Fossil

Timeline
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

50 check-ins occurring around 6df7a853ec16865b.

2019-08-04
22:56
Merge trunk ... (check-in: fc5f88d6d9 user: jan.nijtmans tags: cleanX)
20:26
Fix a harmless compiler warning. ... (check-in: 95a6a658d4 user: drh tags: trunk)
20:23
Improvements to the Security-Audit page - mostly in providing additional information about the files in the CGI extension folder. ... (check-in: a3bc6552ee user: drh tags: trunk)
2019-08-03
19:49
Fix the repolist function for CGI server invocations, apparently broken by check-in [ec56c69fe98d26d9] ... (check-in: 534b060007 user: drh tags: trunk)
01:07
merge to logical conclusion (nop) ... (check-in: f4f9c1090b user: bch tags: trunk)
2019-08-02
18:13
Avoid the clearenv() interface (which seems to be missing on NetBSD according to [2d4c16df5a9e61c2]) and simply set the global "environ" variable directly. ... (check-in: d72aa24ce6 user: drh tags: trunk)
18:01
Added a comment to fslsrv in place of the just-removed parameter to make it clear what's going on here. ... (check-in: df2eb08e2a user: wyoung tags: trunk)
18:00
Made --baseurl parameter optional in tools/fslsrv since Fossil complains if you give only a top-level URL; it's right, it doesn't need --baseurl in that case. ... (check-in: 8b2b232886 user: wyoung tags: trunk)
17:34
Make sure all CGI environment variables are loaded into the CGI cache prior to clearing the environment, when launching extension CGIs. ... (check-in: c6b4d80e9c user: drh tags: trunk)
17:23
The CGI extension mechanism now passes the HTTPS environment variable. ... (check-in: f5fe221026 user: drh tags: trunk)
14:29
Add the mirrorlimitations.md document. Update cross-references. ... (check-in: 41d6540d27 user: drh tags: trunk)
13:34
Update the security audit to report when extension CGI is available. ... (check-in: e2cad541ff user: drh tags: trunk)
05:09
proper env() handler for (at least) NetBSD ... (Closed-Leaf check-in: 2d4c16df5a user: bch tags: env_handler)
00:10
The test-httpmsg command now sends the payload uncompressed unless the new --compress option is used. ... (check-in: c31ff76fe9 user: drh tags: trunk)
2019-08-01
23:31
Implement the fossil_clearenv() function for Win32. ... (check-in: 61fd10ecd1 user: mistachkin tags: trunk)
21:05
When rendering HTML pages using the fossil-doc class and the data-title="..." attribute, reverse the HTML escapes in the argument to data-title since they will be reencoded prior to rendering. ... (check-in: 54e01c60e2 user: drh tags: trunk)
19:30
Clear all environment variables prior to invoking a CGI extension. (Works on posix - need to fix it for windows.) ... (check-in: ed63bdd71e user: drh tags: trunk)
14:17
Add the FOSSIL_URI environment variable to the CGI extension mechanism. ... (check-in: 7b2b9d6995 user: drh tags: trunk)
2019-07-31
12:21
Fixed fossil_strcmp() usage in cgi_init() when in JSON mode. Through some extremely serendipitous fluke, its broken usage just happened to work until a bit was removed from that function in [ec56c69f] which, purely coincidentally, caused the bug (mine, from 2011!) to start triggering when x-www-form-urlencoded forms were submitted (login/logout). Before that, the buggy block never got a chance to trigger for those forms. ... (check-in: 115a70b2df user: stephan tags: trunk)
08:09
Merged in autosetupAndJimTcl branch (autosetup updates). ... (check-in: 51d006f851 user: stephan tags: trunk)
2019-07-30
18:55
Fix the "fossil server" command on windows so that it honors the --https option. ... (check-in: 8ed91bbe44 user: drh tags: trunk)
10:28
Restore the full CGI extension documentation that was somehow truncated by an earlier commit. ... (check-in: 4130a22cee user: drh tags: trunk)
01:17
Merge in updates from trunk. ... (check-in: 7e7258b3ed user: andybradford tags: test-updates)
2019-07-29
20:02
Improved documentation of the repolist-skin setting. ... (check-in: 02bdcf5e9f user: drh tags: trunk)
18:17
When doing a repository list, use the first repository that has a non-zero value for the "repolist-skin" setting as the skin for the list. If the "repolist-skin" setting is 2 and if the repository list is coming from a directory scan, the omit that repository from the list. All repositories are always shown, regardless of the "repolist-skin" setting for a "fossil all ui" or "fossil all server" generated repository list. ... (check-in: 8f5399bc7b user: drh tags: trunk)
18:14
Fix the repolist-skin setting so that it sets up URL on the header menu correctly. Back out the stylesheet hack is that is now covered by the same fix. ... (Closed-Leaf check-in: 6df7a853ec user: drh tags: repolist-skin)
17:25
Merge fixes from trunk. ... (check-in: 8a0753de2d user: drh tags: repolist-skin)
15:12
Enhancements to the copy/paste SVG icon and to the global options help page. ... (check-in: 93b0afc889 user: drh tags: trunk)
14:19
Fix the build for -DFOSSIL_ENABLE_TH1_DOCS. The build was broken by check-in [ed2def5ffb96d74c] and on trunk by [ec56c69fe98d26d9]. ... (check-in: 8abeb62737 user: drh tags: trunk)
14:06
When to a repolist, if any of the repositories have a non-zero repolist-skin setting, use that repository as the skin for the listing. If the repolist-skin setting is 2, then omit that repository from the list for directory-scan lists, but always show all repos for a "fossil all ui" list. This *almost* works, but still has some small issues. This is an incremental check-in. ... (check-in: 958e0bdc4a user: drh tags: repolist-skin)
08:28
Move each command-line option to their own paragraph, for consistency with the document structure in "Environment Variables and Global Options", as this seems easier to browse and search. The explicit line-break between the two options was wiped with automatic cleanup of trailing spaces by [e2751b18af]. ... (Closed-Leaf check-in: 14f2ba0436 user: florian tags: svg-and-md-formatting)
08:14
Trim spaces from the CSS background image SVG data URI for the copy icon, to make it look more compact -- this may not necessarily reduce the overall size of the final gzipped CSS resource delivered by the Fossil web server. The uncompressed source code for the icon is on the [branch/tooltip-copyhash] wiki page, with a comment why the variant with the "inaccurately" calculated outline looks better. ... (check-in: 0be9a2dbb7 user: florian tags: svg-and-md-formatting)
00:12
Enhancements to the CGI extension documentation. ... (check-in: f80f753050 user: drh tags: trunk)
2019-07-27
17:11
Enhancements to the CGI extension documentation. Update the 2.10 change log to mention this enhancement and other changes. ... (check-in: dfa5d50971 user: drh tags: trunk)
15:30
Update the CGI extension documentation. Improved filename security in the CGI extension subsystem. ... (check-in: 12c8cc709d user: drh tags: trunk)
2019-07-26
20:54
Do not allow /ext to return files whose names begin with "." or "-" even if those files occur in the top-level extroot directory. ... (check-in: e91de28b69 user: drh tags: trunk)
18:15
Preliminary documentation for the /ext mechanism. ... (check-in: 893fca3a15 user: drh tags: trunk)
13:35
Fix the fullcap() SQL function so that it correctly expands the capabilities of Admin and Setup users to include everything. ... (check-in: 384fdb6b4f user: drh tags: trunk)
06:14
Removed an old (#if 0)'d-out block - the permissions check it was blocking out is performed further down in the function. ... (check-in: 7bd4bca2f4 user: stephan tags: trunk)
2019-07-25
23:56
Neither Setup nor Admin users get Write-Unversioned permission by default. And only Setup users are able to include Write-Unversioned permission when editing a user. ... (check-in: 9ca4eb2bda user: drh tags: trunk)
21:11
Add the /ext page that will run CGI or deliver static content from a document hierarchy specified by the --extroot command-line option on "fossil server" or the extroot: option in the CGI file. ... (check-in: ec56c69fe9 user: drh tags: trunk)
21:09
Remove an unused variable. ... (Closed-Leaf check-in: c2a98a5d62 user: drh tags: extension-cgi)
20:53
Ensure that the cgi_decode_post_parameters() routine does not delete the raw content used by the /xfer page. ... (check-in: af3a8dbe09 user: drh tags: extension-cgi)
20:20
Enable the extroot: setting in CGI. ... (check-in: c116a9996b user: drh tags: extension-cgi)
19:53
Do not provide failure diagnostics on the /ext page unless the user has Debug privilege. ... (check-in: 08b9b61972 user: drh tags: extension-cgi)
18:34
Defer decoding POST parameters until after the webpage name is located. Do not do the decode if the webpage has the new "raw-content" property. Set that property on /ext so that is can relay the encoded content to sub-cgi. ... (check-in: e4849f58e4 user: drh tags: extension-cgi)
18:08
Add the ability for Debug users to trace sub-CGI responses by adding the fossil-ext-debug query parameter. ... (check-in: cc21a4389e user: drh tags: extension-cgi)
17:40
Disable HTTP_ACCEPT_ENCODING for the extension CGI. But leave that setting unchanged for Fossil as it might be needed for the relay back to the client. ... (check-in: 54aeb1a8ce user: drh tags: extension-cgi)
17:07
Add the ability to extend a Fossil server using CGI. This is a refactor of the prior sub-cgi branch. ... (check-in: ed2def5ffb user: drh tags: extension-cgi)
2019-07-24
10:54
Continuing work on the /aux page. Now working for static content. ... (Closed-Leaf check-in: 77a72fb964 user: drh tags: sub-cgi)