summaryrefslogtreecommitdiff
path: root/index.php
AgeCommit message (Collapse)Author
2010-11-30Merge branch 'master' into 0.9.xEvan Prodromou
Conflicts: lib/router.php
2010-11-26move xrd and hostmeta out of the OStatus plugin and into coreCraig Andrews
add event for setting up hostmeta, and use them in the OStatus plugin
2010-11-26Revert "Ticket #2796: don't allow arbitrary overriding of the 'action' class ↵Evan Prodromou
and other parameters pulled from the URL mapper." This reverts commit 4193a826d3500c1c8771e2a55ca197011fe637c8.
2010-11-19Ticket #2796: don't allow arbitrary overriding of the 'action' class and ↵Brion Vibber
other parameters pulled from the URL mapper. This protects against oddities such as manual invocation of the ClientError action, which can spoof error messages.
2010-09-03Suppress notices in index.php running under lighttpdBrion Vibber
2010-06-08added 2 missing authors, foudn automatically in git logsBrenda Wallace
2010-05-27Assigning my copyrights to the Free Software FoundationCraig Andrews
2010-04-27add rsd to the list of login actionsCraig Andrews
Allows rsd.xml to be reached on private sites. Fixes http://status.net/trac/ticket/2309
2010-03-22Merge branch 'testing' of git@gitorious.org:statusnet/mainline into 0.9.xBrion Vibber
Conflicts: lib/attachmentlist.php
2010-03-22Log backtraces for non-ClientException exceptions caught at the top-level ↵Brion Vibber
handler.
2010-03-16Pull back for now on switch of PEAR error mode to exceptions; seems to ↵Brion Vibber
trigger out exceptions at various times we don't want them. For instance this was throwing an exception for DB_DataObject::staticGet when there's no match... definitely not what we want when all our code expects to get a nice null. Example of this causing trouble: http://gitorious.org/statusnet/mainline/merge_requests/131 Revert "Don't attempt to retrieve the current user from the DB while processing a DB error" This reverts commit 68347691b0c7fb3f81415abd7fcdc5aec85cc554. Revert "Use PHP exceptions for PEAR error handling." This reverts commit d8212977ce7f911d4f9bd6e55f94aea059a86782.
2010-03-16Pull back for now on switch of PEAR error mode to exceptions; seems to ↵Brion Vibber
trigger out exceptions at various times we don't want them. For instance this was throwing an exception for DB_DataObject::staticGet when there's no match... definitely not what we want when all our code expects to get a nice null. Example of this causing trouble: http://gitorious.org/statusnet/mainline/merge_requests/131 Revert "Don't attempt to retrieve the current user from the DB while processing a DB error" This reverts commit 68347691b0c7fb3f81415abd7fcdc5aec85cc554. Revert "Use PHP exceptions for PEAR error handling." This reverts commit d8212977ce7f911d4f9bd6e55f94aea059a86782.
2010-03-16Fixed IE7 prompting the user to download OpenSearch description xml after ↵Jeffery To
login (for a private site) Flow: 1. Browser (IE7) is redirected to the login page. 2. Browser reads the page, sees OpenSearch descriptions, tries to download them. Each request gets recorded by SN as the page the user should be redirected to after logging in (returnto). 3. User logs in, then gets redirected to the returnto action, which is an OpenSearch description. The OpenSearch descriptions aren't sensitive so making them public in a private site should be okay. (I recall fixing this in 0.8.x... :-( )
2010-03-04Merge commit 'origin/testing' into 0.9.xBrion Vibber
Conflicts: lib/action.php lib/adminpanelaction.php
2010-03-03Making one time passwords work on private sitesJames Walker
2010-03-03remove debug lineBrion Vibber
2010-03-03Language setting fixes:Brion Vibber
- switch 'en_US' to 'en', fixes the "admin panel switches to Arabic" bug - tweak setting descriptions to clarify that most of the time we'll be using browser language - add a backend switch to disable language detection (should this be exposed to ui?)
2010-03-01Don't attempt to retrieve the current user from the DB while processing a DB ↵Craig Andrews
error
2010-03-01Use PHP exceptions for PEAR error handling.Craig Andrews
Allows for the common try/catch construct, which makes error handling cleaner and easier.
2010-01-31Add a robots.txt URL to the site rootEvan Prodromou
Adds a robots.txt file to the site root. Defaults defined by 'robotstxt' section of config. New events StartRobotsTxt and EndRobotsTxt to let plugins add information. Probably not useful if path is not /, but won't hurt anything, either.
2010-01-28lost config in index.php made all traffic go to masterEvan Prodromou
2010-01-28Revert "Revert "move RW setup above user get in index.php so remember_me works""Evan Prodromou
This reverts commit be7bca2303cc9900f2c1a746a10a785d9d95783c.
2010-01-28Revert "move RW setup above user get in index.php so remember_me works"Evan Prodromou
This reverts commit fa7895333724e314e2b32cb89f19a41069c554be.
2010-01-28move RW setup above user get in index.php so remember_me worksEvan Prodromou
2010-01-28always set up database_rw, regardless, so cached sessions workEvan Prodromou
2010-01-13don't write Inbox if on a read-only page, but encacheEvan Prodromou
2010-01-11add inbox to list of always-readwrite tablesEvan Prodromou
2009-12-18Set returnto when redirected to login of a private install (for 0.9.x)Jeffery To
Can't use returnToArgs() because we don't have an action object yet.
2009-11-17Fix ticket 1816: Database errors recorded as "Array"Brion Vibber
PEAR error backtrace lines are now correctly formatted as strings in debug log, roughly as debug_print_backtrace() does (but with argument values swapped out for types to avoid being overly verbose). Todo: exceptions and PEAR error objects should log backtraces the same way; right now it doesn't look like exceptions get backtraces logged. Todo: At one line per line, it's potentially tough to figure out what backtrace goes with what event if traffic is heavy; even if not heavy it's awkward to jump back into a log file after grepping to find the backtrace. Consider using a random per-event ID which can go in the log output -- bonus points for exposing the error ID to users so ops can track down actual error details in logs from a user report.
2009-11-12Added a User_username table that links the external username with a ↵Craig Andrews
StatusNet user_id Added EmailAuthenticationPlugin Added ReverseUsernameAuthenticationPlugin Changed the StartChangePassword and EndChangePassword events to take a user, instead of a nickname User::allowed_nickname was declared non-static, but used as if it was static, so I made the declaration static
2009-11-05Added an AutoRegister eventCraig Andrews
LDAP plugin can do autoregistration
2009-11-04Allow all API calls, even if the site is configured as private. TheZach Copley
API Actions will decide whether something requires auth or a redirect.
2009-10-30Allow non-users to view the site's xrds when the site is private. Getting to ↵Craig Andrews
closer to allow OpenID login on private sites.
2009-10-03more doxygenBrenda Wallace
2009-10-03added doxygenBrenda Wallace
2009-09-23Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: actions/requesttoken.php classes/File.php install.php lib/noticeform.php
2009-09-23revert output buffering (costly) for ETags (low priority)Evan Prodromou
2009-09-19handle Godaddy-style PATH_INFO which includes the scriptEvan Prodromou
2009-09-19@author tags updated -- only one entry per name nowBrenda Wallace
2009-09-17fixed up space on @author tagsBrenda Wallace
2009-09-16Updated csarven emails to csarven@status.net and removed dupesSarven Capadisli
2009-09-15dedupe evansEvan Prodromou
2009-09-15change all evans to evan@status.netEvan Prodromou
2009-09-14pulled @author from git logsBrenda Wallace
Conflicts: install.php
2009-09-14fixed indentation for the pear code stylesBrenda Wallace
2009-09-14lotsa of multiline if statements and function calls changed style to meat ↵Brenda Wallace
pear code style
2009-09-14fixed up if statementsBrenda Wallace
2009-09-14added most of the required doxygenBrenda Wallace
2009-09-13Generate ETags for pages which don't specify themselves.Craig Andrews
2009-08-27Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: EVENTS.txt actions/finishremotesubscribe.php actions/postnotice.php actions/public.php actions/remotesubscribe.php actions/showstream.php actions/updateprofile.php actions/userauthorization.php classes/laconica.ini lib/common.php lib/oauthstore.php lib/omb.php