summaryrefslogtreecommitdiff
path: root/index.php
AgeCommit message (Collapse)Author
2010-03-16Pull back for now on switch of PEAR error mode to exceptions; seems to ↵Brion Vibber
trigger out exceptions at various times we don't want them. For instance this was throwing an exception for DB_DataObject::staticGet when there's no match... definitely not what we want when all our code expects to get a nice null. Example of this causing trouble: http://gitorious.org/statusnet/mainline/merge_requests/131 Revert "Don't attempt to retrieve the current user from the DB while processing a DB error" This reverts commit 68347691b0c7fb3f81415abd7fcdc5aec85cc554. Revert "Use PHP exceptions for PEAR error handling." This reverts commit d8212977ce7f911d4f9bd6e55f94aea059a86782.
2010-03-16Fixed IE7 prompting the user to download OpenSearch description xml after ↵Jeffery To
login (for a private site) Flow: 1. Browser (IE7) is redirected to the login page. 2. Browser reads the page, sees OpenSearch descriptions, tries to download them. Each request gets recorded by SN as the page the user should be redirected to after logging in (returnto). 3. User logs in, then gets redirected to the returnto action, which is an OpenSearch description. The OpenSearch descriptions aren't sensitive so making them public in a private site should be okay. (I recall fixing this in 0.8.x... :-( )
2010-03-04Merge commit 'origin/testing' into 0.9.xBrion Vibber
Conflicts: lib/action.php lib/adminpanelaction.php
2010-03-03Making one time passwords work on private sitesJames Walker
2010-03-03remove debug lineBrion Vibber
2010-03-03Language setting fixes:Brion Vibber
- switch 'en_US' to 'en', fixes the "admin panel switches to Arabic" bug - tweak setting descriptions to clarify that most of the time we'll be using browser language - add a backend switch to disable language detection (should this be exposed to ui?)
2010-03-01Don't attempt to retrieve the current user from the DB while processing a DB ↵Craig Andrews
error
2010-03-01Use PHP exceptions for PEAR error handling.Craig Andrews
Allows for the common try/catch construct, which makes error handling cleaner and easier.
2010-01-31Add a robots.txt URL to the site rootEvan Prodromou
Adds a robots.txt file to the site root. Defaults defined by 'robotstxt' section of config. New events StartRobotsTxt and EndRobotsTxt to let plugins add information. Probably not useful if path is not /, but won't hurt anything, either.
2010-01-28lost config in index.php made all traffic go to masterEvan Prodromou
2010-01-28Revert "Revert "move RW setup above user get in index.php so remember_me works""Evan Prodromou
This reverts commit be7bca2303cc9900f2c1a746a10a785d9d95783c.
2010-01-28Revert "move RW setup above user get in index.php so remember_me works"Evan Prodromou
This reverts commit fa7895333724e314e2b32cb89f19a41069c554be.
2010-01-28move RW setup above user get in index.php so remember_me worksEvan Prodromou
2010-01-28always set up database_rw, regardless, so cached sessions workEvan Prodromou
2010-01-13don't write Inbox if on a read-only page, but encacheEvan Prodromou
2010-01-11add inbox to list of always-readwrite tablesEvan Prodromou
2009-12-18Set returnto when redirected to login of a private install (for 0.9.x)Jeffery To
Can't use returnToArgs() because we don't have an action object yet.
2009-11-17Fix ticket 1816: Database errors recorded as "Array"Brion Vibber
PEAR error backtrace lines are now correctly formatted as strings in debug log, roughly as debug_print_backtrace() does (but with argument values swapped out for types to avoid being overly verbose). Todo: exceptions and PEAR error objects should log backtraces the same way; right now it doesn't look like exceptions get backtraces logged. Todo: At one line per line, it's potentially tough to figure out what backtrace goes with what event if traffic is heavy; even if not heavy it's awkward to jump back into a log file after grepping to find the backtrace. Consider using a random per-event ID which can go in the log output -- bonus points for exposing the error ID to users so ops can track down actual error details in logs from a user report.
2009-11-12Added a User_username table that links the external username with a ↵Craig Andrews
StatusNet user_id Added EmailAuthenticationPlugin Added ReverseUsernameAuthenticationPlugin Changed the StartChangePassword and EndChangePassword events to take a user, instead of a nickname User::allowed_nickname was declared non-static, but used as if it was static, so I made the declaration static
2009-11-05Added an AutoRegister eventCraig Andrews
LDAP plugin can do autoregistration
2009-11-04Allow all API calls, even if the site is configured as private. TheZach Copley
API Actions will decide whether something requires auth or a redirect.
2009-10-30Allow non-users to view the site's xrds when the site is private. Getting to ↵Craig Andrews
closer to allow OpenID login on private sites.
2009-10-03more doxygenBrenda Wallace
2009-10-03added doxygenBrenda Wallace
2009-09-23Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: actions/requesttoken.php classes/File.php install.php lib/noticeform.php
2009-09-23revert output buffering (costly) for ETags (low priority)Evan Prodromou
2009-09-19handle Godaddy-style PATH_INFO which includes the scriptEvan Prodromou
2009-09-19@author tags updated -- only one entry per name nowBrenda Wallace
2009-09-17fixed up space on @author tagsBrenda Wallace
2009-09-16Updated csarven emails to csarven@status.net and removed dupesSarven Capadisli
2009-09-15dedupe evansEvan Prodromou
2009-09-15change all evans to evan@status.netEvan Prodromou
2009-09-14pulled @author from git logsBrenda Wallace
Conflicts: install.php
2009-09-14fixed indentation for the pear code stylesBrenda Wallace
2009-09-14lotsa of multiline if statements and function calls changed style to meat ↵Brenda Wallace
pear code style
2009-09-14fixed up if statementsBrenda Wallace
2009-09-14added most of the required doxygenBrenda Wallace
2009-09-13Generate ETags for pages which don't specify themselves.Craig Andrews
2009-08-27Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: EVENTS.txt actions/finishremotesubscribe.php actions/postnotice.php actions/public.php actions/remotesubscribe.php actions/showstream.php actions/updateprofile.php actions/userauthorization.php classes/laconica.ini lib/common.php lib/oauthstore.php lib/omb.php
2009-08-26define LACONICA and accept LACONICA for backwards compatibilityEvan Prodromou
2009-08-25global search and replace for laconica -> statusnetEvan Prodromou
2009-08-25change LACONICA to STATUSNETEvan Prodromou
2009-08-25a distributed -> the distributedEvan Prodromou
2009-08-25change Laconica and Control Yourself to StatusNet in PHP filesEvan Prodromou
2009-08-21Merge branch '0.9.x' into openidpluginEvan Prodromou
Conflicts: actions/login.php actions/register.php
2009-08-21Merge branch '0.8.x' into 0.9.xEvan Prodromou
Conflicts: actions/updateprofile.php actions/userauthorization.php classes/User_group.php index.php install.php lib/accountsettingsaction.php lib/logingroupnav.php
2009-08-11Merge commit 'jeff-themovie/0.8.x-private-returnto' into 0.8.xCraig Andrews
2009-08-11Set returnto when redirected to login of a private installJeffery To
2009-08-11Added opensearch to the list of public actions.Jeffery To
IE7+ will ask for this (opensearch/people and opensearch/notice) on every page access, and as the content is not sensitive, returning it is better than a 307 redirect.
2009-08-10Added configuration option to only allow OpenID logins.Jeffery To
If $config['site']['openidonly'] is set to true: * the Login/Register pages will be removed from the navigation; * directly accesses to the Login/Register pages will redirect to the OpenID login page; * most links to the Login/Register pages will link to the OpenID login page instead. The user will still need to set a password to access the API and RSS feeds.