DokuWiki

It's better when it's simple

User Tools

Site Tools


changes

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
changes [2017-03-09 00:57]
86.121.178.131
changes [2018-06-05 22:10] (current)
Klap-in
Line 1: Line 1:
-hhhh 
- 
 ====== Changelog ====== ====== Changelog ======
  
Line 9: Line 7:
 There is some information regarding the [[install:​upgrade|upgrade]]-process. There is some information regarding the [[install:​upgrade|upgrade]]-process.
  
-Changes marked with :!: need some attention on upgrading!+**Changes marked with :!: need some attention on upgrading!**
  
-===== Release 2017-02-19b “Frusterick Manners” =====+===== Release 2018-04-22a Release “Greebo” ===== 
 + 
 +  * This release requires **PHP 5.6** at least! (Red Hat Enterprise Linux does not support beyond PHP 5.5) 
 +  * PHP 7.2 Support and improvements for PHP 7.3 support 
 +  * New form on search page with more search tools :!: Plugins which modified that page may need adjustments,​ e.g. [[plugin:​tagging]] Plugin 
 +    * ability to filter and sort results by time! 🎉 
 +  * Sending now a ''​manifest.json''​ to let the user add DokuWiki to the homescreen 
 +  * Re-factored section edit. :!: Plugins which insert own [[devel:​section_editor|section edit buttons]] need adjustments,​ e.g. [[plugin:​wrap]] Plugin 
 +  * updated LESS compiler :!: [[devel:​templates|Template]] authors may experience some incompatibilities 
 +  * new Action Dispatcher :!: Plugin authors handling [[devel:​event:​ACTION_ACT_PREPROCESS]] may encounter slight differences 
 +  * new [[https://​www.patreon.com/​posts/​command-line-15335339|Command Line Plugins]] 
 +  * new [[https://​www.patreon.com/​posts/​menus-14160215|Menu system]] :!: template authors may want to integrate them (see [[devel:​menus|Menu]]) 
 +  * improved features in bin/​wantedpage.php CLI 
 +  * better cursor handling when inserting multiple images from media popup 
 +  * [[syntax_highlighting|additional options]] for GeShi syntax highlighting 
 + 
 +=== Hotfix === 
 + 
 +  * Hotfix 2018-04-22a 
 +    * fix missing "you are here" [[issue>​2329]] 
 +    * readd missing password reset interface [[issue>​2349]] 
 +    * fix page unlocking when canceling edits [[issue>​2350]] 
 +    * better support for creating pages from search [[issue>​2355]] 
 +    * problems with installing plugin zips on some systems [[issue>​2361]] 
 +    * fixed draft recovering 
 + 
 +===== Release 2017-02-19e “Frusterick Manners” =====
  
   * new Admin screen with plugins being able to add their own icons :!: 3rd party templates need adjustments   * new Admin screen with plugins being able to add their own icons :!: 3rd party templates need adjustments
Line 23: Line 47:
   * File usage list in media manager   * File usage list in media manager
   * Various improvements,​ language updates and bug fixes   * Various improvements,​ language updates and bug fixes
 +  * :!: XMLRPC is only available for PHP 5.4 and higher due to [[issue>​1947|usage of certain PHP syntax]]
  
 === Hotfix === === Hotfix ===
  
-  * Hotfix 2017-02-19a : fixes installation issue [[issue>​1852]] and media overwrite issue [[issue>​1853]]. +  * Hotfix 2017-02-19a:​ fixes installation issue [[issue>​1852]] and media overwrite issue [[issue>​1853]]. 
-  * Hotfix 2017-03-08b : fixes security token [[issue>​1883]] and media manager overwrite issue [[issue>​1864]] +  * Hotfix 2017-02-19b: fixes security token [[issue>​1883]] and media manager overwrite issue [[issue>​1864]]
-===== Release 2016-06-26a “Elenor of Tsort” =====+  * Hotfix 2017-02-19c:​ fixes reflected XSS issue [[issue>​2061]] 
 +  * Hotfix 2017-02-19d:​ fixes sanitation of $language [[issue>​2080]];​ fixes RSS syntax XSS [[issue>​2081]] 
 +  * Hotfix 2017-02-19e:​ fixes rendering null $language going to GeSHi [[issue>​2088]] 
 + 
 +===== Release 2016-06-26e “Elenor of Tsort” =====
  
   * New [[plugin:​authPDO]] plugin; [[plugin:​authmysql]] and [[plugin:​authpgsql]] are deprecated :!:   * New [[plugin:​authPDO]] plugin; [[plugin:​authmysql]] and [[plugin:​authpgsql]] are deprecated :!:
Line 39: Line 68:
   * Support for PHP's builtin web server   * Support for PHP's builtin web server
   * Various improvements,​ language updates and bug fixes   * Various improvements,​ language updates and bug fixes
 +  * Old authentication configurations are not loaded anymore. Requires for some a manual update of configuration settings. (You need to change e.g. ''​$conf['​auth'​]['​ldap'​]''​ -> ''​$conf['​plugin'​]['​authldap'​]''​ and ''​$conf['​authtype'​] = '​ldap'''​ -> ''​$conf['​authtype'​] = '​authldap'''​.) [[issue>​1535]]
  
 === Hotfix === === Hotfix ===
  
   * Hotfix 2016-06-26a:​ fixes [[issue>​1616]] issue with authad.   * Hotfix 2016-06-26a:​ fixes [[issue>​1616]] issue with authad.
 +  * Hotfix 2016-06-26b:​ fixes security issue [[issue>​1883]],​ and adjusts session ID check to specification. 
 +  * Hotfix 2016-06-26c:​ fixes reflected XSS issue [[issue>​2061]] 
 +  * Hotfix 2016-06-26d:​ What changed???​ 
 +  * Hotfix 2016-06-26e:​ fix rendering null $language going to GeSHi [[issue>​2088]]
  
 ===== Release 2015-08-10a “Detritus” ===== ===== Release 2015-08-10a “Detritus” =====
Line 64: Line 97:
   * Hotfix 2015-08-10a:​ fix for issue [[issue>​1296]] with Extension Manager which prevented installing tarballs and issue [[issue>​1302]] which prevented links to Windows Shares to work   * Hotfix 2015-08-10a:​ fix for issue [[issue>​1296]] with Extension Manager which prevented installing tarballs and issue [[issue>​1302]] which prevented links to Windows Shares to work
  
-===== Release 2014-09-29d “Hrun” ===== 
- 
-  * It's now possible to customize single strings of the [[localization#​changing_some_localized_texts_and_strings_in_your_installation|localization]] 
-  * New history function to see how a wiki looked at a certain time (no user interface yet, details at [[date at]])  
-  * Security fix for AD/LDAP auth plugin related problem ([[http://​www.freelists.org/​post/​dokuwiki/​Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication|Details here]]) 
-  * Some caching in the database auth plugins 
-  * Improved CLI interface for better command line tools 
-  * Support for external Audio/Video sources 
-  * Various improvements and bug fixes  
- 
-Note: When you had disabled the [[config:​compress|'​compress'​ config setting]], you would enable it again since this release. 
- 
-=== Hotfix === 
- 
-  * Hotfix 2014-09-29a:​ fixes for login problems caused by certain PCRE versions and changes in the recent Chrome release 
-  * Security Hotfix 2014-09-29b:​ prevents XSS attack via SWF uploads 
-  * Security Hotfix 2014-09-29c:​ fixes privilege escalation in RPC API 
-  * Security Hotfix 2014-09-29d:​ fixes a XSS vulnerability in the user manager 
- 
-===== Release 2014-05-05e “Ponder Stibbons” ===== 
- 
-  * [[plugin:​Extension]] Manager 
-  * [[wiki:​syntax#​supported_media_formats|Audio & video]] support 
-  * New and more file icons (as e.g. seen on [[:mime]]) 
-  * Show login form at denied access 
-  * Show a domain dropdown when [[plugin:​authad#​other_options|multiple AD domains]] are configured 
-  * Added user page linking by adding the [[config:​showuseras]] config option: "Full name as interwiki user link". Configurable via the [[interwiki]] configuration 
-  * Added a more versatile Revision selection to the diff page of articles 
-  * :!: Fallback of old date format removed: early wikis need to update their [[config:​dformat]] config setting 
- 
-:!: When the layout seems broken, you may be affected by an [[issue>​683|issue in the CSS compressor]]. Please try disabling the [[config:​compress|'​compress'​ config setting]]. 
- 
-=== Hotfix === 
- 
-  * Security Hotfix 2014-05-05a for [[issue>​765|Issue 765]]. 
-  * Security Hotfix 2014-05-05b for AD/LDAP auth plugin related problem ([[http://​www.freelists.org/​post/​dokuwiki/​Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication|Details here]]) 
-  * Security Hotfix 2014-05-05c:​ prevents XSS attack via SWF uploads 
-  * Security Hotfix 2014-05-05d:​ fixes privilege escalation in RPC API 
-  * Security Hotfix 2014-05-05e:​ fixes a XSS vulnerability in the user manager 
- 
-===== Release 2013-12-08 “Binky” ===== 
- 
-  * improved random generator for more secure passwords 
-  * Added capability to import and export users in [[plugin:​usermanager|User Manager]] via CSV files 
-  * Implemented [[devel:​less|LESS]] compiler for CSS 
-  * The old [[template:​default|'​default'​ template]] was removed :!: 
-  * Users can delete their own account now 
-  * Improvements for RTL languages/​scripts,​ accessibility (WAI-ARIA) and [[:farms]] 
-  * Many, many translation updates and smaller bugfixes 
- 
-===== Release 2013-05-10a “Weatherwax” ===== 
- 
-  * Introduction of [[devel:​Auth Plugins]] :!: If you used an authentication backend, you will need to adjust your [[config:​authtype]] configuration by prefixing it with ''​auth''​. Eg ''​mysql''​ becomes ''​authmysql''​ and ''​plain''​ becomes ''​authplain''​. A compatibility mechanism will smooth upgrade, but care should be given to update your settings and test your wiki after the upgrade. 
-  * This release finalizes our jQuery migration and the deprecated compatibility functions were removed. :!: this might break plugins that have not been updated for the last year 
-  * Various updates and fixes to the new template introduced in Adora Belle, especially to mobile mode 
-  * Refactored email subscriptions 
-  * Upgrade to jQuery 1.9.0 and jQuery-UI 1.9.2 
-  * Refactored tar file library 
-  * A security enhancement for fetch to reduce its susceptibility to DDOS attacks. :!: Plugins which use fetch to display images and construct their own urls maybe be incompatible with the change - [[weatherwax_fetchchange_plugins|list of affected plugins]] 
-  * removal of [[plugin:​info#​infoversion|~~INFO:​version~~]] 
-  * The hotfix released 2013-06-16 contains the following fixes 
-    * Several fixes related to the new Auth-Plugins (especially LDAP, AD and MySQL) 
-    * Improvements to the random password generator and introduction of [[devel:​event:​auth_password_generate|AUTH_PASSWORD_GENERATE]] 
-    * Better password reset tokens 
-    * A fix for image rescaling (Precondition failed problem) 
-    * A fix related to Internet Explorer'​s compatibility mode 
- 
-===== Release 2012-10-13 “Adora Belle” ===== 
- 
-**Usage enhancements** 
- 
-  * A [[template:​dokuwiki|new default dokuwiki template]] is distributed with this release. This new template is HTML5 compliant and comes with sidebar and mobile support. The old template is still available with this release, but will be deprecated. :!: The new template is activated by default. Special thanks to Clarence Lee for the initial design. 
-  * The TOC and the search results have been rewritten and improved. This impacts templates: :!: all templates need to be adjusted to work properly. See [[github>​d5acc30d]] and [[github>​91b05b6b]] for details of the changes and what needs to be done in each template. 
-  * Several fixes and enhancements have been made to the media manager 
-  * RTL has been given some particular attention 
-  * Several fixes of the subscription mechanism have been integrated 
- 
-**Setup & Administration** 
- 
-  * Multiple LDAP servers is now available 
-  * Wiki farms is in the core of DokuWiki: all the farm code is grouped in a farm.php file which can be included through the preload.php to activate farming 
-  * ACL now support a %GROUP% wildcard. This works like the %USER% wildcard, but for groups. :!: %USER% and %GROUP% cannot be mixed on an ACL line 
-  * Notification mail are now sent as HTML formatted mails. :!: This feature is enabled by default. 
-  * Resending password has been reworked. :!: Now DokuWiki honors the autopasswd setting: passwords are resent if $conf['​autopasswd'​] is enabled. If $conf['​autopasswd'​] is disabled a token is sent allowing password reset. Theses tokens are valid only during a limited time. 
-  * XMLRPC settings in the config file are renamed: xmlrpc and xmlrpcuser become remote and remoteuser. :!: You *must* rename these settings in your local.php config file if you were using them. 
-  * Added support for local [[devel:​css#​style.ini]]s 
- 
-**Integration & Development** 
- 
-  * Several fixes when using Active Directory as backend 
-  * DokuWiki now uses PHPUnit as its test framework 
-  * Sidebar inclusion is now provided in the new default template. (The Release Candidate included a ''​tpl_sidebar()''​ which was removed again to avoid conflicts with many popular templates.) 
-  * The DOKU_TPL* constants are deprecating:​ :!: template authors are encouraged to integrate that change. 
-  * [[devel:​releases|More details about changes]] related to programmers. 
- 
-**And also** 
- 
-  * Over 20 language updates 
-  * Over 60 issues were fixed 
- 
-===== Release 2012-01-25c “Angua” ===== 
- 
-**Usage enhancements** 
- 
-  * Version handling of media files, just like pages. Old versions are saved and change history available in "​recent changes"​ list as well as in RSS. This and the new media manager are the result of the Google Summer of Code project of Kate Arzamastseva. :!: Be careful when upgrading, some directories need be created (see [[:​install:​upgrade]]) 
-  * Drag & drop support in media manager to speed up adding new files (only works in Firefox and Chrome). And improved multiple file upload (only works in Firefox, Chrome and Safari). This was made possible by replacing the old flash uploader with [[http://​valums.com/​ajax-upload/​|valums Ajax Upload]]. 
-  * A powerful, AJAX-enhanced [[fullscreen_mediamanager|fullscreen media manager]] is introduced in addition to the standard pop-up manager. ​ :!: All templates must be updated to support the new manager. :!: Template authors need to [[template:​starter:​changes|add a media manager button and CSS]]. 
- 
-**Setup & Administration** 
- 
-  * Better farming with cascading configuration for plugin enabling/​disabling,​ this was developed as part of the new extension manager Google Summer of Code project of Piyush Mishra. (see [[tips:​farm|farm]] & [[config]]) 
-  * Performance enhancement by using data uris. This will transfer small images together with the CSS, thus reducing the number of needed HTTP requests and avoiding the HTTP header overhead. Turn on [[:​config:​cssdatauri]] for a more efficient install. 
- 
-**Integration & Development** 
- 
-  * The core code now uses the [[http://​jquery.com/​|jQuery]] JavaScript framework offering powerful features to plugin & template developers. The old, now deprecated JavaScript API is kept for plugin compatibility. Plugin and template authors are encouraged to migrate their JavaScript code to use jQuery instead of the old API ([[devel:​jqueryfaq|jQuery FAQ]]). 
-  * XML-RPC has been polished fixing some auth & login issues. 
-  * [[devel:​releases|More details about changes]] related to programmers. 
- 
-**Finally** 
- 
-  * 25 reported issues were fixed. 
-  * Various smaller bug fixes and enhancements. 
-  * Thank you Kate and Piyush for their GSoC work and to Google for sponsoring it! 
- 
-**Hotfixes** 
  
-  * XSS security issue [[bug>​2561]] 
-  * XSS security issue [[bug>​2487]] 
  
-Previous releases are on [[Old Changes]].+Previous releases are on **[[Old Changes]].**
changes.1489017462.txt.gz · Last modified: 2017-03-09 00:57 by 86.121.178.131