summaryrefslogtreecommitdiff
path: root/extlib
AgeCommit message (Collapse)Author
2010-12-10extlibs updates: PEAR::Mail to 1.2.0, PEAR::Net_SMTP to 1.4.2 (need to go ↵Brion Vibber
together as a pair) PEAR::Mail updated to 1.2.0 from 1.1.4, fixes deprecation warnings on PHP 5.3, as well as: 1.2.0: • QA release - stable. • Updated minimum dependencies (Net_SMTP, PEAR, PHP) • Doc Bug #15620 Licence change to BSD • Bug #13659 Mail parse error in special condition • Bug #16200 - Security hole allow to read/write Arbitrary File _hasUnclosedQuotes() doesn't properly handle a double slash before an end quote (slusarz@curecanti.org, Bug #9137). • Make sure Net_SMTP is defined when calling getSMTPObject() directly (slusarz@curecanti.org, Bug #13772). • Add addServiceExtensionParameter() to the SMTP driver (slusarz@curecanti.org, Bug #13764). • Add a method to obtain the Net_SMTP object from the SMTP driver (slusarz@curecanti.org, Bug #13766). PEAR::Net_SMTP updated to 1.4.2 from 1.3.1, needed to support updated PEAR::Mail: 1.4.2: • Fixing header string quoting in data(). (Bug #17199) 1.4.1: • The auth() method now includes an optional $tls parameter that determines whether or not TLS should be attempted (if supported by the PHP runtime and the remote SMTP server). This parameter defaults to true. (Bug #16349) • Header data can be specified separately from message body data by passing it as the optional second parameter to ``data()``. This is especially useful when an open file resource is being used to supply message data because it allows header fields (like *Subject:*) to be built dynamically at runtime. (Request #17012) 1.4.0: • The data() method now accepts either a string or a file resource containing the message data. (Request #16962) 1.3.4: • All Net_Socket write failures are now recognized. (Bug #16831) 1.3.3: • Added getGreeting(), for retrieving the server's greeting string. (Request #16066) [needed for PEAR::Mail] • We no longer attempt a TLS connection if we're already using a secure socket. (Bug #16254) • You can now specify a debug output handler via setDebug(). (Request #16420) 1.3.2: • TLS connection only gets started if no AUTH methods are sent. (Bug #14944)
2010-11-27Net URL Mapper Path plex fileEvan Prodromou
2010-11-27Net_URL_Mapper 0.9.1Evan Prodromou
2010-11-19Drop PEAR HTTP_Request library -- no longer used since Services_oEmbed was ↵Brion Vibber
dropped. (HTTP_Request2 is separate and is widely used. Net_URL is also used separately by Net_URL_Mapper.)
2010-11-15Drop PEAR Services_oEmbed -- ended up replaced by our oEmbedHelper wrapper. ↵Brion Vibber
The extra validation available there is problematic, and their code for building HTML for us wasn't being used anyway.
2010-10-06Upgrade OAuth.php to the latest version.Zach Copley
2010-07-19Provisional OAuth, OpenID token check timing attack patchesBrion Vibber
2010-06-29Updated OMB_Yadis_XRDS for compatibility with php-openid 2.2.2: ↵0.9.3Brion Vibber
Auth_Yadis_XRDS::parseXRDS() is now declared static, and PHP 5.3 demands it say so on the subclass too. Compat fix branch for upstream: http://gitorious.org/libomb/libomb-statusnet/commit/6589dc073f93b65564931e1ab5865a34a0b228aa
2010-06-29Update to last upstream version of libomb: coding style updates, static call ↵Brion Vibber
fix, improved handling of invalid XRD URIs.
2010-06-29Update the (formerly) Janrain OpenID library to 2.2.2 -- bug fixes including ↵Brion Vibber
PHP 5.3 compatibility fix. Upstream release was tagged at: http://github.com/openid/php-openid/commit/a287b2d85e753c84b3b883ed8ee3ffe8692c8477
2010-05-03Merge branch 'testing' into 0.9.xBrion Vibber
2010-05-01Revert "Update PEAR::Mail to 1.2.0 release; fixes deprecation warnings ↵showBrion Vibber
running under PHP 5.3." This reverts commit 9fd02a4f11881b3e0e1b3029c7c9e85a799c5ced. Looks like there's some changes I missed in there and getting this in'll involve updating some other packages. Will poke it after 0.9.2.
2010-04-30Merge branch 'testing' into 0.9.xBrion Vibber
2010-04-30Update PEAR::Mail to 1.2.0 release; fixes deprecation warnings running under ↵Brion Vibber
PHP 5.3.
2010-04-30Update XMPPHP to last upstream release (r77), includes an XML quoting fix.Brion Vibber
2010-03-31Merge branch 'testing' of git@gitorious.org:statusnet/mainline into 0.9.xBrion Vibber
2010-03-30Ticket #1281: JID validation now more or less follows spec instead of ↵Brion Vibber
calling e-mail validator Basic splitting/validation code submitted via http://status.net/wiki/XMPP/JID_validation -- Copyright 2009 Patrick Georgi <patrick@georgi-clan.de> Licensed under ISC-L, which is compatible with everything else that keeps the copyright notice intact. Added PEAR Net_IDNA package to extlib to handle IDN normalization (also used by Validate's email verifier if present). * added test suite, supplemented my own test cases with JID validation and normalization test cases from libpurple * follows XMPP rules for validation of name part * fixes for normalization with non-ASCII names * will do domain checks if $config['email']['check_domain'] is on, checking for an XMPP-server SRV record or any lookup. (We don't actually need to ping those direct though.) * some more obscure stringprep validation rules aren't quite followed yet, but we err on the side of permissiveness. * we still don't actually let you save your address with a resource on it, as we strip resources when looking up users who've sent us presence or message updates. I would recommend saving the outgoing resource as a separate field if/when we add that..?
2010-03-23Move the bundled Net/LDAP2 library to the LdapCommon directoryCraig Andrews
2010-02-24Drop HTMLPurifier; we don't need its extra capabilities and we're already ↵Brion Vibber
using htmLawed which is lighter-weight.
2010-02-20Add HTMLPurifier to extlibEvan Prodromou
HTMLPurifier defangs arbitrary submitted HTML. We're using it in the OStatus plugin, but it may be valuable for other parts of the codebase (I think OEmbed might benefit, for example).
2010-02-15Temporary debug hack tracking down 'revoked accesstoken' issue with OMB postsBrion Vibber
2010-01-20Revert "DEBUG HACK: error checking for xml_parse in XMPPHP input stream"Evan Prodromou
This reverts commit 906450e2f5b78a1c6f2dec2e21b9b5841df210f4. 1) It was a quick debug hack 2) it doesn't meet the requirements for changing extlib/ libraries
2010-01-20DEBUG HACK: error checking for xml_parse in XMPPHP input streamBrion Vibber
2010-01-02add LGPLEvan Prodromou
2009-12-08include DB_DataObject 1.9.0Evan Prodromou
2009-11-16Cleanup for bug 1813: workaround sometimes-missing dl() in PHP 5.3 by ↵Brion Vibber
defining our own bogus function rather than attempting to patch upstream libs. This keeps our fix across upstream versions (or when loading upstream library from outside extlib) Note that fixes to OpenID libraries in commit fe9473ac7810d317e001a0fec19cbacaafc0c909 were lost in just such an update.
2009-11-16Bump to version 1.0.0Craig Andrews
2009-11-05Revert a OS X-specific change to PEAR MIME_Type that I accidentally commited.Zach Copley
2009-11-04Implement update avatar via API (/api/account/update_profile_image.format)Zach Copley
2009-11-04Added Net_LDAP2 to extlib, and add a skeleton LDAP pluginCraig Andrews
2009-11-02Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, ↵Brion Vibber
adding redirect handling and convenience functions. Caching support will be added in future work after unit tests have been added. * extlib: add PEAR HTTP_Request2 0.4.1 alpha * extlib: update PEAR Net_URL2 to 0.3.0 beta for HTTP_Request2 compatibility * moved direct usage of CURL and file_get_contents to HTTPClient class, excluding external-sourced libraries * adapted GeonamesPlugin for new HTTPResponse interface Note some plugins haven't been fully tested yet.
2009-11-02Revert "Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 ↵Brion Vibber
package, adding redirect handling and convenience functions." Going to restructure a little more before finalizing this... This reverts commit fa37967858c3c29000797e510e5f98aca8ab558f.
2009-11-02Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, ↵Brion Vibber
adding redirect handling and convenience functions. Caching support will be added in future work after unit tests have been added. * extlib: add PEAR HTTP_Request2 0.4.1 alpha * extlib: update PEAR Net_URL2 to 0.3.0 beta for HTTP_Request2 compatibility * moved direct usage of CURL and file_get_contents to HTTPClient class, excluding external-sourced libraries Note some plugins haven't been tested yet.
2009-10-31Merge branch '0.9.x' of git@gitorious.org:statusnet/mainline into 0.9.xEvan Prodromou
2009-10-31merge from testingEvan Prodromou
2009-10-31add a README warning devs from fracking around in extlib/Evan Prodromou
2009-10-30Bump to Auth_OpenID 2.1.3Craig Andrews
2009-10-21Gather all the Facebook stuff together in one placeZach Copley
2009-10-19Merge branch '0.9.x' of git@gitorious.org:statusnet/mainline into 0.9.xEvan Prodromou
2009-10-19Merge branch 'i18n-work' into i18n-0.9.xBrion Vibber
2009-10-16Fix a logic error in php-gettext's setlocale() check; if setlocale() failed ↵Brion Vibber
to return, we fall back to checking LANG environment variable. Now actually works when doing a setlocale *check* instead of a *set*. Submitting fix upstream, but as the package is currently unmaintained it may not make it in.
2009-10-15Merge branch '0.9.x' of git@gitorious.org:statusnet/mainline into 0.9.xEvan Prodromou
2009-10-15update DB_DataObject to 1.8.12Evan Prodromou
2009-10-13Commit upstream updates to php-gettext after the 1.0.7 release (but in 2006! :P)Brion Vibber
Fixes file magic checks on 64-bit systems. http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/17 http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/18 http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/19
2009-10-13Commit upstream updates to php-gettext after the 1.0.7 release (but in 2006! :P)Brion Vibber
Fixes file magic checks on 64-bit systems. http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/17 http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/18 http://bazaar.launchpad.net/~danilo/php-gettext/trunk/revision/19
2009-09-23Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: actions/requesttoken.php classes/File.php install.php lib/noticeform.php
2009-09-15Revert "Several fixes to make RabbitMQ a player."Evan Prodromou
This reverts commit c04987018cd6c845c6da7a92d9857d8c651f7022.
2009-09-13Check that 'dl' function is available and usable before trying to call it ↵Brion Vibber
with error suppression; if it's disabled or unavailable we end up with mysterious failures during installation or loading of libraries. Fixed for StatusNet installer as well as some external libraries that should be fixed upstream if they haven't already been: * PEAR * Auth/OpenID * Auth/Yadis
2009-09-11Several fixes to make RabbitMQ a player.Marcel van der Boom
* extlib/Stomp.php -spaces for tabs (we're on PEAR, right?) - send: initialize the $properties parameter as array() instead of null this prevents unsetting $headers if $properties was not set (besides that, it's the proper way to initialize an array) - subscribe: insert FIXME's on ActiveMQ specifics - ack: make sure the content-length header is set *and* is zero. I have seen the header set to '3' there but could not find where it came from, this is at least safe. - disconnect: typo in $headers variable - readFrame: use fgets() instead of gets() so that RabbitQ, which is more protocol strict can also play * extlib/Stomp/Frame.php - spaces for tabs - add note on possibly protocol violating linefeed * extlib/Stomp/Message.php - space for tabs - add content-length header for message * lib/stompqueuemanager.php - use the notice for logging, not the frame
2009-09-11Silence the NOTICE log messages on port not defined, we deal withMarcel van der Boom
that properly, and most of the time it is indeed not define