-04	Add new locale preferences: Adding per session (cookie) locale preferences ↵	Andy Staudacher
	and check the browser's / OS' locale preferences. Ticket 582.
2009-09-01	XSS / style fixes for newly detected issues (after fixing XSS scanner)	Andy Staudacher

2009-08-31	Fix XSS vectors in HTML attributes (mostly t() calls)	Andy Staudacher

2009-08-31	Rename mark_safe() to mark_clean()	Andy Staudacher

2009-08-30	Change all instances of SafeString::of_safe_html() to html::mark_safe() in ↵	Andy Staudacher
	views.
2009-08-29	Update all code to use helper method html::clean(), html::purify(), ... ↵	Andy Staudacher
	instead of SafeString directly.
2009-08-29	Undo url helper changes - url methods no longer return a SafeString.	Andy Staudacher
	Adding SafeString::of_safe_html() calls where urls are passed as parameters to t() and t2().
2009-08-29	Merge commit 'upstream/master'	Andy Staudacher
	Conflicts: modules/akismet/views/admin_akismet.html.php modules/comment/helpers/comment_rss.php modules/gallery/helpers/gallery_rss.php modules/gallery/libraries/I18n.php modules/gallery/views/permissions_browse.html.php modules/gallery/views/simple_uploader.html.php modules/info/views/info_block.html.php modules/organize/controllers/organize.php modules/organize/views/organize.html.php modules/organize/views/organize_album.html.php themes/default/views/album.html.php themes/default/views/movie.html.php themes/default/views/photo.html.php
2009-08-29	Refactor all calls of p::clean() to SafeString::of() and p::purify() to ↵	Andy Staudacher
	SafeString::purify(). Removing any p::clean() calls for arguments to t() and t2() since their args are wrapped in a SafeString anyway.
2009-08-29	Fix active() to not use user::guest() as the fallback for our Session::get() ↵	Bharat Mediratta
	call.
2009-08-29	Adding SafeString which is going to replace p::clean() and p::purify().	Andy Staudacher
	Refactoring of Xss_Security_Test. t() and t2() return a SafeString instance. TODO: - Update all code to use SafeString where appropriate. - Update golden fole of Xss_Security_Test - Stop reporting CLEAN vars in Xss_Security_Test
2009-08-27	Remove 'ENGINE=InnoDB' specification from tables that we create. Use	Bharat Mediratta
	the system's default table specification. Fixes ticket #597.
2009-08-27	Don't ask for csrf when we're resetting passwords. They're not gonna have ↵	Bharat Mediratta
	one. Duh! Fixes #642.