Timeline
09/14/01:
- 08:02 Changeset [1221]
-
- tags/RELEASE_1_2_1
- tags/RELEASE_1_2_1/docs
- tags/RELEASE_1_2_1/gallery/images/movie.thumb.jpg
- trunk/CVSROOT
This commit was manufactured by cvs2svn to create tag
'RELEASE_1_2_1'.
- 08:02 Changeset [1220] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-09-14 Bharat Mediratta <bharat@…>
- v1.2.1 ships!
09/13/01:
- 23:38 Changeset [1219] by
-
- trunk/gallery/save_photos.php
Added a link to the FAQ when there's an error.
- 19:33 Changeset [1218] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-09-13 Bharat Mediratta <bharat@…> (1.2.1-cvs-b5)
- Fixed bug "#461263: local upload don't work anymore!". Thanks to Jens Langner for the catch.
- 19:31 Changeset [1217] by
-
- trunk/gallery/save_photos.php
Don't prepend the 'http://' if the URL is actually a file on the local
filesystem. Fix for bug #461263.
- 19:28 Changeset [1216] by
-
- trunk/gallery/platform/fs_unix.php
- trunk/gallery/platform/fs_win32.php
Added fs_is_file()
- 08:54 Changeset [1215] by
-
- trunk/gallery/setup/write.inc
Tweaked the "don't forget to secure your gallery" instructions.
- 08:47 Changeset [1214] by
-
- trunk/gallery/setup/config_data.inc
Improved the wording of several prompts.
- 07:10 Changeset [1213] by
-
- trunk/gallery/classes/Album.php
- trunk/gallery/classes/AlbumItem.php
Check the return code in the rotate image code.
- 06:56 Changeset [1212] by
-
- trunk/gallery/util.php
Extended exec_internal() so that in debug mode it will capture the
STDERR output and print it out as well.
- 06:55 Changeset [1211] by
-
- trunk/gallery/platform/fs_unix.php
- trunk/gallery/platform/fs_win32.php
Added the $debugfile option to fs_exec().
- 06:15 Changeset [1210] by
-
- trunk/gallery/util.php
In preProcessImage, change the permissions of the temporary file created
to 755 for extra security.
- 05:25 Changeset [1209] by
-
- trunk/gallery/configure.sh
- trunk/gallery/secure.sh
Switched from using 'cat << EOF' to using 'echo "..."' since it's less
susceptible to problems with spurious windows-induced carriage returns.
09/12/01:
- 17:29 Changeset [1208] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
give da cvs version da bump.
- 17:27 Changeset [1207] by
-
- trunk/gallery/util.php
viewComment was referring to $album variable which somehow is usually magically defined, but not always.
09/11/01:
- 22:07 Changeset [1206] by
-
- trunk/gallery/init.php
Extended the hack prevention code.
- 06:39 Changeset [1205] by
-
- trunk/gallery/ChangeLog
2001-09-10 Bharat Mediratta <bharat@…> (1.2.1-cvs-b3)
- Fixed a bug that caused rotate images to appear with the wrong aspect ratio when using the auto-resize code, thanks to Edouard Lafargue
- 06:38 Changeset [1204] by
-
- trunk/gallery/view_photo.php
Instruct the auto-resize code to work from the raw dimensions, instead
of the resized ones.
- 06:16 Changeset [1203] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-09-10 Bharat Mediratta <bharat@…> (1.2.1-cvs-b3)
- Fixed several fairly serious security vulnerabilities thanks to timely info from Mary J. Alderdice and Scott Salvidio.
- Updated copyright notice.
- 06:14 Changeset [1202] by
-
- trunk/gallery/add_comment.php
- trunk/gallery/add_photos.php
- trunk/gallery/album_permissions.php
- trunk/gallery/albums.php
- trunk/gallery/create_user.php
- trunk/gallery/delete_album.php
- trunk/gallery/delete_photo.php
- trunk/gallery/delete_user.php
- trunk/gallery/do_command.php
- trunk/gallery/edit_appearance.php
- trunk/gallery/edit_caption.php
- trunk/gallery/edit_field.php
- trunk/gallery/edit_thumb.php
- trunk/gallery/highlight_photo.php
- trunk/gallery/index.php
- trunk/gallery/init.php
- trunk/gallery/login.php
- trunk/gallery/manage_users.php
- trunk/gallery/modify_user.php
- trunk/gallery/move_album.php
- trunk/gallery/move_photo.php
- trunk/gallery/platform/fs_unix.php
- trunk/gallery/platform/fs_win32.php
- trunk/gallery/progress_uploading.php
- trunk/gallery/rename_album.php
- trunk/gallery/resize_photo.php
- trunk/gallery/rotate_photo.php
- trunk/gallery/save_photos.php
- trunk/gallery/search.php
- trunk/gallery/session.php
- trunk/gallery/sort_album.php
- trunk/gallery/upgrade_album.php
- trunk/gallery/user_preferences.php
- trunk/gallery/util.php
- trunk/gallery/version.php
- trunk/gallery/view_album.php
- trunk/gallery/view_photo.php
- trunk/gallery/view_photo_properties.php
* Added security code to protect GALLERY_BASEDIR from getting overwritten
by a malicious user.
* Updated Copyright year.
- 06:12 Changeset [1201] by
-
- trunk/gallery/setup/index.php
Added code to protect the dynamic include() by providing a list of
valid pages that can be included.
- 06:09 Changeset [1200] by
-
- trunk/gallery/html_wrap/wrapper.header.default
Minor cosmetic improvements to make it clearer (in my mind) that we don't have
a security hole around the eval() call.
- 05:39 Changeset [1199] by
-
- trunk/gallery/classes/Album.php
- trunk/gallery/classes/AlbumDB.php
- trunk/gallery/classes/AlbumItem.php
- trunk/gallery/classes/Comment.php
- trunk/gallery/classes/Database.php
- trunk/gallery/classes/EverybodyUser.php
- trunk/gallery/classes/Image.php
- trunk/gallery/classes/NobodyUser.php
- trunk/gallery/classes/User.php
- trunk/gallery/classes/UserDB.php
- trunk/gallery/classes/database/mysql/Database.php
- trunk/gallery/classes/gallery/User.php
- trunk/gallery/classes/gallery/UserDB.php
- trunk/gallery/classes/nuke5/AdminUser.php
- trunk/gallery/classes/nuke5/User.php
- trunk/gallery/classes/nuke5/UserDB.php
Updated Copyright.
09/10/01:
- 19:12 Changeset [1198] by
-
- trunk/gallery/UPGRADING
Added warning about html_wrap files in v1.2 section.
- 19:10 Changeset [1197] by
-
- trunk/gallery/UPGRADING
Added notes on upgrading from v1.1 to v1.2
- 10:01 Changeset [1196] by
-
- trunk/gallery/album_permissions.php
correctNobody() and correctEverybody() now receive their array
by reference, so we don't pass it in by reference from here anymore.
- 10:01 Changeset [1195] by
-
- trunk/gallery/util.php
correctNobody() and correctEverybody() now receive their array
by reference (instead of making the caller pass it in by reference)
- 09:59 Changeset [1194] by
-
- trunk/gallery/setup/write.inc
Oops, missed a fopen.
- 09:58 Changeset [1193] by
-
- trunk/gallery/setup/write.inc
use fs_fopen() instead of fopen()
- 09:51 Changeset [1192] by
-
- trunk/gallery/ChangeLog
2001-09-10 Bharat Mediratta <bharat@…> (1.2.1-cvs-b2)
- Fixed a harmless but annoying bug in Gallery_UserDB::getUidList() where we were failing to use the full pathname to refer to a file.
- 09:49 Changeset [1191] by
-
- trunk/gallery/classes/gallery/UserDB.php
Fixed a bug in getUidList() where we were not passing the full path
to fs_is_dir() causing it to examine a non-existent file.
- 07:01 Changeset [1190] by
-
- trunk/gallery/version.php
Bumped to v1.2.1-cvs-b2
- 07:00 Changeset [1189] by
-
- trunk/gallery/ChangeLog
2001-09-09 Bharat Mediratta <bharat@…> (1.2.1-cvs-b2)
- Fixed the sporadic session timeout bug! It was caused by the click counter code stuffing way too much data into the cookie. Cookies have a 1024 byte limit and the new stuff we were putting in would eventually cause the session id to drop out. D'oh!
- 06:58 Changeset [1188] by
-
- trunk/gallery/view_album.php
- trunk/gallery/view_photo.php
Moved the viewedXXX counters out of the cookie and into the session.
By putting them in the cookie we were eventually overflowing the cookie
(which has a limit of 1024 bytes) causing the session to evaporate
(leading to all kinds of nasty bugs)
- 06:32 Changeset [1187] by
-
- trunk/gallery/save_photos.php
Added the extra argument to fs_import_filename() calls that tells it that
we're going to use the result in an exec call (which causes it to wrap
the text in quotations if it contains a space character).
- 06:31 Changeset [1186] by
-
- trunk/gallery/util.php
Changed fs_exec() call to exec_internal() where we import the filename
into the platform specific style before passing it off.
- 06:07 Changeset [1185] by
-
- trunk/gallery/setup/functions.inc
- trunk/gallery/setup/index.php
- trunk/gallery/util.php
Changed calls to exec() to use fs_exec()
09/09/01:
- 22:31 Changeset [1184] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-09-09 Bharat Mediratta <bharat@…> (1.2.1-cvs-b1)
- Fixed issues with sucking images via the web:
- Fixed timeout bug when parsing large HTML files
- Prepend http: when no scheme is present (both initially and on the results of parsed data)
- 22:30 Changeset [1183] by
-
- trunk/gallery/save_photos.php
When sucking URLs:
- Fixed timeout bug when parsing large HTML files
- Prepend http: when no scheme is present (both initially and on the results of parsed data)
- 21:27 Changeset [1182] by
-
- trunk/gallery/errors/configmode.php
- trunk/gallery/errors/needinit.php
- trunk/gallery/errors/reconfigure.php
- trunk/gallery/errors/unconfigured.php
Forgot to prepend $GALLERY_BASEDIR to the help include.
- 21:10 Changeset [1181] by
-
- trunk/gallery/ChangeLog
2001-09-09 Bharat Mediratta <bharat@…> (1.2.1-cvs)
- It turns out that mod_rewrite requires the FollowSymLinks? option enabled (thanks to Dan Brown for catching this). The setup wizard will now turn it on for you.
- 21:08 Changeset [1180] by
-
- trunk/gallery/setup/.htaccess
- trunk/gallery/setup/mod_rewrite.template
Added "Options FollowSymLinks?". This option is required for mod_rewrite
to work properly.
- 21:07 Changeset [1179] by
-
- trunk/gallery/view_photo.php
Partial fix for bug #460059 -- we weren't closing the table row
at the end of the caption right before the comments.
09/08/01:
- 22:36 Changeset [1178] by
-
- trunk/gallery/setup/functions.inc
Check NetPBM files to make sure they're executable in check_graphics()
- 20:50 Changeset [1177] by
-
- trunk/gallery/errors/configmode.php
- trunk/gallery/errors/needinit.php
- trunk/gallery/errors/reconfigure.php
Added closing </body> and </html> tags (thanks Jeff Kilbride)
- 20:38 Changeset [1176] by
-
- trunk/gallery/README
Tweaked the FTP instructions for clarity.
- 20:11 Changeset [1175] by
-
- trunk/gallery/ChangeLog
- Extended the configure instruction pages to have links to the FAQ and the mailing lists
- 20:05 Changeset [1174] by
-
- trunk/gallery/errors/configmode.php
- trunk/gallery/errors/needinit.php
- trunk/gallery/errors/reconfigure.php
- trunk/gallery/errors/unconfigured.php
Added a link to the configure_help info.
- 20:04 Changeset [1173] by
-
- trunk/gallery/errors/configure_instructions.php
Added FTP instructions.
- 20:04 Changeset [1172]
-
- branches/skin-job-branch/gallery/errors/configure_help.php
This commit was manufactured by cvs2svn to create branch
'skin-job-branch'.
- 20:04 Changeset [1171] by
-
- trunk/gallery/errors/configure_help.php
Brief instructions about what to do when there is a configuration
problem.
- 08:00 Changeset [1170] by
-
- trunk/gallery/ChangeLog
2001-09-08 Bharat Mediratta <bharat@…> (1.2.1-cvs)
- Dial down the error reporting (in case it's turned on for the server) for now. We'll properly address this in v2.0
- Fixed a bug in the way that we were detecting HTTPS that was accidentally causing false positives on some systems.
- 07:57 Changeset [1169] by
-
- trunk/gallery/init.php
* Dial down the error reporting (in case it's turned on for the server)
for now. We'll properly address this in v2.0
* Fixed a bug in the way that we were detecting HTTPS that was
accidentally causing false positives on some systems.
- 03:18 Changeset [1168] by
-
- trunk/gallery/ChangeLog
2001-09-07 Bharat Mediratta <bharat@…> (1.2.1-cvs)
- Fixed bug #459471 where you get "Cannot redeclare fs_copy()" in the config wizard. This only happens on older versions of PHP like 4.0.1pl2
- Fixed a bug in the style sheet link function (thanks to Tony Clayton) that caused it to return a link in "/css" when upgrading from older versions of Gallery.
- 03:13 Changeset [1167] by
-
- trunk/gallery/util.php
Fixed a bug in the style sheet link function (thanks to Tony Clayton)
that caused it to return a link in "/css" when upgrading from older versions
of Gallery.
- 03:11 Changeset [1166] by
-
- trunk/gallery/version.php
Changed version to v1.2.1-cvs
- 03:11 Changeset [1165] by
-
- trunk/gallery/setup/init.php
Changed require()'s to include()'s for the platform files since it's
conditional which one we load and older versions of PHP4 (like
PHP4.0.1pl2) complain if you load them both.
09/07/01:
- 07:01 Changeset [1164]
-
- tags/RELEASE_1_2
- tags/RELEASE_1_2/docs
- tags/RELEASE_1_2/gallery/images/movie.thumb.jpg
- trunk/CVSROOT
This commit was manufactured by cvs2svn to create tag 'RELEASE_1_2'.
- 07:01 Changeset [1163] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
- At long last, v1.2!
- 06:51 Changeset [1162] by
-
- trunk/gallery/edit_thumb.php
Changed the url code to use $gallery->album->getAlbumDirURL("highlight") (instead
of "thumb") because otherwise it might try to load the thumbnail from your mirror
site which will cause SecurityExceptions? in the JVM.
09/02/01:
- 06:51 Changeset [1161] by
-
- trunk/gallery/classes/Album.php
The last fix to setNestedProperties would omit the final item in each
album. Fixed by Jeff Kilbride.
08/31/01:
- 07:30 Changeset [1160] by
-
- trunk/gallery/ChangeLog
Amended:
- Set the umask before copying files and making directories (and restore it when we're done) so that we avoid any potential issues if the umask is in some weird state. Thanks to Jeff Kilbride for the patch.
- 07:19 Changeset [1159] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
- Set the umask before copying files and making directories (and restore it when we're done) so that we avoid any potential issues if the umask is in some weird state.
- 07:18 Changeset [1158] by
-
- trunk/gallery/platform/fs_unix.php
- trunk/gallery/platform/fs_win32.php
* Added fs_mkdir(). When making directories, clear the umask and then restore it
when we're done.
* When copying files, set the umask to 0133 then restore it when we're done.
(this should get rid of the executable bit)
- 07:16 Changeset [1157] by
-
- trunk/gallery/classes/Album.php
When creating albums:
* Changed mkdir($dir, 0777) to fs_mkdir($dir, 0755)
08/30/01:
- 18:59 Changeset [1156] by
-
- trunk/gallery/classes/Album.php
Fixed off-by-one error in setNestedProperties(). Photos are indexed
from 1..n, not 0..n-1
- 06:07 Changeset [1155] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
- Potentially fixed a bug on PHP 4.0.1 where it complains that the fs_XXX methods are redefined. This is happening because the require() method fires even when the line it's on never gets executed. Replace those with include().
- 06:05 Changeset [1154] by
-
- trunk/gallery/init.php
Changed all require()'s inside flow constructs to be include()'s.
require() is always replaced with the file, even if the line isn't
executed. Instead, we really want to be using include() which will
only fire if the line is actually used. This potentially fixes problems
with earlier versions of PHP.
- 06:04 Changeset [1153] by
-
- trunk/gallery/errors/configmode.php
- trunk/gallery/errors/configure_instructions.php
- trunk/gallery/errors/needinit.php
- trunk/gallery/errors/reconfigure.php
- trunk/gallery/errors/unconfigured.php
Added instructions for configuring under Windows.
- 05:55 Changeset [1152] by
-
- trunk/gallery/setup/write.inc
Added Win32 instructions for securing the gallery.
08/24/01:
- 19:52 Changeset [1151] by
-
- trunk/gallery/ChangeLog
2001-08-24 Bharat Mediratta <bharat@…>
- Upped the quality of the ppmtojpeg operation to 95. This is the highest quality setting recommended by the jpeg folks and should minimize image degradation when processing jpeg images.
- 19:51 Changeset [1150] by
-
- trunk/gallery/util.php
Set the quality of ppmtojpeg to 95.
- 08:54 Changeset [1149] by
-
- trunk/gallery/classes/Album.php
Minor print statement change.
- 08:53 Changeset [1148] by
-
- trunk/gallery/README
Updated to reflect the fact that gallery_style.css has been broken
out into standalone_style and embedded_style.
08/21/01:
- 17:39 Changeset [1147] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/edit_caption.php
- trunk/gallery/version.php
fixed IE6 display bug in edit_caption input field
- 08:14 Changeset [1146]
-
- tags/oh_point_one
This commit was manufactured by cvs2svn to create tag 'oh_point_one'.
- 08:14 Changeset [1145] by
-
Initial import of the new docs module.
- 08:14 Changeset [1144]
-
- branches/one_point_oh
- trunk/CVSROOT
- trunk/gallery
- trunk/java
This commit was manufactured by cvs2svn to create branch 'one_point_oh'.
- 08:14 Changeset [1143] by
-
- trunk/docs
- trunk/docs/dev
- trunk/docs/dev/g20_edit_dialog_api
Initial revision
- 08:03 Changeset [1142] by
-
- branches/skin-job-branch/gallery/classes/Album.php
- branches/skin-job-branch/gallery/classes/AlbumDB.php
- branches/skin-job-branch/gallery/save_photos.php
- branches/skin-job-branch/gallery/setup/config_data.inc
- branches/skin-job-branch/gallery/setup/index.php
- branches/skin-job-branch/gallery/util.php
merging trunk changes into branch
- 08:01 Changeset [1141] by
-
- trunk/gallery/setup/config_data.inc
Added extra backslashes to c:\windows\temp so that it displays correctly.
08/20/01:
- 18:44 Changeset [1140] by
-
- trunk/gallery/setup/index.php
Changed require_once("init.php") to require("init.php") for compatibility
with older versions of PHP4.
- 07:20 Changeset [1139] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-08-20 Bharat Mediratta <bharat@…> (1.2-cvs-b16)
- Fixed a minor bug that would cause index-out-of-bounds errors when trying to move albums. The error is visible in Netscape, but not in IE. The function would still work, but it would look bad.
- 07:18 Changeset [1138] by
-
- trunk/gallery/util.php
Two changes to printNestedVals():
* replaced a for loop that generates strings with str_repeat()
* Added a bounds-check to the code that checks to see if the child
album is the same as the one we're moving. Without the bounds check
we'll get index-out-of-bounds errors from the Album.
08/16/01:
- 07:38 Changeset [1137] by
-
- trunk/gallery/save_photos.php
Reworked the HTML parsing code to be more choosy about what it considers
to be an image file name. This takes care of the behaviour where it
sometimes mistakes text with a image tag (eg, any random text that
contains .jpg) as an actual reference to an image.
08/15/01:
- 22:12 Changeset [1136] by
-
- trunk/gallery/ChangeLog
- trunk/gallery/version.php
2001-08-15 Bharat Mediratta <bharat@…> (1.2-cvs-b15)
- Fixed a serious bug that could cause album corruption in large albums. The way that we were serializing data files had a race condition; if you have two users who modify an album at the same time (one of them might just be updating a click count) you will wind up with a mangled data file.
- 22:09 Changeset [1135] by
-
- trunk/gallery/classes/Album.php
- trunk/gallery/classes/AlbumDB.php
- trunk/gallery/classes/gallery/User.php
- trunk/gallery/classes/gallery/UserDB.php
Switch to using safe_serialize() when saving data files.
- 22:09 Changeset [1134] by
-
- trunk/gallery/util.php
Added safe_serialize() function that creates a randomly named temp
file, writes to that file, moves the original to a backup and then
renames the temp file to be the target file.
