| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Fixes a number of regressions introduced in 2.0.0.8:
* Bug 400406 - Firefox will ignore the clear CSS property when used beneath a
box that is using the float property. There is a temporary workaround JS/CSS
code available for web developers with affected layouts.
* Bug 400467 - Windows Vista users will get Java not found or Java not working
errors when trying to load Java applets after updating. To fix this, users
can right-click the Firefox icon and Run as administrator, then browse to a
page with a Java applet doing this once will fix the problem and permanently
restore Java functionality.
* Bug 396695 - Add-ons are disabled after updating. Users can fix this problem
by opening their profile folder and removing three files (extensions.rdf,
extensions.ini and extensions.cache)
* Bug 400421 - Removing a single area element from an image map will cause the
entire map to disappear. There is no workaround available at this time.
* Bug 400735 - Some Windows users may experience crashes at startup. There is
no workaround available at this time.
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.9/releasenotes/
|
|
to grant read-only or write access to WebDAV directories.
|
|
|
|
Version 7.17.1 (29 October 2007)
Dan F (25 October 2007)
- Added the --static-libs option to curl-config
Daniel S (25 October 2007)
- Made libcurl built with NSS possible to ignore the peer verification.
Previously it would fail if the ca bundle wasn't present, even if the code
ignored the verification results.
Patrick M (25 October 2007)
- Fixed test server to allow null bytes in binary posts.
_ Added tests 35, 544 & 545 to check binary data posts, both static (in place)
and dynamic (copied).
Daniel S (25 October 2007)
- Michal Marek fixed the test script to be able to use valgrind even when the
lib is built shared with libtool.
- Fixed a few memory leaks when the same easy handle is re-used to request
URLs with different protocols. FTP and TFTP related leaks. Caught thanks to
Dan F's new test cases.
Dan F (24 October 2007)
- Fixed the test FTP and TFTP servers to support the >10000 test number
notation
- Added test cases 2000 through 2003 which test multiple protocols using the
same easy handle
- Fixed the filecheck: make target to work outside the source tree
Daniel S (24 October 2007)
- Vladimir Lazarenko pointed out that we should do some 'mt' magic when
building with VC8 to get the "manifest" embedded to make fine stand-alone
binaries. The maketgz and the src/Makefile.vc6 files were adjusted
accordingly.
Daniel S (23 October 2007)
- Bug report #1812190 (http://curl.haxx.se/bug/view.cgi?id=1812190) points out
that libcurl tried to re-use connections a bit too much when using non-SSL
protocols tunneled over a HTTP proxy.
Daniel S (22 October 2007)
- Michal Marek forwarded the bug report
https://bugzilla.novell.com/show_bug.cgi?id=332917 about a HTTP redirect to
FTP that caused memory havoc. His work together with my efforts created two
fixes:
#1 - FTP::file was moved to struct ftp_conn, because is has to be dealt with
at connection cleanup, at which time the struct HandleData could be
used by another connection.
Also, the unused char *urlpath member is removed from struct FTP.
#2 - provide a Curl_reset_reqproto() function that frees
data->reqdata.proto.* on connection setup if needed (that is if the
SessionHandle was used by a different connection).
A long-term goal is of course to somehow get rid of how the reqdata struct
is used, as it is too error-prone.
- Bug report #1815530 (http://curl.haxx.se/bug/view.cgi?id=1815530) points out
that specifying a proxy with a trailing slash didn't work (unless it also
contained a port number).
Patrick M (15 October 2007)
- Fixed the dynamic CURLOPT_POSTFIELDS problem: this option is now static again
and option CURLOPT_COPYPOSTFIELDS has been added to support dynamic mode.
Patrick M (12 October 2007)
- Added per-protocol callback static tables, replacing callback ptr storage
in the connectdata structure by a single handler table ptr.
Dan F (11 October 2007)
- Fixed the -l option of runtests.pl
- Added support for skipping tests based on key words.
Daniel S (9 October 2007)
- Michal Marek removed the no longer existing return codes from the curl.1
man page.
Daniel S (7 October 2007)
- Known bug #47, which confused libcurl if doing NTLM auth over a proxy with
a response that was larger than 16KB is now improved slightly so that now
the restriction at 16KB is for the headers only and it should be a rare
situation where the response-headers exceed 16KB. Thus, I consider #47 fixed
and the header limitation is now known as known bug #48.
Daniel S (5 October 2007)
- Michael Wallner made the CULROPT_COOKIELIST option support a new magic
string: "FLUSH". Using that will cause libcurl to flush its cookies to the
CURLOPT_COOKIEJAR file.
- The new file docs/libcurl/ABI describes how we view ABI breakages, soname
bumps and what the version number's significance to all that is.
Daniel S (4 October 2007)
- I enabled test 1009 and made the --local-port use a wide range to reduce the
risk of failures.
- Kim Rinnewitz reported that --local-port didn't work with TFTP transfers.
This happened because the tftp code always uncondionally did a bind()
without caring if one already had been done and then it failed. I wrote a
test case (1009) to verify this, but it is a bit error-prone since it will
have to pick a fixed local port number and since the tests are run on so
many different hosts in different situations I'll add it in disabled state.
Yang Tse (3 October 2007)
- Fixed issue related with the use of ares_timeout() result.
Daniel S (3 October 2007)
- Alexey Pesternikov introduced CURLOPT_OPENSOCKETFUNCTION and
CURLOPT_OPENSOCKETDATA to set a callback that allows an application to
replace the socket() call used by libcurl. It basically allows the app to
change address, protocol or whatever of the socket.
- I renamed the CURLE_SSL_PEER_CERTIFICATE error code to
CURLE_PEER_FAILED_VERIFICATION (standard CURL_NO_OLDIES style), and made
this return code get used by the previous SSH MD5 fingerprint check in case
it fails.
- Based on a patch brought by Johnny Luong, libcurl now offers
CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 and the curl tool --hostpubmd5. They both
make the SCP or SFTP connection verify the remote host's md5 checksum of the
public key before doing a connect, to reduce the risk of a man-in-the-middle
attack.
Daniel S (2 October 2007)
- libcurl now handles chunked-encoded CONNECT responses
Daniel S (1 October 2007)
- Alex Fishman reported a curl_easy_escape() problem that was made the
function do wrong on all input bytes that are >= 0x80 (decimal 128) due to a
signed / unsigned mistake in the code. I fixed it and added test case 543 to
verify.
Daniel S (29 September 2007)
- Immanuel Gregoire fixed a problem with persistent transfers over SFTP.
Daniel S (28 September 2007)
- Adapted the c-ares code to the API change c-ares 1.5.0 brings in the
notifier callback(s).
Dan F (26 September 2007)
- Enabled a few more gcc warnings with --enable-debug. Renamed a few
variables to avoid shadowing global declarations.
Daniel S (26 September 2007)
- Philip Langdale provided the new CURLOPT_POST301 option for
curl_easy_setopt() that alters how libcurl functions when following
redirects. It makes libcurl obey the RFC2616 when a 301 response is received
after a non-GET request is made. Default libcurl behaviour is to change
method to GET in the subsequent request (like it does for response code 302
- because that's what many/most browsers do), but with this CURLOPT_POST301
option enabled it will do what the spec says and do the next request using
the same method again. I.e keep POST after 301.
The curl tool got this option as --post301
Test case 1011 and 1012 were added to verify.
- Max Katsev reported that when doing a libcurl FTP request with
CURLOPT_NOBODY enabled but not CURLOPT_HEADER, libcurl wouldn't do TYPE
before it does SIZE which makes it less useful. I walked over the code and
made it do this properly, and added test case 542 to verify it.
Daniel S (24 September 2007)
- Immanuel Gregoire fixed KNOWN_BUGS #44: --ftp-method nocwd did not handle
URLs ending with a slash properly (it should list the contents of that
directory). Test case 351 brought back and also test 1010 was added.
Daniel S (21 September 2007)
- Mark Davies fixed Negotiate authentication over proxy, and also introduced
the --proxy-negotiate command line option to allow a user to explicitly
select it.
Daniel S (19 September 2007)
- Rob Crittenden provided an NSS update with the following highlights:
o It looks for the NSS database first in the environment variable SSL_DIR,
then in /etc/pki/nssdb, then it initializes with no database if neither of
those exist.
o If the NSS PKCS#11 libnspsem.so driver is available then PEM files may be
loaded, including the ca-bundle. If it is not available then only
certificates already in the NSS database are used.
o Tries to detect whether a file or nickname is being passed in so the right
thing is done
o Added a bit of code to make the output more like the OpenSSL module,
including displaying the certificate information when connecting in
verbose mode
o Improved handling of certificate errors (expired, untrusted, etc)
The libnsspem.so PKCS#11 module is currently only available in Fedora
8/rawhide. Work will be done soon to upstream it. The NSS module will work
with or without it, all that changes is the source of the certificates and
keys.
Daniel S (18 September 2007)
- Immanuel Gregoire pointed out that public key SSH auth failed if no
public/private key was specified and there was no HOME environment variable,
and then it didn't continue to try the other auth methods. Now it will
instead try to get the files id_dsa.pub and id_dsa from the current
directory if none of the two conditions were met.
Dan F (17 September 2007)
- Added hooks to the test suite to make it possible to test a curl running
on a remote host.
- Changed some FTP tests to validate the format of the PORT and EPRT commands
sent by curl, if not the addresses themselves.
Daniel S (15 September 2007)
- Michal Marek made libcurl automatically append ";type=<a|i>" when using HTTP
proxies for FTP urls.
- Günter Knauf fixed LDAP builds in the Windows makefiles and fixed LDAPv3
support on Windows.
Dan F (13 September 2007)
- Added LDAPS, SCP and SFTP to curl-config --protocols. Removed and
fixed some AC_SUBST configure entries.
|
|
LICENSE= generic-nonlicense
due to
RESTRICTED= No re-distribution without agreement from Netscape
|
|
be redistributed, and that seems over the Non-Free line. (This may be
revisited if we re-address exactly what free-enough-for-pkgsrc-default
means, but it removes a case of "RESTRICTED w/o LICENSE".
|
|
I'll re-activate this later when the global license stuff is activated.
|
|
|
|
|
|
lot. Big changes but no functional change should be made.
Good bye long standing build order problem!
|
|
|
|
assignment to conditional. Include mk/emacs.mk lazily.
No functional changes intended.
|
|
Feyrer.
|
|
|
|
as reported in PR 29620 and compatible version have unresolved security issues.
Drop dependency on ns-flash and remove NS_NO_FLASH variable.
Bump PKGREVISION of navigator/communicator.
|
|
# Kazehakase-0.4.9 Release
* required GTK+ >= 2.12.0.
* removed some deprecated function usages.
* added default user-agent strting to rv:#{MOZILLA_VERSION} to
support full Gmail UI.
Last update on September 29, 2007 14:19
# Kazehakse-0.4.8 Release
* Minor bug fix
* Follow Glib 2.13.3 or later (Kouhei SUTOU)
* Fix bug about download progress bar at sidebar (Kouhei SUTOU, Thanks to Nobuyuki Tasaka)
Last update on August 30, 2007 01:11
# Kazehakase-0.4.7 Release
* Fixed minor bugs
* Supported newest GRegex(Kouhei SUTOU)
Last update on October 02, 2007 17:30
# Kazehakase-0.4.6 Release
Niku memo: Tochigi Wagyu (beef produced at Tochigi in Japan) is very tasty! We can eat it plain with a bit salt.
* Improved Gtk+ WebCore support (Hiroyuki Ikezoe)
* Improved IE backend (Takuro Ashie)
* Added preference UI for selecting layout engine (Kouhei Sutou)
* Fixed a bug that session saving doesn't work (Łukasz Krotowski)
* Fixed a bug that creating thumbnail may cause segmentation fault (Kouhei Sutou)
* Supported making libkazehakase.dll (Takuro Ashie, Kouhei Sutou)
* Omitted optional port specification in HTTP (Kouhei Sutou)
* Updated Czhech messages (Miroslav Kure)
Last update on July 09, 2007 23:07
# Kazehakase-0.4.5 Release
* Modularization rendering engines
* Adaptation to latest GTK+-WebCore
* Compiling with VC++ on windows (But there is no available rendering engine)
Last update on September 25, 2007 10:35
# Kazehakase-0.4.4.1 Release
fixed compile error on 0.4.4
Last update on June 17, 2007 15:42
# Kazehakase-0.4.4 Release
* Modularize for history searching (Hiroyuki IKEZOE)
* Drop to support of Rast
* XSM support (Hiroyuki IKEZOE)
* Suspend favicon auto searching because of Debian Bug Report #400533 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=400533 (Hiroyuki IKEZOE)
|
|
Noted by Daniel Horecki.
Ride recent 2.2.0 update.
|
|
Thu Sep 6 21:59:35 BST 2007 - surfraw 2.1.7
* Resumed making upstream releases.
Surfraw is now maintained by the Debian Surfraw-Devel Team. Please
report bugs to <surfraw-devel@lists.alioth.debian.org>, and feel
free to join us on the list.
There have been many changes since the last official release.
New elvi: alioth archpkg bbcnews cddb cia codesearch ctan cve
deblists deblogs debpts debsec debwiki discogs dmoz ebay
etym foldoc freedb fsfdir genpkg gutenberg happypenguin
imdb ixquick lastfm leodict musicbrainz opensearch
pgpkeys port rae rfc scholar scpan w3css w3html w3link
w3rdf wayback wikipedia yubnub
Removed elvi: appwatch britannica ftpfind ftpsearch jake
raging swhois
Elvi now live in ${PREFIX}/lib/surfraw
Use surfraw-update-path to add this directory to your path or
prefix elvi with sr or surfraw, eg "sr google foo bar".
Bookmarks can be defined in /etc/surfraw.bookmarks or
~/.surfraw.bookmarks. See /etc/surfraw.bookmarks for the format.
Bookmarks can be used with "sr [options] bookmarkname".
There is now a test suite. "make test" to run it or
see test/README.
For a full list of changes since the last release, see
debian/changelog. From this release onwards, changes will be
logged in ./ChangeLog as normal.
Tur Mar 30 01:21:03 CEST 2004 - surfraw 2.0.2
* Added bash completion support by Justin B Rye
* Do not set $DISPLAY when running in text mode
* Removed sharereactor elvi
Tue Feb 10 04:01:40 GMT 2004 - surfraw 2.0.1
Please note that the elvi have moved again, to /usr/lib/surfraw
If you used surfraw-update-path from version 2.0 to add the elvi
directory to your path, you will need to run it again, first with
-remove to remove the old path, then again with -add. To change your
path you will need to either log out and in again or source the
relevant config files.
* Moved elvi to /usr/lib/surfraw
* Updated docs for new elvi location
* Changed man page section for all elvi to 1sr
* Fixed surfraw help text
* Added man page links for pgpkeys, ebay and sharereactor
* Added linda override (and surfraw.dirs) for usr-lib-in-arch-all
* Added debhelper tokens to prerm/postinst
(they were in released 2.0-1 but not CVS)
* Rewrote man page surfraw.1.in, added man page elvi.1sr.in
Both go via autoconf.
* Removed old debian/surfraw.1
* Updated debian/surfraw.links to point elvi to elvi.1sr.gz
* Updated AUTHORS to hopefully include every contributor, ever.
* Changed a few "def"s to "defyn"s in surfraw.conf.in
* Fixed quoting so sr google foo "bar baz" qux works
* Makefile.am: Added missing files to EXTRA_DIST
* Added a debconf note (only visible if upgrading from 2.0-1)
explaining the elvi have moved again
* configure.in: changed to new AM_INIT_AUTOMAKE format,
specified minimum automake version 1.7
* updated surfraw.lsm with new URLs
* deleted debian/rules.save (old rules backup)
* Removed elvi:
+ britannica: gone subscription-only
+ swhois: all whois sites I can find have anti-harvester features
that stop us using them.
* Fixed elvi:
+ wikipedia - added missing quotes (could've sworn I did this already)
+ cnn - updated url
+ translate - corrected docs
* Moved debian/surfraw.links to links.IN in top dir, now uses autoconf
and is not debian-specific
* Makefile.am: Added install-data-hook to create links
* configure.in, elvi/Makefile.in: fixed ELVIDIR quoting
* added elvi/surfraw_elvi to CLEANFILES & removed it from cvs, as it is
generated on build.
* disabled ifs quoting in elvi that don't like it:
freedb, happypenguin, jake, rhyme, scaleplus,
sharereactor, thesaurus, webster, deblists.
* Added note to HACKING explaining how to disable ifs quoting
* synced NAMESPACE branch with HEAD
Please use the main HEAD branch from now on.
* links.IN: made links relative
* Converted debconf to po-debconf
* Eliminated templates.IN, as it confused po-debconf
* Deautoconfiscated the debian directory, as only templates went through
autoconf
Tue Dec 23 03:19:58 GMT 2003 - surfraw 2.0
New development team, see http://alioth.debian.org/projects/surfraw
* Moved elvi to /usr/bin/surfraw-elvi. (Closes: #209155, #192869, #201175)
* Provided surfraw-update-path to put new dir in path.
* Added sr as alias to surfraw.
* Added bookmark support and /etc/surfraw.bookmarks.
* New elvi: alioth, rfc, scpan, deblists. (Closes: #134498)
plus leodict and happypenguin by Moritz Muehlenhoff (Closes: #217799)
and wikipedia, also by Moritz Muehlenhoff (Closes: #223953)
and sharereactor, pgpkeys and ebay, also by Moritz Muehlenhoff
* Fixed elvi: altavista, debcontents, excite, jake, scaleplus,
slinuxdoc, sundocs, swhois, translate.
* amazon: fixed test (Closes: #163903) and -country, removed tag-id stuff.
* debcontents: changed options to SURFRAW_debcontents_*.
* sourceforge: added -type and -exact options.
* webster: added -t (thesaurus) option.
* debbugs: added options.
* Removed elvi: appwatch, ftpsearch, ftpfind, raging (sites defunct).
* Updated Debian Standards-Version to 3.6.1.0
* surfraw.in:
- Applied Brian Nelson's "-remote openURL" patch (Closes: #165967).
- Fixed browser selection (Closes: #118314).
* google -l/-lucky support (Closes: #127078, #128544).
* Added deja patch from Christian Garbs (Closes: #149600).
* debian/rules: changed to use DESTDIR.
* Force default browser to sensible-browser (Closes: #119357)
- This supercedes NMU changes (Closes: #200164, #201229, #149584)
- Change default browser in manpage (Closes: #113148)
* Rename stranslate back to translate (Closes: #141243)
* Make woffle not look for /usr/local/bin/surfraw (Closes: #156466)
* Add lynx to Recommends (Closes: #141242)
* Make surfraw lintian-clean
- Remove '(s)' from copyright
- Remove /etc conffile entries
* Kevin Kreamer <kkreamer@etherhogz.org> did this work.
* Easy bugs first
- fix type in README (Closes: #154304)
- s/README/README.gz/ in manpage (Closes: #164206)
* Added elvi for imdb, cddb, freedb and bbcnews written by Ian Beckwith.
* changed "Author(s)" to "Author" in debian/copyright
* removed debian/conffiles to prevent debhelper being so incredibly
"helpful" as to inlude conffiles *twice*
|
|
Changes Since Opera 9.23
Security
* Fixed an issue where external news readers and e-mail clients could be
used to execute arbitrary code, as reported by Michael A. Puls II.
See our advisory.
* Fixed an issue where scripts could overwrite functions on pages from
other domains. See the advisory. Issue reported to Opera by David Bloom.
This closes PR pkg/37185.
|
|
|
|
then automatically generate a PLIST that says "${PKGNAME} has no files".
* If PLIST_SRC and GENERATE_PLIST are not set in a package Makefile,
and no PLIST files exist, then fail during the package build with
PKG_FAIL_REASON.
* Remove "intentionally empty" PLISTs again.
Now, the easy way to say that a package installs no files is to just
add the following to the package Makefile:
PLIST_SRC= # empty
|
|
targets and into a GENERATE_PLIST variable definition. Remove some
unnecessary empty PLISTs as a result of properly setting GENERATE_PLIST.
|
|
that directly manipulate empty PLISTs.
Modify plist/plist.mk so that if the PLIST files are missing and no
GENERATE_PLIST is defined, then the package fails to build.
|
|
can handle packages having no PLIST files.
|
|
(Upstream does not provide a NEWS file.)
|
|
|
|
host any Python application which supports the Python WSGI interface. The
module would be suitable for use in hosting high performance production web
sites, as well as your average personal sites running on commodity web hosting
services.
|
|
Security fixes in this version:
MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows
MFSA 2007-35 XPCNativeWrapper pollution using Script object
MFSA 2007-34 Possible file stealing through sftp protocol
MFSA 2007-33 XUL pages can hide the window titlebar
MFSA 2007-32 File input focus stealing vulnerability
MFSA 2007-31 Browser digest authentication request splitting
MFSA 2007-30 onUnload Tailgating
MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
MFSA 2007-28 Code execution via QuickTime Media-link files
For more info, see http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.1.5/
|
|
PKGREVISION++
|
|
Suggested by veego.
|
|
KImageMapEditor
* Do not limit map elements to be at 2000 as bigger x/y coordinate.
Quanta Plus
* Fix recursive symlink handling.
* Fix add to project when saving a new file into a symlinked directory.
* Do not lose CSS selectors after editing inside the dialog if they are
repeated.
* Fix help button in the New Project wizard.
* Fix crashing while editing html with php files.
Kommander
* add DCOP method to get the winID
* add DCOP method to change the cursor to the wait cursor and back
* Make multiplying work correctly for floating point values.
* Do not remove the whole text after undoing the changes in the editor.
* Do not crash if opening a file the second time when the first try failed.
* Function str_findrev works now.
* Fix crash when diving by zero.
* Make function names case insensitive.
* Fix dcop() function (external DCOP).
* Add missing EOLs to array_values().
* Do not open files with no filename given.
* Fix crash on incorrect syntax.
* Fix input_file() function.
* Fix importing tables with empty cells.
* Use icon instead of "..." in the file selector.
* Fix ExecButton.setEnabled().
* Don't close the dialogs with ESC (just like in real applications).
* make @echo really work
|
|
Apart from many bugfixes, the ChangeLog mentions a new sqlite3 db backend,
improved DBUS support, libnotify support, comment feeds, automatic www
browser detection and improved proxy support.
|
|
Noted by dmcmahill.
|
|
|
|
|
|
Security fixes in this version:
MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows
MFSA 2007-35 XPCNativeWrapper pollution using Script object
MFSA 2007-34 Possible file stealing through sftp protocol
MFSA 2007-33 XUL pages can hide the window titlebar
MFSA 2007-32 File input focus stealing vulnerability
MFSA 2007-31 Browser digest authentication request splitting
MFSA 2007-30 onUnload Tailgating
MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.8/releasenotes/
|
|
|
|
Fix a number of security issues:
SA-2007-024 - Drupal Core - HTTP response splitting
SA-2007-025 - Drupal Core - Arbitrary code execution via installer.
SA-2007-026 - Drupal Core - Cross site scripting via uploads
SA-2007-029 - Drupal Core - User deletion cross site request forgery
SA-2007-030 - Drupal Core - API handling of unpublished comment
Bugs:
Redirect to home page after user registration requiring admin approval.
More correct wording since some modules will actually work despite warning.
variable search_cron_limit was not removed on search uninstall
Append to instead of overwrite #suffix.
hide administration pages links on module help pages if there are no admin links for the module
See http://drupal.org/node/184395 for all the details
|
|
|
|
|
|
Changes:
* Correct RAILS_GEM_VERSION regexp. Use =version gem requirement instead of
~>version so you don't get surprised by a beta gem in production. This
change means upgrading to 1.2.5 will require a boot.rb upgrade.
* Move custom inflections example so available before route generation.
* Add a new rake task to aid debugging of named routes.
* use Gem.find_name instead of search when freezing gems. Prevent false
positives for other gems with rails in the name. Closes #8729 [wselman]
* Fix syntax error in dispatcher than wrecked failsafe responses.
* Add Active Resource to rails:freeze:edge and drop Action Web Service.
* Give generate scaffold a more descriptive database message. Closes #7316
* Canonicalize RAILS_ROOT by using File.expand_path on Windows, which doesn't
have to worry about symlinks, and Pathname#realpath elsewhere, which
respects symlinks in relative paths but is incompatible with Windows. #6755
[Jeremy Kemper, trevor]
|
|
Changes:
* Depend on Action Pack 1.13.5
* Depend on Active Record 1.15.5
|
|
Changes:
* Backport: allow array and hash query parameters. Array route parameters are
converted/to/a/path as before. #6765, #7047, #7462 [bgipsy, Jeremy McAnally,
Dan Kubb, brendan, Diego Algorta Casamayou]
* Fix in place editor's setter action with non-string fields. #7418 [Andreas]
* Only accept session ids from cookies, prevents session fixation attacks.
* Change the resource seperator from ; to / change the generated routes to use
the new-style named routes. e.g. new_group_user_path(@group) instead of
group_new_user_path(@group). [pixeltrix]
* Integration tests: introduce methods for other HTTP methods. #6353 [caboose]
* Improve performance of action caching. Closes #8231 [skaes]
* Fix errors with around_filters which do not yield, restore 1.1 behaviour
with after filters. Closes #8891 [skaes]
* Allow you to delete cookies with options. Closes #3685
* Deprecate pagination. Install the classic_pagination plugin for forward
compatibility, or move to the superior will_paginate plugin. #8157
* Fix filtered parameter logging with nil parameter values. #8422 [choonkeat]
* Integration tests: alias xhr to xml_http_request and add a request_method
argument instead of always using POST. #7124
* Document caches_action. #5419 [Jarkko Laine]
* observe_form always sends the serialized form. #5271
* Update UrlWriter to accept :anchor parameter. Closes #6771. [octopod]
* Replace the current block/continuation filter chain handling by an
implementation based on a simple loop. Closes #8226 [Stefan Kaes]
* Return the string representation from an Xml Builder when rendering a
partial. #5044 [tpope]
* Cleaned up, corrected, and mildly expanded ActionPack documentation. Closes
#7190 [jeremymcanally]
* Small collection of ActionController documentation cleanups. Closes #7319
* Performance: patch cgi/session/pstore to require digest/md5 once rather than
per #initialize. #7583 [Stefan Kaes]
* Deprecation: verification with :redirect_to => :named_route shouldn't be
deprecated. #7525 [Justin French]
|
|
is used already for firefox and thunderbird.
|
|
|
|
Changes:
- Change how path's are encoded, to work around new strictness in
Template Toolkit's uri filter. SVN::Web now works with versions of
TT > 2.15.
- Adjust t/timedate-format.t to work correctly in non-English
locales. Fixes rt#25435.
|
|
|
|
1. The position of file handles is now reset to zero when CGI->new is called.
2. uploadInfo() now works across multiple object instances. Also, the first
tests for uploadInfo() were added as part of the fix.
Changes 3.28:
1. Applied patch from Allen Day that makes Cookie parsing RFC2109 compliant
attribute/values can be separated by commas as well as semicolons).
2. Applied patch from Stephan Struckmann that allows script_name() to be set correctly.
3. Fixed problem with url(-full) in which port number appears twice.
|
|
Depending sqlite version bump to 3,
need to update db, with dump/restore.
Bump PKGREVISION.
|
|
connectors (PgSQL and psycopg2) are also supported.
Update sqlite to version 3, which is what upstream recommends (both
trac and sqlite think sqlite2 is crufty). This will require a
dump/restore for those using sqlite 2 with trac.
|
