Fossil

Timeline
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

200 check-ins occurring around d6cd1477d453c895.

2018-09-22
00:22
Fix the indented paragraph on the homepage. (check-in: 0d7ac90d user: drh tags: trunk)
2018-09-21
13:57
Avoid unnecessary quoting of ASCII characters 34 and 39 in the markdown formatter. (check-in: 7950dc22 user: drh tags: trunk)
12:34
Back out the block-indentation CSS change from check-in [2190f86c324d0f57fa4f8]. (check-in: eae0a982 user: drh tags: trunk)
01:52
Replaced the "hasOwnProperty" test for CSS transition support in the animated hamburger menu JS code with a better test that not only works on old IE but also on some truly ancient versions of SeaMonkey, Firefox, Chrome, etc. (check-in: ee074372 user: wyoung tags: trunk)
2018-09-20
15:55
Updates to the change log for the upcoming 2.7 release. (check-in: 450e8723 user: drh tags: trunk)
13:38
Update the built-in SQLite to version 3.25.1. (check-in: c5abb962 user: drh tags: trunk)
13:35
Fix the default CSS for the "columns" class to avoid breaking column breaks within a single <li> element. (check-in: 51da3966 user: drh tags: trunk)
11:21
Fixed the panel.style.hasOwnProperty() test in the default skin's js.txt so that it will work on IE8 and below. See code comment for rationale. (check-in: e54095f9 user: wyoung tags: trunk)
10:31
Allow /sitemap to accept the popup query parameter as GET as long as the incoming request is from the same origin. This is probably sufficient to prevent revealing URLs to robots. And the use of GET seems to be more in keeping with the REST idea. (check-in: 2804c71a user: drh tags: trunk)
10:27
The POST request by the hamburger menu must set the right content type of application/x-www-form-urlencoded in order to pass the popup=1 query parameter. (check-in: ee0f77df user: drh tags: trunk)
06:44
Backout of [e0cc10f03e518831]: Bring back default windows builds with OpenSSL 1.3 (check-in: 9e03e513 user: jan.nijtmans tags: openssl-1.1)
2018-09-19
21:00
Add docs on using IDE for Fossil development. (check-in: 7d2be6f8 user: ashepilko tags: cmake-ide)
20:19
Merge updates from trunk. (check-in: 2269309f user: ashepilko tags: cmake-ide)
19:55
Ignore errors in the clean target commands. (check-in: 27c7a491 user: ashepilko tags: trunk)
2018-09-18
19:37
Backout of [115544e97517f447]. Unbreaks the SSL enabled build for MSVC on Windows, due to OpenSSL build system changes that are not accounted for by the check-in. Also, there were crashes with MinGW produced binaries using OpenSSL 1.1.1. (check-in: e0cc10f0 user: mistachkin tags: trunk)
17:50
Added a missing db_finalize() call in /json/branch/list which led to a downstream segfault via an invalid/destructed Stmt handle. (check-in: e45789ee user: stephan tags: trunk)
15:53
Add the "fossil branch current" command to the 2.7 change log. (check-in: fc977f14 user: drh tags: trunk)
15:50
Add the "fossil branch current" command. Also rearrange the code and the help text for the "fossil branch" command so that the various subcommands are in alphabetical order. (check-in: 3b0a1f4e user: drh tags: trunk)
2018-09-17
09:47
Wiki markup fixes in the recent edits to the www/forum.wiki doc (check-in: 07943152 user: wyoung tags: trunk)
09:40
Removed a paragraph stranded by the email docs reorg several checkins ago. (check-in: ba35b5ff user: wyoung tags: trunk)
09:33
Fixed a typo (check-in: 692aceed user: wyoung tags: trunk)
08:20
Added colored shading, more padding, and a thick left border to
elements in the default skin. This is based on some custom styling that Florian Balmer has been doing for quoted text on the forum lately, but the styling is rather different. It affects all such elements, not just those in forum posts, since I couldn't see a good reason to restrict it: it should be equally valuable in wiki and embedded doc articles as well.
(check-in: 2190f86c user: wyoung tags: trunk)
02:58
Updated the documentation permuted index to include a grammar fix checked in with the previous checkin. (check-in: d8d979fe user: wyoung tags: trunk)
02:57
Reworked the documentation for email alerts to put all the information in a single document: a) Moved the "quick email setup" material from the forums.wiki document into `alerts.md`; b) linked to that moved material from its original location; c) greatly expanded the material previously present in the `alerts.md` document; c) merged the `emaildesign.md` document into `alerts.md`, so we don't have to link out to two separate documents which previously partially repeated each other. This pass also fixed a number of grammar errors and broken links. (check-in: 2ef70be2 user: wyoung tags: trunk)
2018-09-16
21:14
Replaced the WIP and indefinite future paragraphs in www/alerts.md with definite statements now that we're approaching release. (check-in: 05b40829 user: wyoung tags: trunk)
18:45
Docker: upgrade to fedora 28, and use https in stead of http to retrieve fossil source code. Use fedora versions of Tcl in stead of building our own. (check-in: edc31f46 user: jan.nijtmans tags: trunk)
15:43
Make sure that Fossil is always compiled with SQLite >= 3.25.0. Add mention of TLS 1.3 to changelog. (check-in: d0dcf908 user: jan.nijtmans tags: trunk)
2018-09-15
20:27
add support for TLS 1.3, when compiled with OpenSSL 1.1.1 (LTS). Windows build adapted to use OpenSSL 1.1.1 by default. Still compiles and runs with older OpenSSL as well (check-in: 115544e9 user: jan.nijtmans tags: trunk)
18:33
Rerun mkindex.tcl to get an updated permutedindex.html file. (check-in: ce1d61ac user: drh tags: trunk)
17:37
Added www/forum.wiki to the documentation index. (check-in: 7bd7b2c6 user: wyoung tags: trunk)
12:42
Increase the version number to 2.7. (check-in: 4559373c user: drh tags: trunk)
12:39
Update the built-in SQLite to the 3.25.0 release. (check-in: 048a6f80 user: drh tags: trunk)
2018-09-14
21:23
Fix a typo. (check-in: 4b562158 user: ashepilko tags: trunk)
21:15
Describe the debugging options. (check-in: d364933a user: ashepilko tags: cmake-ide)
19:13
Merge updates from trunk. (check-in: f59c9ecb user: ashepilko tags: cmake-ide)
12:53
Update the change log. (check-in: d78f1f3c user: drh tags: trunk)
2018-09-12
13:39
Removed the anti-robot defense stand-down call from the default skin's new footer JS: that's handled server-side now with /sitemap?popup=1. (check-in: 7d5ff435 user: wyoung tags: trunk)
13:20
Added copyright and license comment to the top of the new skins/default/js.txt file. (check-in: 972ae10b user: wyoung tags: trunk)
12:33
Avoided a divide by 1000 by changing a value formerly specified in floating point seconds to be specified in milliseconds, so we don't need the arithmetic. (check-in: 1d5eea66 user: wyoung tags: trunk)
12:32
Moved a single-use variable interpolation inline with its use point. Also improved some comments. (check-in: 56db6170 user: wyoung tags: trunk)
2018-09-11
17:47
Documentation updates for custom TH1 commands. (check-in: 874a4dac user: mistachkin tags: trunk)
14:54
merge trunk (Closed-Leaf check-in: 368c78a8 user: jan.nijtmans tags: openssl-1.1)
14:29
Compile openssl with option no-weak-ssl-ciphers (or -DOPENSSL_NO_WEAK_SSL_CIPHERS) Update custum Makefile.mingw (check-in: 58b7b4e5 user: jan.nijtmans tags: trunk)
00:56
The default skin requires 1200px or more before the "wideonly" class is displayed. (check-in: 68f4c2b0 user: drh tags: trunk)
00:52
Fixes to the new script element of skins. (check-in: c22b71df user: drh tags: trunk)
00:10
Add a hamburger menu that brings up an overlaid /sitemap to the default skin. (check-in: 9c887998 user: drh tags: trunk)
00:03
Split out the javascript for the default skin into the separate skin-script property. (Closed-Leaf check-in: 72cfbf70 user: drh tags: js-hamburger-menu)
2018-09-10
23:57
Merge in the ability to define a script for a skin. (check-in: 666c4f9a user: drh tags: js-hamburger-menu)
23:47
Add the styleScript TH1 command to enabling including the script element of the skin in-line in the header or footer. (Closed-Leaf check-in: dc88a533 user: drh tags: skin-script)
23:34
Add the new "script" element to skins, accessible as /script.js. The idea is to put the hamburger menu javascript from the js-hamburger-menu branch in this script element, rather than inlining it in the footer. But I am not certain that is the best way to go so this change is parked on a branch for now. (check-in: e5dbc612 user: drh tags: skin-script)
22:21
Update the built-in SQLite to the first 3.25.0 release candidate. (check-in: ed84acb6 user: drh tags: trunk)
13:41
Added a guard on the use of CSS transitions so it falls back to a non-animated menu pull down if they appear not to be available on the current browser. Also added a check for the existence of the hamburger menu item in case the skin admin diked it out, and did a few other minor tweaks to the footer JS code. (check-in: 5d9a3454 user: wyoung tags: js-hamburger-menu)
10:01
Timing tweaks: made "hide borders" hack occur about the same time as the CSS transition finishes, and increased the menu show delay still further to make it work for Firefox. (check-in: 7bb68023 user: wyoung tags: js-hamburger-menu)
09:30
Changed hamburger menu drop-down menu from 33% of the screen width to 90%: it works better on small screens, and it allows the sitemap to go multi-column on wider screens. Also added some right-side padding to balance the padding added for
    on the left.
(check-in: e76a243d user: wyoung tags: js-hamburger-menu)
09:27
Removed the
wrapping
    and moved the multicolumn styling applied to it down to the
      , since it is already a block level element, so we don't need a div wrapper on it. And then there's the real reason, which is that we want the multicolumn styling to work on the drop-down hamburger menu version as well.
(check-in: 0d391a1b user: wyoung tags: js-hamburger-menu)
09:02
Increased the transition delay to make the initial drop-down animation happen in Firefox 62. (check-in: 8918a8a8 user: wyoung tags: js-hamburger-menu)
08:48
Using CSS transitions to mimic jQuery's slideUp/Down() transitions. This probably restricts browser compatibility still further above the XHR issue noted in the earlier checkin on this branch. According to MDN, we're probably restricted to IE 10+ with this, and maybe not even that due to not using vendor-specific extensions for the transitional browser versions. (check-in: 90bd6675 user: wyoung tags: js-hamburger-menu)
07:17
Converted JS hamburger button menu code to use standard JS only, no jQuery.

Temporarily lost the animation with this change: I'm checking this in separately to make the difference between this and the jQuery version clearer.

Not sure how portable it is yet; I wouldn't be surprised if it broke on old IE, since we're using xhr.onload instead of the horrid mess that is xhr.onreadystatechange. (check-in: 113ba3d9 user: wyoung tags: js-hamburger-menu)

2018-09-09
17:42
Merged in trunk improvements (check-in: 96b1a9ca user: wyoung tags: js-hamburger-menu)
17:41
Reverted [59c7ca0509]: drh says we can't use jQuery. Also, there was a syntax error that sent all hyperlinks to the honeypot in some conditions. (check-in: 5a62b395 user: wyoung tags: js-hamburger-menu)
2018-09-06
20:39
Update the built-in SQLite to the latest 3.25.0 alpha version for testing. (check-in: 48171b66 user: drh tags: trunk)
03:56
The hyperlinks in the hamburger menu drop-down still had the anti-robot defense activated. Defeated it. (check-in: 571df2e8 user: wyoung tags: js-hamburger-menu)
03:56
Converted src/href.js to jQuery as a demonstration: the code's nearly half the size, and it's clearer as a result. (check-in: 59c7ca05 user: wyoung tags: js-hamburger-menu)
03:06
Typo fix; patch by jungleboogie in forum post ID 775e4c0771. (check-in: c8ef388b user: wyoung tags: trunk)
2018-09-05
23:45
Fixed a bug in the onclick handler for the new hamburger button which allowed the browser to follow our empty 'a href="#"' link. For some reason, Chrome only did this sometimes, not always, which lead to me thinking it was some kind of race condition. (check-in: e806e5c4 user: wyoung tags: js-hamburger-menu)
23:08
Ajaxy animated drop-down menu on clicking a new hamburger button in the default skin, as requested by drh on the forum: https://fossil-scm.org/forum/forumpost/40a18bd742

Initial version uses jQuery loaded from Google Hosted APIs for ease of development. (check-in: d7c43c5a user: wyoung tags: js-hamburger-menu)

15:16
Avoid column breaks inside a top-level bullet in the /sitemap. (check-in: dc5e06ff user: drh tags: trunk)
2018-09-04
12:10
Added more info on quoting rules in Tcl/TH1 to the th1.md doc (check-in: 30e9ccd5 user: wyoung tags: trunk)
11:59
Fixed some grammar and spelling in the th1.md doc. (check-in: 40787f50 user: wyoung tags: trunk)
2018-09-03
16:12
Do away with compiler warning about uninitialized variable. (check-in: af39da6d user: andybradford tags: trunk)
07:40
Calling db_end_transaction() from the early-exit code paths of setup_skin_admin() to avoid "Transaction started at ./src/skins.c:466 never commits" complaints with some types of Admin -> Skins edits. (check-in: 1c0b78b4 user: wyoung tags: trunk)
07:06
Merged wrap-run_in_checkout branch down to trunk. (check-in: 49e86fe0 user: wyoung tags: trunk)
06:27
The test harness now skips all tests done in the Fossil source repo checkout directory while there are uncommitted changes because that will affect the behavior of fossil status, fossil diff, etc., which in turn tends to create false positives in test harness code that checks for changes in fossil command output. (Closed-Leaf check-in: 78ec6838 user: wyoung tags: wrap-run_in_checkout)
06:22
Partially reverted one of the run_in_checkout replacements in test/th1.test: it was inside a foreach loop, which means the test for whether we're inside the Fossil repo checkout was being done 26 times. This is not only inefficient, it spammed the output with "Skipping test blabla..." lines. Now doing a manual check outside the loop and skipping the in-repo tests silently inside the loop. (check-in: 3cb1b4f0 user: wyoung tags: wrap-run_in_checkout)
06:19
Fixed a Tcl syntax error checked in with [33efa2fa]. (Yay dynamic languages that run the code even if it's syntactically invalid. P'tui!) (check-in: 4315d464 user: wyoung tags: wrap-run_in_checkout)
06:15
The new test_block_in_checkout proc in tester.tcl was not setting the CODE and RESULT global variables when it skipped a test, so there was a chance that a test would end up checking the prior values and throw a false positive. (check-in: 2aaee484 user: wyoung tags: wrap-run_in_checkout)
06:13
Fixed a Tcl logic error committed with [33efa2fa]. (check-in: 02430597 user: wyoung tags: wrap-run_in_checkout)
02:57
Extracted the logic that was in tester.tcl's new outside_fossil_repo proc to the global level which just saves the result to a global variable so the logic doesn't have to be re-run for each test that relies on it. The result doesn't change from one call to the next, as you'd hope for a proc without parameters. (check-in: 1a4e87dc user: wyoung tags: wrap-run_in_checkout)
00:40
Replaced most of the direct calls to run_in_checkout from within the test suite with one of two wrapper functions that skip those tests when you run "make test" outside a Fossil repository checkout directory, such as from a directory containing an unpacked source release tarball. (The two remaining direct calls to that proc from test/*.test are preceded by a check that skips the whole file they're in, since that whole file does nothing else.) This is being checked in on a branch because it is not yet thoroughly tested, yet I need the checkpoint. (check-in: 33efa2fa user: wyoung tags: wrap-run_in_checkout)
00:24
The -quiet flag passed by default to tester.tcl can now be overridden by passing TESTFLAGS to make. Before, there was no way to set -verbose this way because "-quiet -verbose" means the same thing as "-quiet". (check-in: 401a4c3d user: wyoung tags: trunk)
2018-09-02
23:05
Cached the result of "$tcl_platform(platform) eq "windows"" in test/tester.tcl and replaced all of the repetitions of this expression with a test of the variable. (check-in: 2e4143aa user: wyoung tags: trunk)
21:51
Removed a debug message accidentally checked in. (check-in: 8eadf4c4 user: wyoung tags: trunk)
21:47
Merged tclsh-macos down to trunk. (check-in: ee2ffe35 user: wyoung tags: trunk)
21:46
Fixed an incorrect Tcl string comparison checked in with [e449cb09]. (Closed-Leaf check-in: c94617b5 user: wyoung tags: tclsh-macos)
21:00
Explained "Why can't we use Jim Tcl for the test suite?" in the auto.def comment above the check for a suitable tclsh version. Basically, I tried it and then documented a few of the resulting failures. (check-in: 91eaef61 user: wyoung tags: tclsh-macos)
20:33
After autosetup checks for the existence of tclsh in the PATH, it now checks whether it's at least version 8.6, because macOS is still shipping 8.5, despite it being nearly 6 years old. If we find an old tclsh, try to find the Homebrew tcl-tk package, and use that version instead. This is not a macOS or Homebrew specific change in principle: we can extend this logic for other systems to find their best Tcl/Tk version, as needed.

On systems where autosetup is used, this only affects "make test". There are other uses of tclsh in this tree which may also benefit from our PATH discoveries, but this checkin doesn't update those.

This checkin also doesn't try to address similar problems on other platforms, such as the "TCLSH = tclsh" line in Makefile.mingw. (check-in: e449cb09 user: wyoung tags: tclsh-macos)

10:07
In the file browser, limit the maximum number of columns to be the number of files, so that a single file is never split across two columns. (check-in: e585c3e6 user: drh tags: trunk)
2018-09-01
20:49
Noted the responsive design changes to the default skin in the change log. Expanded on the forum and alerts feature items. Changed all the past-tense verbs to present tense to match the rest of the items and the prevailing style in past change log entries. (check-in: 6f87b4af user: wyoung tags: trunk)
20:19
Added "overflow-y: hidden;" to the CSS for the default skin to prevent some browsers (Chrome, Firefox, and Safari on macOS, at least) from adding a vertical scroll bar to the navbar. This was only necesasry on this skin because of the recently-added "overflow-x: auto" style, which tells the browser to clip or horizontally-scroll the navbar if the screen width isn't sufficient to show the whole thing; previously in this skin, and currently in all other skins, this condition causes the navbar to wrap to the next line, which looks particularly bad on the default skin. I believe this then made these browsers calculate some extra space for a possible horizontal scroll bar, which then ran the layout engine out of space, so it included the vertical bar just in case. This may be macOS specific, due to the scroll bar hiding behavior introduced several OS release back. (check-in: e8783b9a user: wyoung tags: trunk)
14:52
Add 1em of left padding to multi-column unordered lists. This extra padding is necessary to get Chrome and Edge to display the bullets on second and subsequent columns. (check-in: c429bb79 user: drh tags: trunk)
14:19
Make the sitemap show in multiple columns on wide-screen browsers. (check-in: 894cff0a user: drh tags: trunk)
2018-08-31
22:41
Remove the n=200 query parameter from the timeline link on the /sitemap. (check-in: f1e6cc13 user: drh tags: trunk)
22:03
Login and subscription forms work better on mobile. (check-in: 27769be9 user: drh tags: trunk)
21:07
Render captchas in a smaller font that works better on mobile. (check-in: 75c89def user: drh tags: trunk)
20:24
Fix an unterminated transaction in the /admin_th1 page. (check-in: 447d2732 user: drh tags: trunk)
19:21
Less vertical space on the default menus and title. (check-in: 96938c42 user: drh tags: trunk)
19:03
In the default skin, adjust the labels in the menu bar depending on screen width. (check-in: 306f8ffd user: drh tags: trunk)
17:15
Changes to the CSS for the default skin so that it works better on mobile. (check-in: c565732f user: drh tags: trunk)
13:05
Improvements to the skin editor. (check-in: bd2bf81c user: drh tags: trunk)
11:59
Fix the "Public Pages" setting so that the initial part of the path that identifies a particular repository is ignored. (check-in: d6cd1477 user: drh tags: trunk)
11:32
Omit the Forum Search at the top of the /forum page if search is disabled. (check-in: d4281bbc user: drh tags: trunk)
11:05
Fix hyperlinks for extra pages on the /sitemap so that they correctly resolve to the root of the repository. (check-in: 96fbcd13 user: drh tags: trunk)
10:57
Fix to the configuration page for the License link in /sitemap. (check-in: ace123b7 user: drh tags: trunk)
10:47
Enhancements to the /sitemap page. New configuration options to add optional entries to the /sitemap page. (check-in: 6898b3e7 user: drh tags: trunk)
2018-08-30
21:20
Merge the email.c-to-alerts.c refactor. (check-in: fc5c7d26 user: drh tags: trunk)
21:19
Change the name of the "email.c" source file into "alerts.c". Make corresponding changes to various interfaces. (Closed-Leaf check-in: cfbbc537 user: drh tags: refactor-alerts)
16:13
Silence warning about unused variable (check-in: 2f72c1fb user: andygoth tags: trunk)
16:05
Add the ability to delete users to the /setup_uedit webpage. (check-in: 1e5cdd35 user: drh tags: trunk)
14:43
Attempt to make the /subscribe and /alerts forms less confusing. (check-in: 6d04bab4 user: drh tags: trunk)
14:03
Update the built-in SQLite to the latest 3.25.0 alpha version, for testing. (check-in: 57e80ad2 user: drh tags: trunk)
2018-08-29
12:57
Improvements to the capability listing page: /setup_ucap_list (check-in: 8689cf8b user: drh tags: trunk)
11:17
Updates to the "How The Download Page Works" document. (check-in: 498cfbf7 user: drh tags: trunk)
11:06
Disallow inline javascript unless protected by a nonce. (check-in: ff747b51 user: drh tags: trunk)
11:04
Try to start a new write transaction before updating the VCACHE table. This will hopefully prevent occasional "database is locked" errors when browsing the documentation. (check-in: 03979823 user: drh tags: trunk)
03:31
Fixed some Markdown-isms just checked into www/forum.wiki. (check-in: 34a3bc12 user: wyoung tags: trunk)
03:25
Assorted improvements to the "Skin Setup" section of forum.wiki. (check-in: 04d4bde1 user: wyoung tags: trunk)
03:13
Clarity fixes to the Email Alerts capability paragraph of forum.wiki (check-in: d6e5754d user: wyoung tags: trunk)
2018-08-27
15:00
Remove unnecessary execute bit (check-in: cabc447c user: andygoth tags: trunk)
15:00
Correct markdown reference documentation on optional outermost | characters (check-in: 08e4371b user: andygoth tags: trunk)
2018-08-26
03:35
Applied the new CSP nonce to the <script> tags in the header for the Enhanced Original, Eagle, and Xekri skins, else the clock in the upper right breaks and Chrome gives an error about the CSP violation. (Closed-Leaf check-in: b9d86ed2 user: wyoung tags: csp-nonce)
02:20
Update JSON code to account for new capabilities. Also, the 'setup' and 'admin' capabilities should imply 'debug'. (check-in: 3f12d406 user: mistachkin tags: trunk)
2018-08-25
20:41
Coloring the hyperlinks to the newest forum posts from /forum with a dimmer and less saturated version of the normal hyperlink color in the default skin, to test the new div.forumPosts selector. Other skins to be updated later if this is approved. (check-in: 86ff84da user: wyoung tags: trunk)
17:50
Merge enhancements from trunk. (check-in: 17b9ecbe user: drh tags: csp-nonce)
17:24
Merged forum-skin-links branch to trunk. (check-in: 91c2b1b6 user: wyoung tags: trunk)
16:06
Added new CSS class forumPosts to the
containing the list of posts on the /forum page so that skins can target elements of this list differently than others. One immediate use for this is styling read threads differently via a:visited styling. Currently, only one of the stock skins ships with an unconditional a:visited change, so that all links show in the same color regardless of their state. That's fine in most areas of the UI, but in the forum, a skin developer may want something special, so we need a way to mark them differently. This
was already using the broadly-used "fileage" style, but we don't want changes to a:visited and such to affect all other users of fileage, so we need a unique style to this page.
(check-in: 77782490 user: wyoung tags: trunk)
2018-08-24
08:29
Merge trunk. Undo unintended changes in previous commit (check-in: 5583448c user: jan.nijtmans tags: openssl-1.1)
08:25
Add configurations "enable-capieng" (use Windows Certificate Store) and "no-weak-ssl-ciphers" (disable RC4 support) (check-in: b5a11142 user: jan.nijtmans tags: openssl-1.1)
2018-08-23
16:02
Do not try to run backoffice if not connected to a valid repository. (check-in: 3f5b2549 user: drh tags: trunk)
15:14
Merge trunk. Update to Beta 7 of OpenSSL 1.1.1 (pre release 9, with TLS 1.3 support !!!) (check-in: cbdbc0a0 user: jan.nijtmans tags: openssl-1.1)
15:07
Add the meta-viewport header to the repository list page. (check-in: bb7c2d91 user: drh tags: trunk)
02:57
Put all javascript inline using a nonce. Disallow 'unsafe-inline' CSP for javascript. (check-in: 89c40851 user: drh tags: csp-nonce)
2018-08-22
19:43
Fix a unfinalized query in the /admin_log page. (check-in: 6022ad49 user: drh tags: trunk)
2018-08-21
01:33
Dynamic number of columns on the /help page, based on screen width (check-in: 1d495e89 user: drh tags: trunk)
2018-08-20
23:36
Add 10% more horizontal space in columns of the file browser /dir page. (check-in: 0acb670e user: drh tags: trunk)
19:30
For timeline graphs on narrow screens, set the rail pitch to its minimum value to conserve horizontal space. (check-in: e63da90d user: drh tags: trunk)
19:15
When displaying a timeline on a narrow screen, move the date to the third column to make the first column narrower. (check-in: 8fc7c1b1 user: drh tags: trunk)
18:29
Fix harmless compiler warnings. (check-in: 02bd5941 user: drh tags: trunk)
18:05
Make all webpages more mobile-friendly. There are still many tweaks possible, but it seems to basically work now. (check-in: 9131af26 user: drh tags: trunk)
18:04
Enable responsive design by default on all skins. (Closed-Leaf check-in: 466744aa user: drh tags: mobile)
17:51
Add automatic columnation of the capabilities in the /setup_uedit screen. (check-in: 4f4956f8 user: drh tags: mobile)
17:31
On the flat /dir webpage, automatically adjust the number of columns based on the screen width. (check-in: 50698a3c user: drh tags: mobile)
16:06
Simple changes to the default CSS and Header that seem to help Fossil work better on mobile by avoiding menu wraps. (check-in: 5fb04081 user: drh tags: mobile)
2018-08-17
15:38
Fix the /setup_smtp page so that it edits the routing table sensibly. (check-in: 5416287d user: drh tags: trunk)
14:24
Add the /emailoutq page, accessible only by the administrator. (check-in: ca732777 user: drh tags: trunk)
13:04
Break out the user configuration pages into a separate "setupuser.c" source file. (check-in: a49ed35b user: drh tags: trunk)
12:32
Improvements to privilege processing and the "Security Audit" page /secaudit0. (check-in: 397d23c1 user: drh tags: trunk)
01:27
Allow + signs in email addresses. Added a comment to link to a source giving the true limit on legal characters in email addresses, which are currently far less restrictive than our newly-expanded limits. (check-in: 1bfd7903 user: wyoung tags: trunk)
2018-08-16
20:48
Enhance the backoffice to automatically purge stale entries from the emailblob table, if that table exists. (check-in: 4c7edd4c user: drh tags: trunk)
19:51
Do not put "Return-Path:" headers in notification emails to be sent. That is a violation of standards as only the receiving SMTP server should add the Return-Path header. Instead, include a custom X-Fossil-From: header that downstream software can use (if desired) to set the envelope header of the message. (check-in: 731836b8 user: drh tags: trunk)
18:56
For email notifications abound events from a single user (such as individual forum post notifications) make the From: address be a "noreply" hash based on the users human-readable name or handle. Always include a Return-Path: field in the header that is the email-self setting, to be used by MTUs that need to bounce the message. (check-in: 475c9d11 user: drh tags: trunk)
16:45
Do not show posts that are awaiting moderation to users without moderator privilege unless they are the same user that generated the post in the first place. (check-in: 16c42a08 user: drh tags: trunk)
16:26
Update the built-in SQLite to the latest trunk version which includes the fix for EXPLAIN QUERY PLAN for the query that runs the /forum page. (check-in: f8994f89 user: drh tags: trunk)
16:13
Adjust the /forum page so that it for users without forum moderator privilege, it pretends that unmoderated posts do not exist, and for user with moderator privilege it paints an "Awaiting Moderator Approval" message on posts that need moderation. (check-in: ef7f85ee user: drh tags: trunk)
12:31
Fix the /forum page so that it links to the most recent post. (check-in: b0ae37c0 user: drh tags: trunk)
07:21
Improved locality of a variable. No functional change. (check-in: 09103fd2 user: wyoung tags: trunk)
07:06
Posts are now hidden on the /forum page if they're marked as private (i.e. needing moderator attention) and they were posted by another user, except when the user is a moderator.

(Closed because a different method was implemented on trunk.) (Closed-Leaf check-in: 779eaaae user: wyoung tags: hide-post-if-needmod)

06:36
Replaced a declare-and-init line pair with a single define-with-value line. No functional change. (check-in: 8f47c3f6 user: wyoung tags: trunk)
02:03
Fix the hextoblob() function so that does not report out-of-memory if the size of the input string is zero bytes. This fixes the instances of "out-of-memory" reports when accessing the /alerts page without an argument. (check-in: 5519c6b8 user: drh tags: trunk)
01:46
Fixes to the /webmail screen (check-in: a24de3f9 user: drh tags: trunk)
01:43
Add comments to the /register page implementation. No logic changes. (check-in: a4419c6c user: drh tags: trunk)
2018-08-15
21:28
Do not issue a warning about duplicate branch names when doing a --private check-in. (check-in: d7e45aae user: drh tags: trunk)
20:50
Improved title on on the /forum page. (check-in: dbd96b2c user: drh tags: trunk)
20:41
On the main /forum screen, provide the new n= and x= query parameters to enable access to older threads. (check-in: aff20904 user: drh tags: trunk)
20:17
On the "Recent Threads" page (/forum) show the number of messages and the duration of each thread. (check-in: a50dfe6f user: drh tags: trunk)
18:14
Improvements to self-register (the /register page) so that it works correctly for users how are already subscribers and enter the subscriber email. (check-in: 4c43f2cd user: drh tags: trunk)
15:53
Remove an db_begin_transaction() that had no matching db_end_transaction(). (check-in: b2fca3dd user: drh tags: trunk)
12:09
Change the default markup language for Forum to Markdown. (check-in: 5f3cb278 user: drh tags: trunk)
11:05
Update to openssl-1.0.2p (check-in: 38638cfc user: jan.nijtmans tags: trunk)
2018-08-14
13:05
Don't use "file nativename" in makemake.tcl, because it gives a different win/Makefile.msc when run on UNIX (check-in: af80be5c user: jan.nijtmans tags: trunk)
05:59
Changed all of the "sendmail -t" commands to "sendmail -ti" to make it ignore lines containing only a dot; we use EOF to signal "end of message," so we don't need the second signal. This is separate from the smtp.c fix in [51740ce45f]: that's only used when Fossil speaks directly to an SMTP server, where a leading dot is treated somewhat differently than the lone dot rule for sendmail(1)'s stdin.

This problem with leading dots was diagnosed by gumblex, /forumpost/4290f75ba1. (check-in: 8c0ec30b user: wyoung tags: trunk)

04:39
URL fix (check-in: 6787aac9 user: wyoung tags: trunk)
03:55
The blob-to-SMTP encoding logic was not strictly following RFC 5321 in that it was only dealing with the lone dot on the line case, doubling it to prevent the SMTP server from interpreting that as end-of-message. It missed the case where, if anything follows the dot, SMTP drops the leading dot, so you must also double the leading dot in that case. Basically, you always double a leading dot, regardless of line length.

This only affects Fossil's direct-to-SMTP email sending case, not those that send via a piped command or via DB. That is dealt with later in [8c0ec30bc3]. (check-in: 51740ce4 user: wyoung tags: trunk)

2018-08-13
03:51
Covered capability 7 in the forum.wiki document, and made several improvements to the "Using the Moderation Feature" section. (check-in: 31631b75 user: wyoung tags: trunk)
03:23
Assorted minor improvements to the www/alerts.md document. The major one is re-emphasizing the need to give capability 7 to some user or user category. Ask me how I came to think this necessary. :) (check-in: 3e75a683 user: wyoung tags: trunk)
01:11
Typo fix (check-in: c3d9c8e0 user: wyoung tags: trunk)
00:59
More forum.wiki tweaks (check-in: 26424763 user: wyoung tags: trunk)
00:31
Assorted improvements to the forum.wiki document, mainly to the new moderation material. (check-in: c1be5508 user: wyoung tags: trunk)
2018-08-12
23:24
Added the "How Moderation Works" section to www/forum.wiki, and improved the newly-renamed "Using the Moderation Feature" section as a result. (check-in: 812dd52c user: wyoung tags: trunk)
22:27
Added "id"s to every header tag in the forum.wiki document, so you can create links to sub-sections. (check-in: 03c298dc user: wyoung tags: trunk)
21:40
Fixed a few references to MIME type "text/x-fossil" in the fileformat document. It's "text/x-fossil-wiki" everywhere else. (check-in: e00cdbe7 user: wyoung tags: trunk)
21:35
Add /forum link to sitemap if user has RdForum capability (check-in: 5ad7222f user: wyoung tags: trunk)
10:42
Merge the fix to the login-by-email-address patch. (check-in: 9b4e157b user: drh tags: trunk)
06:11
URL fix in forum.wiki (check-in: 542c5576 user: wyoung tags: trunk)
03:38
Update wording to match documentation. (Closed-Leaf check-in: cbfbfa8c user: mistachkin tags: updNewCaps)
03:21
Added the "Moderation" section to www/forum.wiki (check-in: e06e7f84 user: wyoung tags: trunk)
03:00
Assorted tweaks and improvements to the new email alerts material in www/forum.wiki. (check-in: 4326f76f user: wyoung tags: trunk)
02:47
Added the "Email Notification" section to the forum.wiki document. (check-in: 6b275203 user: wyoung tags: trunk)
2018-08-11
23:51
Coding style tweak. (Closed-Leaf check-in: 52b9caa5 user: mistachkin tags: login-with-email)
23:47
Update JSON code to account for new capabilities. Also, the 'setup' and 'admin' capabilities should imply 'debug'. (check-in: 7ce44fab user: mistachkin tags: updNewCaps)
21:04
Added forumSel adjustment advice to forum.wiki. (check-in: 0194fb67 user: wyoung tags: trunk)
20:49
The periodic "updateClock()" call made in the header for several of the built-in skins (Eagle, Enhanced1, and Xekri) violates the new stricter CSP, since it requires a JS eval. We don't need an eval here: we can pass the function's name literally to window.setTimeout instead, which treats it as a Function object, which doesn't need to be eval'd. (check-in: eac15b4c user: wyoung tags: trunk)
19:43
Added the "Enable Forum Search" section to www/forum.wiki (check-in: cc5d2e1f user: wyoung tags: trunk)
19:28
Zeroed a pointer in its declaration to squish a warning from GCC 4.8.4 on Ubuntu 14.04 about use of a potentially uninitted pointer. I don't think it's actually possible for the current code to use the pointer in the window between its declaration and first use, but I think we can afford the extra machine instruction this will cost us. (I assume newer GCCs are smart enough to analyze this situation correctly, which is why the warning hasn't been squished earlier.) (check-in: 892781cb user: wyoung tags: trunk)
16:59
Fix to checkin [8c91be8b], which was intended to allow the user to log in with the email found in the contact info field of the user table. That checkin is fine as far as it goes, but it only works if the caller doesn't subsequently try to use the passed user name for anything else, since it isn't actually a user name. This checkin causes the low-level login checking function to re-point the user name pointer at the actual login name discovered while scanning for matching email addresses. (check-in: 33522ff4 user: wyoung tags: login-with-email)
2018-08-10
23:28
Try to put the human name of the person who posted on the From: line of email notifications for new forum posts. (check-in: ad419331 user: drh tags: trunk)
20:30
Be sure to send forum event notifications in chronological order. (check-in: b4602502 user: drh tags: trunk)
17:08
Also remember the name the user for webmail. (check-in: 800cd27d user: drh tags: trunk)
16:59
Fix the webmail screen so that it remembers the folder that is being viewed. (check-in: e0377d04 user: drh tags: trunk)
16:51
Fix the /forum webpage so that it works even if the forumpost table does not exist in the repository. (check-in: d73c5fd2 user: drh tags: trunk)
16:44
Allow login using either the username or the first email address found in the USER.INFO column. Note that it might be useful to create an index on user(find_emailaddr(info)) to make this efficient in the case where there are many rows in the user table. (check-in: 8c91be8b user: drh tags: trunk)