Fossil

Timeline
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

50 check-ins occurring around 6df7a853ec16865b.

2019-08-04
22:56
Merge trunk (Leaf check-in: fc5f88d6 user: jan.nijtmans tags: cleanX)
20:26
Fix a harmless compiler warning. (check-in: 95a6a658 user: drh tags: trunk)
20:23
Improvements to the Security-Audit page - mostly in providing additional information about the files in the CGI extension folder. (check-in: a3bc6552 user: drh tags: trunk)
2019-08-03
19:49
Fix the repolist function for CGI server invocations, apparently broken by check-in [ec56c69fe98d26d9] (check-in: 534b0600 user: drh tags: trunk)
01:07
merge to logical conclusion (nop) (check-in: f4f9c109 user: bch tags: trunk)
2019-08-02
18:13
Avoid the clearenv() interface (which seems to be missing on NetBSD according to [2d4c16df5a9e61c2]) and simply set the global "environ" variable directly. (check-in: d72aa24c user: drh tags: trunk)
18:01
Added a comment to fslsrv in place of the just-removed parameter to make it clear what's going on here. (check-in: df2eb08e user: wyoung tags: trunk)
18:00
Made --baseurl parameter optional in tools/fslsrv since Fossil complains if you give only a top-level URL; it's right, it doesn't need --baseurl in that case. (check-in: 8b2b2328 user: wyoung tags: trunk)
17:34
Make sure all CGI environment variables are loaded into the CGI cache prior to clearing the environment, when launching extension CGIs. (check-in: c6b4d80e user: drh tags: trunk)
17:23
The CGI extension mechanism now passes the HTTPS environment variable. (check-in: f5fe2210 user: drh tags: trunk)
14:29
Add the mirrorlimitations.md document. Update cross-references. (check-in: 41d6540d user: drh tags: trunk)
13:34
Update the security audit to report when extension CGI is available. (check-in: e2cad541 user: drh tags: trunk)
05:09
proper env() handler for (at least) NetBSD (Closed-Leaf check-in: 2d4c16df user: bch tags: env_handler)
00:10
The test-httpmsg command now sends the payload uncompressed unless the new --compress option is used. (check-in: c31ff76f user: drh tags: trunk)
2019-08-01
23:31
Implement the fossil_clearenv() function for Win32. (check-in: 61fd10ec user: mistachkin tags: trunk)
21:05
When rendering HTML pages using the fossil-doc class and the data-title="..." attribute, reverse the HTML escapes in the argument to data-title since they will be reencoded prior to rendering. (check-in: 54e01c60 user: drh tags: trunk)
19:30
Clear all environment variables prior to invoking a CGI extension. (Works on posix - need to fix it for windows.) (check-in: ed63bdd7 user: drh tags: trunk)
14:17
Add the FOSSIL_URI environment variable to the CGI extension mechanism. (check-in: 7b2b9d69 user: drh tags: trunk)
2019-07-31
12:21
Fixed fossil_strcmp() usage in cgi_init() when in JSON mode. Through some extremely serendipitous fluke, its broken usage just happened to work until a bit was removed from that function in [ec56c69f] which, purely coincidentally, caused the bug (mine, from 2011!) to start triggering when x-www-form-urlencoded forms were submitted (login/logout). Before that, the buggy block never got a chance to trigger for those forms. (check-in: 115a70b2 user: stephan tags: trunk)
08:09
Merged in autosetupAndJimTcl branch (autosetup updates). (check-in: 51d006f8 user: stephan tags: trunk)
2019-07-30
18:55
Fix the "fossil server" command on windows so that it honors the --https option. (check-in: 8ed91bbe user: drh tags: trunk)
10:28
Restore the full CGI extension documentation that was somehow truncated by an earlier commit. (check-in: 4130a22c user: drh tags: trunk)
01:17
Merge in updates from trunk. (check-in: 7e7258b3 user: andybradford tags: test-updates)
2019-07-29
20:02
Improved documentation of the repolist-skin setting. (check-in: 02bdcf5e user: drh tags: trunk)
18:17
When doing a repository list, use the first repository that has a non-zero value for the "repolist-skin" setting as the skin for the list. If the "repolist-skin" setting is 2 and if the repository list is coming from a directory scan, the omit that repository from the list. All repositories are always shown, regardless of the "repolist-skin" setting for a "fossil all ui" or "fossil all server" generated repository list. (check-in: 8f5399bc user: drh tags: trunk)
18:14
Fix the repolist-skin setting so that it sets up URL on the header menu correctly. Back out the stylesheet hack is that is now covered by the same fix. (Closed-Leaf check-in: 6df7a853 user: drh tags: repolist-skin)
17:25
Merge fixes from trunk. (check-in: 8a0753de user: drh tags: repolist-skin)
15:12
Enhancements to the copy/paste SVG icon and to the global options help page. (check-in: 93b0afc8 user: drh tags: trunk)
14:19
Fix the build for -DFOSSIL_ENABLE_TH1_DOCS. The build was broken by check-in [ed2def5ffb96d74c] and on trunk by [ec56c69fe98d26d9]. (check-in: 8abeb627 user: drh tags: trunk)
14:06
When to a repolist, if any of the repositories have a non-zero repolist-skin setting, use that repository as the skin for the listing. If the repolist-skin setting is 2, then omit that repository from the list for directory-scan lists, but always show all repos for a "fossil all ui" list. This *almost* works, but still has some small issues. This is an incremental check-in. (check-in: 958e0bdc user: drh tags: repolist-skin)
08:28
Move each command-line option to their own paragraph, for consistency with the document structure in "Environment Variables and Global Options", as this seems easier to browse and search. The explicit line-break between the two options was wiped with automatic cleanup of trailing spaces by [e2751b18af]. (Closed-Leaf check-in: 14f2ba04 user: florian tags: svg-and-md-formatting)
08:14
Trim spaces from the CSS background image SVG data URI for the copy icon, to make it look more compact -- this may not necessarily reduce the overall size of the final gzipped CSS resource delivered by the Fossil web server. The uncompressed source code for the icon is on the branch/tooltip-copyhash wiki page, with a comment why the variant with the "inaccurately" calculated outline looks better. (check-in: 0be9a2db user: florian tags: svg-and-md-formatting)
00:12
Enhancements to the CGI extension documentation. (check-in: f80f7530 user: drh tags: trunk)
2019-07-27
17:11
Enhancements to the CGI extension documentation. Update the 2.10 change log to mention this enhancement and other changes. (check-in: dfa5d509 user: drh tags: trunk)
15:30
Update the CGI extension documentation. Improved filename security in the CGI extension subsystem. (check-in: 12c8cc70 user: drh tags: trunk)
2019-07-26
20:54
Do not allow /ext to return files whose names begin with "." or "-" even if those files occur in the top-level extroot directory. (check-in: e91de28b user: drh tags: trunk)
18:15
Preliminary documentation for the /ext mechanism. (check-in: 893fca3a user: drh tags: trunk)
13:35
Fix the fullcap() SQL function so that it correctly expands the capabilities of Admin and Setup users to include everything. (check-in: 384fdb6b user: drh tags: trunk)
06:14
Removed an old (#if 0)'d-out block - the permissions check it was blocking out is performed further down in the function. (check-in: 7bd4bca2 user: stephan tags: trunk)
2019-07-25
23:56
Neither Setup nor Admin users get Write-Unversioned permission by default. And only Setup users are able to include Write-Unversioned permission when editing a user. (check-in: 9ca4eb2b user: drh tags: trunk)
21:11
Add the /ext page that will run CGI or deliver static content from a document hierarchy specified by the --extroot command-line option on "fossil server" or the extroot: option in the CGI file. (check-in: ec56c69f user: drh tags: trunk)
21:09
Remove an unused variable. (Closed-Leaf check-in: c2a98a5d user: drh tags: extension-cgi)
20:53
Ensure that the cgi_decode_post_parameters() routine does not delete the raw content used by the /xfer page. (check-in: af3a8dbe user: drh tags: extension-cgi)
20:20
Enable the extroot: setting in CGI. (check-in: c116a999 user: drh tags: extension-cgi)
19:53
Do not provide failure diagnostics on the /ext page unless the user has Debug privilege. (check-in: 08b9b619 user: drh tags: extension-cgi)
18:34
Defer decoding POST parameters until after the webpage name is located. Do not do the decode if the webpage has the new "raw-content" property. Set that property on /ext so that is can relay the encoded content to sub-cgi. (check-in: e4849f58 user: drh tags: extension-cgi)
18:08
Add the ability for Debug users to trace sub-CGI responses by adding the fossil-ext-debug query parameter. (check-in: cc21a438 user: drh tags: extension-cgi)
17:40
Disable HTTP_ACCEPT_ENCODING for the extension CGI. But leave that setting unchanged for Fossil as it might be needed for the relay back to the client. (check-in: 54aeb1a8 user: drh tags: extension-cgi)
17:07
Add the ability to extend a Fossil server using CGI. This is a refactor of the prior sub-cgi branch. (check-in: ed2def5f user: drh tags: extension-cgi)
2019-07-24
10:54
Continuing work on the /aux page. Now working for static content. (Closed-Leaf check-in: 77a72fb9 user: drh tags: sub-cgi)