Age | Commit message (Collapse) | Author |
|
trigger out exceptions at various times we don't want them.
For instance this was throwing an exception for DB_DataObject::staticGet when there's no match... definitely not what we want when all our code expects to get a nice null.
Example of this causing trouble: http://gitorious.org/statusnet/mainline/merge_requests/131
Revert "Don't attempt to retrieve the current user from the DB while processing a DB error"
This reverts commit 68347691b0c7fb3f81415abd7fcdc5aec85cc554.
Revert "Use PHP exceptions for PEAR error handling."
This reverts commit d8212977ce7f911d4f9bd6e55f94aea059a86782.
|
|
login (for a private site)
Flow:
1. Browser (IE7) is redirected to the login page.
2. Browser reads the page, sees OpenSearch descriptions, tries to
download them. Each request gets recorded by SN as the page the user
should be redirected to after logging in (returnto).
3. User logs in, then gets redirected to the returnto action, which is
an OpenSearch description.
The OpenSearch descriptions aren't sensitive so making them public in a
private site should be okay.
(I recall fixing this in 0.8.x... :-( )
|
|
Conflicts:
lib/action.php
lib/adminpanelaction.php
|
|
|
|
|
|
- switch 'en_US' to 'en', fixes the "admin panel switches to Arabic" bug
- tweak setting descriptions to clarify that most of the time we'll be using browser language
- add a backend switch to disable language detection (should this be exposed to ui?)
|
|
error
|
|
Allows for the common try/catch construct, which makes error handling cleaner and easier.
|
|
Adds a robots.txt file to the site root. Defaults defined by
'robotstxt' section of config. New events StartRobotsTxt and
EndRobotsTxt to let plugins add information. Probably not
useful if path is not /, but won't hurt anything, either.
|
|
|
|
This reverts commit be7bca2303cc9900f2c1a746a10a785d9d95783c.
|
|
This reverts commit fa7895333724e314e2b32cb89f19a41069c554be.
|
|
|
|
|
|
|
|
|
|
Can't use returnToArgs() because we don't have an action object yet.
|
|
PEAR error backtrace lines are now correctly formatted as strings in debug log, roughly as debug_print_backtrace() does (but with argument values swapped out for types to avoid being overly verbose).
Todo: exceptions and PEAR error objects should log backtraces the same way; right now it doesn't look like exceptions get backtraces logged.
Todo: At one line per line, it's potentially tough to figure out what backtrace goes with what event if traffic is heavy; even if not heavy it's awkward to jump back into a log file after grepping to find the backtrace. Consider using a random per-event ID which can go in the log output -- bonus points for exposing the error ID to users so ops can track down actual error details in logs from a user report.
|
|
StatusNet user_id
Added EmailAuthenticationPlugin
Added ReverseUsernameAuthenticationPlugin
Changed the StartChangePassword and EndChangePassword events to take a user, instead of a nickname
User::allowed_nickname was declared non-static, but used as if it was static, so I made the declaration static
|
|
LDAP plugin can do autoregistration
|
|
API Actions will decide whether something requires auth or a redirect.
|
|
closer to allow OpenID login on private sites.
|
|
|
|
|
|
Conflicts:
actions/requesttoken.php
classes/File.php
install.php
lib/noticeform.php
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Conflicts:
install.php
|
|
|
|
pear code style
|
|
|
|
|
|
|
|
Conflicts:
EVENTS.txt
actions/finishremotesubscribe.php
actions/postnotice.php
actions/public.php
actions/remotesubscribe.php
actions/showstream.php
actions/updateprofile.php
actions/userauthorization.php
classes/laconica.ini
lib/common.php
lib/oauthstore.php
lib/omb.php
|
|
|
|
|
|
|
|
|
|
|
|
Conflicts:
actions/login.php
actions/register.php
|
|
Conflicts:
actions/updateprofile.php
actions/userauthorization.php
classes/User_group.php
index.php
install.php
lib/accountsettingsaction.php
lib/logingroupnav.php
|
|
|
|
|
|
IE7+ will ask for this (opensearch/people and opensearch/notice) on every page access, and as the content is not sensitive, returning it is better than a 307 redirect.
|
|
If $config['site']['openidonly'] is set to true:
* the Login/Register pages will be removed from the navigation;
* directly accesses to the Login/Register pages will redirect to the
OpenID login page;
* most links to the Login/Register pages will link to the OpenID login
page instead.
The user will still need to set a password to access the API and RSS
feeds.
|