-
I'm currently taking a whack at improving rundown. Here's what's on my list at the moment:
1. Change the way parameters are passed so rundown will work on a php install with 'register globals' disabled
2. Smarter handling of form processing to deal with the escaped-quote problem (related to gpg_magic_quotes) and handle all input correctly
3. Workflow modifications to the forms to allow for...
2004-08-17 18:10:34 UTC by jeremyseitz
-
Logged In: YES
user_id=640884
After some research, here's the problem. It's a coding error
and a PHP configuration issue.
PHP has a configuration diretive named magic_quotes_gpc
which defines if all GET/POST/cookie data is automatically
escaped. This is off by default in the OpenBSD port of PHP.
This is a performance + security enhancement that many devs
on the php.net user forum...
2004-07-07 23:48:48 UTC by a3ulafia
-
It appears the rundown, which uses one database was
developed without much communication with contacts,
which is using another database. The access methods
differ, rundown using functions and contacts using
classes, as well as some of the SQL access methods,
rundown using UPDATE for all data that already exists
and contacts using REPLACE for most data and UPDATE for
others.
Obviously...
2004-07-07 23:33:11 UTC by a3ulafia
-
When editing a story through segment.php, pressing the
return key pops up the Javascript box to confirm the
deletion of the article you are editing. The expected
behaivior of pressing enter when editing a form is to
submit the fields to the database. Deletion should not
be the default, though this may be a browser issue.
This report comes from Mozilla 1.6 on Linux.
-lee.
2004-07-07 22:03:10 UTC by a3ulafia
-
Logged In: YES
user_id=640884
I'm using the 0.95 tarball. Here's the system specs:
OpenBSD 3.5 GENERIC#34 i386
OpenBSD port: mysql-server-4.0.20
PHP 4.3.7 (cli) (built: Jun 11 2004 16:47:39)
I managed to hack a solution by doing this on line 6 of
savechanges.php
$notes = str_replace("'","\'",$notes);
and before every mysql UPDATE or INSERT query but there's a
lot of them. There may...
2004-07-07 18:21:52 UTC by a3ulafia
-
Logged In: YES
user_id=1077000
Unable to reproduce problem using the 0.95 tar.gz release.
Will email Lee Azzarello - a3ulafia for more information /
clarification. Specifically:
1.) Can you describe in more detail where the problem
occurs? Include steb by step instructions (from login) to
recreate the problem. Include the name of the fields in
which you are entering single...
2004-07-07 13:38:10 UTC by vaw
-
hey. just saw that control room view has phone numbers
listed. i hope we can fix this soon becasue we really
dont want to be giving out people's personal and cell
phone numbers out to the morning crews, who at times,
are people we have never even met before.
thanks
ana.
2004-06-30 21:21:54 UTC by demnow
-
main menu->headlines->create new
Entering single quotes anywhere in the text into this box produces
an SQL syntax error and does not update the DB. Manually
escaping each single quote and submiting the form succeeds and
the resulting text is printed to the browser without the \ escape
character.
2004-06-21 21:08:07 UTC by a3ulafia
-
simonaustin committed patchset 2 of module rundown to the Rundown CVS repository, changing 40 files.
2004-04-19 17:03:25 UTC by simonaustin
-
simonaustin committed patchset 1 of module rundown to the Rundown CVS repository, changing 40 files.
2004-04-19 17:03:25 UTC by simonaustin
