|
|
PmWiki / Release Notes
See also: Upgrades, Change log and Road map. Version 2.2.107 (2017-02-02)This version includes more fixes for PHP 7.2 for forms and pagelists. A new variable Version 2.2.106 (2017-12-01)This version has a rewrite of the function PageListSort() to allow it to work with PHP 7.2, and fixes a bug with the backtick (escape) Version 2.2.105 (2017-11-07)This version fixes a bug with the PQA() function causing invalid HTML with attributes glued together. The function If you upgrade from 2.2.98 or earlier, and you have custom markup rules relative to author signatures, please see note about change in 2.2.99 (documented November 2017). Version 2.2.104 (2017-10-11)This version fixes a bug with path WikiTrails reported today. Version 2.2.103 (2017-10-01)This version is a major upgrade on the internal processing of markups and patterns, all core scripts were updated to be compatible with PHP version 7.2. Whether you use that PHP version or another one, with any local configurations and custom add-ons, there should be no change for what you see, but if any problems please contact us immediately. Pagelists can now have optimized The documentation was updated. Version 2.2.102 (2017-08-05)This version reverts the patterns for text variables changed in 2.2.99, because we found that a longer text variable content may cause a blank page or an internal server error. In the page SiteAdmin.AuthList an input box was added to allow filtering of the groups or pages. Version 2.2.101 (2017-07-30)This version renames the internal constructor of the PageStore class to be compatible with both PHP 5 and PHP 7. Previously, the PageStore class had two constructors for PHP 4 and PHP 5 compatibility of which one was silently ignored, but recent PHP 7 versions display strict or deprecated notices when the PHP 4 constructor is used. If you must use PmWiki 2.2.101 or newer on a PHP 4 installation, please contact me so I can provide you with a workaround. Version 2.2.100 (2017-07-30)This version provides a workaround for an incompatibility with our Subversion version control system, where the Version 2.2.99 (2017-06-26)This version fixes a bug where an incomplete text variable without a closing parenthesis like " A bug was fixed where previewing a page didn't show changes to be done by replace-on-save patterns (the function ReplaceOnSave was refactored). Markup rules for previewing author signatures are no longer needed and were removed. Note that if you had custom markup rules processed before or after the A bug and a warning for PHP 4 installations were fixed. Two minor bugs with the The InterMap prefix to Wikipedia was corrected to use the secure HTTPS protocol and the documentation was updated. Version 2.2.98 (2017-05-31)This version adds a new skin that is better adaptable to both large and small screens, desktop and mobile devices (touchscreens). The new skin "pmwiki-responsive" is not enabled by default but available as an option, and as a base for customized copies. It requires a relatively modern browser (post-2009). The old skin is still available and enabled by default. The Vardoc links now use MakeLink() to allow a custom LinkPage function. The function ReplaceOnSave() was refactored to allow easier calling from recipes. Markup processing functions now can access besides A bug was fixed with the A number of other (minor) bugs were fixed: see ChangeLog, and the documentation was updated. Version 2.2.97 (2017-04-07)This version fixes a bug concerning Version 2.2.96 (2017-04-05)This version fixes a severe PHP code injection vulnerability, reported by Gabriel Margiani. PmWiki versions 2.2.56 to 2.2.95 are concerned. Only certain local customizations enable the vulnerability. Your website may be at risk if your local configuration or recipes call too early some core functions like CondAuth(), RetrievePageName() or FmtPageName(), before the Most recipes call core functions from a $HandleActions function, or from a Markup expression rule, these do not appear to be affected by the current exploit. If your wiki may be at risk, it is recommended to upgrade to version 2.2.96 or most recent at the earliest opportunity. If you cannot immediately upgrade, you should place the following line in your local (farm)config.php file: Place this line near the top of the file but after you include scripts/xlpage-utf-8.php or other character encoding file. This version filters the Version 2.2.95 (2017-02-28)This is a documentation update version. Version 2.2.94 (2017-01-31)This version allows webmasters to configure and use both .html and .htm extensions. The cached information about whether a page exists or not will now be cleared when that page is created or deleted. The documentation was updated. Version 2.2.93 (2016-12-31)This is a documentation update version. Version 2.2.92 (2016-11-30)This version allows administrators to disable the "nopass" password by setting Version 2.2.91 (2016-09-30)This is a documentation update version. Version 2.2.90 (2016-08-31)This version adds a parameter to the upload form which can improve analytics from the server logs. Two new CSS classes were added to help skin developers: Version 2.2.89 (2016-07-30)This version allows to set a default class name for simple tables. The Version 2.2.88 (2016-06-29)This version fixes invalid HTML output of some WikiTrail links. The function PHSC() can now have an optional fourth argument for a safe replacement of htmlspecialchars(). A new page variable Version 2.2.87 (2016-05-31)This version adds the <html xmlns="http://www.w3.org/1999/xhtml" The variable A wrong page variable in Site.UploadQuickReference was corrected, and the documentation was updated. Version 2.2.86 (2016-04-28)This version adds updates for PHP 7, for the PageStore() class and for the Version 2.2.85 (2016-03-31)This version adds Scalable Vector Graphics (*.svg, *.svgz) as allowed uploads and as embeddable picture extensions (with the html tag <img/>). The documentation was updated. Version 2.2.84 (2016-02-21)This version fixes "indent" and "outdent" styles for right-to-left languages. A new variable Version 2.2.83 (2015-12-31)This is a documentation update version. Version 2.2.82 (2015-11-30)This version enables stripmagic() to process arrays recursively and updates the documentation. Version 2.2.81 (2015-10-31)This version fixes an inconsistency with single line page text variables. International wikis enabling UTF-8 will now be able to use the CSS classes "rtl" and "ltr" to override the text direction when inserting right to left languages. The documentation was updated. Version 2.2.80 (2015-09-30)This version modifies the Version 2.2.79 (2015-08-27)This version adds WikiStyles for the CSS basic colors "fuchsia", "olive", "lime", "teal", "aqua", "orange" and "gray"/"grey". New input elements "email", "url", "number", "date", and "search" can now be used in wiki forms. Note: the "target" attribute of input forms which was added in the previous version broke the PmForm processor, and was removed until we find a solution. If you don't use PmForm and require this attribute (or others), the usual way to add it is to redefine the $InputAttrs array in your local configuration. A new variable The insMarkup() function in guiedit.js was refactored to allow custom input ids and/or custom functions to process the selected text. The documentation was updated. Version 2.2.78 (2015-07-21)This version updates the $RobotPattern list with currently active user agents. Note, this release broke the Cookbook:PmForm module. Please do upgrade to 2.2.79 or newer if your wiki uses PmForm. Version 2.2.77 (2015-06-19)This version extends the Version 2.2.76 (2015-05-31)This version improves support for arrays in form elements: setting default values and recovering values from posted forms. A new "label" argument to checkbox and radio input elements allows easy insertion of clickable text labels after the form elements. Division blocks wrapping standalone images, and standalone image captions, now receive CSS classes allowing greater control via stylesheets. The documentation was updated. Version 2.2.75 (2015-04-26)This version adds a pmcrypt($pass, $salt) function which can be used as a replacement for the PHP crypt() function when encrypting passwords. From PHP 5.6 on, crypt() should not be used without a $salt parameter and would raise a notice. If pmcrypt() is called with a $salt parameter it will simply call crypt() in order to check a password. If it is called without a $salt parameter, pmcrypt() will create a password hash with the password_hash() function or with crypt() depending on your installation. You can replace any calls to crypt() with pmcrypt(), notably in config.php when defining Markup was added for the semantic HTML5 tags article, section, nav, header, footer, aside, address. A bug with the uploads feature was fixed when $EnableReadOnly is set, and the documentation was updated. Version 2.2.74 (2015-03-28)This version allows the translation of the word "OK" in authentication forms. The documentation was updated to the latest state on pmwiki.org. Version 2.2.73 (2015-02-28)This release only updates the documentation to the latest state on pmwiki.org. Version 2.2.72 (2015-01-27)This version improves the ?action=ruleset display for markup rules potentially incompatible with PHP 5.5 when the function debug_backtrace() is not available. It restores the ability to set a custom function handling the (:markup:) demos. A variable Version 2.2.71 (2014-12-29)This version removes the hard word wrap in The release also adds back-tracing for markup rules potentially incompatible with PHP 5.5. Such rules, often added by recipes, can trigger "Deprecated: preg_replace()" warnings. To find out which recipes may trigger the warnings, enable diagnostic tools in config.php with The variable Version 2.2.70 (2014-11-08)This release only updates the documentation to the latest state on pmwiki.org. Version 2.2.69 (2014-10-13)This version fixes a bug when dates are defined as relative to other dates, eg. "2014-10-13 -3 days". The documentation was updated; note that the instructions in Site.UploadQuickReference were updated to reflect the display of the upload form in current browsers. Version 2.2.68 (2014-09-01)This version adds a Skins: InterMap prefix pointing to the Skins section on PmWiki.org, a "signature" markup in the edit quick reference, new WikiStyles clear, min-width and max-width and the documentation was updated. Version 2.2.67 (2014-08-02)This version fixes an inconsistency with input forms when values are taken from PageTextVariables. The documentation was updated to the latest state on pmwiki.org. Version 2.2.66 (2014-07-02)This version fixes a minor longstanding bug in the default Notification format when a page is deleted. In custom patterns, the "_" character will no longer be considered a function name. The documentation was updated. Version 2.2.65 (2014-06-07)This version fixes Pagelist handling of Version 2.2.64 (2014-05-08)This version adds the "{(mod)}" markup expression for modulo/remainder calculations, and the "tel:" and "geo:" URI schemes which, on compatible devices like smartphones, allow the creation of links to dial telephone numbers and open map/location applications. The $SysMergePassthru switch was added, if enabled, it allows the "Simultaneous Edits" conflict resolution to use the passthru() function instead of popen(). The documentation was updated. Version 2.2.63 (2014-04-05)This version allows for form elements to have custom attributes containing a dash in the attribute names and enables the attributes 'required', 'placeholder' and 'autocomplete' for HTML5 forms. A minor bug with pagelist {$$RequestVariables} appearing on some installations was fixed. The documentation was updated. Version 2.2.62 (2014-02-28)This version adds the variable Version 2.2.61 (2014-01-31)This version removes unnecessary snippets of code and adds the variable Version 2.2.60 (2014-01-12)This version reverts the changes to the pmwiki.css file made in 2.2.59. Version 2.2.59 (2014-01-11)This version has an improvement for Blocklist when multiple text fields are posted. A bug with some nested markup conditionals was fixed. The default skin switched font sizes from points (fixed) to percents (relative). A couple of other minor bugs were fixed and the documentation was updated. Version 2.2.58 (2013-12-25)This version enables customization of (:input auth_form:), and fixes a couple of minor bugs. The documentation was updated. Version 2.2.57 (2013-11-03)This version enables the use of the Attach: link format in the (:attachlist:) directive. The documentation was updated. Version 2.2.56 (2013-09-30)This version aims to fix a PHP 5.5 compatibility issue with a deprecated feature of the preg_replace() function. The PageStore() class now detects and works around a bug with the iconv() function, and the documentation was updated. Version 2.2.55 (2013-09-16)This version adds the variable Version 2.2.54 (2013-08-13)This version fixes a bug when old versions are restored from draft pages. The documentation was updated. Version 2.2.53 (2013-07-08)This version enables a message to be shown when a post is blocked because of too many unapproved links. The documentation was updated. Version 2.2.52 (2013-06-08)This version hides warnings about a deprecated feature in PHP 5.5 installations (preg_replace with /e eval flag). Three new upload extensions were added: docx, pptx and xlsx produced by recent versions of some office suites. The documentation was updated. Version 2.2.51 (2013-05-08)This version updates the addresses for the remote blocklists. A minor XSS vulnerability for open wikis, which was discovered today, was fixed. The documentation was updated. Version 2.2.50 (2013-04-08)This release only updates the documentation to the latest state on pmwiki.org. Version 2.2.49 (2013-03-09)This version adds an array The documentation was updated. Version 2.2.48 (2013-02-11)This version fixes a bug introduced yesterday with some links. Version 2.2.47 (2013-02-10)This version enables tooltip titles in links to anchors in the same page, and the documentation was updated. Version 2.2.46 (2013-01-07)This version adds If your wiki has uploads enabled, it is recommended to set the variable The The Version 2.2.45 (2012-12-02)This version fixes some PHP notices appearing on some installations. The documentation was updated. Version 2.2.44 (2012-10-21)This version improves the display of consecutive whitespaces in page histories, and fixes the definition of PageTextVariables containing a dash. The documentation was updated. Version 2.2.43 (2012-09-20)This version makes it possible to use HTML attribute names that contain dashes, and removes a warning when editing and previewing Site.EditForm. The documentation was updated. Version 2.2.42 (2012-08-20)This version provides a workaround for cases when a wiki page contains a character nonexistent in the active encoding. The documentation was updated. Version 2.2.41 (2012-08-12)This version changes the internal $KeepToken separator to be compatible with more encodings. The documentation was updated. Version 2.2.40 (2012-07-21)This version provides a helper function replacing htmlspecialchars() and compatible with PHP 5.4. The documentation was updated. Version 2.2.39 (2012-06-25)This version provides a fix for links to attachments containing international characters. The documentation was updated. Version 2.2.38 (2012-05-21)This version fixes a "parameter count" warning which appeared on some websites. Version 2.2.37 (2012-05-01)This version provides a workaround for installations with broken iconv() function, while optimizing the recode function. This should fix the "Unable to retrieve edit form" problem in some wikis. Dots in sections are now better supported, PageVariables are expanded in PageList template defaults, and the documentation is updated. Version 2.2.36 (2011-12-28)This version fixes the recode function to try to recover Windows-1252 characters in ISO-8859-1 files. A new variable $EnableOldCharset enables the $page["=oldcharset"] entry which will be used in the future. A couple of minor bugs were fixed and the documentation was updated. Version 2.2.35 (2011-11-11)This release fixes a critical PHP injection vulnerability, reported today by Egidio Romano. PmWiki versions 2.2.X, 2.1.X, 2.0.X and 2.0.beta33 and newer are vulnerable. When you upgrade, please read carefully the Release notes for all PmWiki versions since yours. If you cannot upgrade, it is recommended to disable Searches at the earliest opportunity (even if your wiki skin doesn't have a search form). Add to config.php such a line: if ($action == 'search') $action = 'browse'; If your old version wiki allows editing by not entirely trusted visitors, even on limited pages like a WikiSandbox, you should also disable PageLists. Add to config.php this line: $EnablePageList = 0; This version has an important change for international wikis: the XLPage() function no longer loads encoding scripts such as xlpage-utf-8.php. When you upgrade, you need to include those scripts from config.php, before calling XLPage(): include_once("scripts/xlpage-utf-8.php"); # if your wiki uses UTF-8 XLPage('bg','PmWikiBg.XLPage'); All links can now have tooltip titles. Previously, only images and external links could have tooltip titles, now this feature is enabled for internal links. To set a tooltip title, add it in quotes after the link address: [[Main.HomePage"This is a tooltip title"]] [[Main.HomePage"This is a tooltip title"|Home]] [[http://www.pmwiki.org"Home of PmWiki"]] Attach:image.jpg"Tooltip title of the image" The following new upload extensions were added: svg, xcf, ogg, flac, ogv, mp4, webm, odg, epub. A couple of minor optimizations were added (MarkupExpressions and rendering of page history) and the documentation was updated. Version 2.2.34 (2011-10-10)This version resets the timestamps of the default pages Site(Admin).AuthUser which are expected in case of upgrades from the versions 2.1.*. Core MarkupExpressions which manipulate strings should now work better with international characters. The documentation was updated to its latest state from pmwiki.org. Version 2.2.33 (2011-09-23)This version fixes a security bug introduced in 2.2.32 which left the groups Site and SiteAdmin open for reading and editing because the pages Site.GroupAttributes and SiteAdmin.GroupAttributes didn't have all necessary attributes. All wikis running 2.2.32 should upgrade. If you cannot immediately upgrade, you can set the attributes from your wiki:
The release also fixes the refcount.php script to produce valid HTML, and updates intermap.txt entries PITS: and Wikipedia: to point to their current locations. Version 2.2.32 (2011-09-18)This is the first version shipping with the core documentation in the UTF-8 encoding. PmWiki will automatically convert it on the fly for wikis using an older encoding. It is recommended that all new PmWiki installations enable UTF-8. Migration of existing wikis from an older encoding to UTF-8 shouldn't be rushed: it is not trivial and will be documented in the future. A required HTML xmlns attribute was added to the print skin template. The history rendering is now faster when many lines are added or removed. Note: Due to a manipulation error, a version 2.2.31 was created before it was ready for a release. Version 2.2.30 (2011-08-13)This version fixes a $Charset definition in international iso-8859-*.php files. This will help for a future transition to UTF-8. A variable $EnableRangeMatchUTF8 was added, set it to 1 to enable range matches of pagenames in UTF-8 like [A-D]. Previously the range matches were always enabled in UTF-8, but we found out that on some installations this feature breaks all pagelists, even those without range matches. In case the feature worked for you, you can re-enable it. Version 2.2.29 (2011-07-24)This release fixes Attach links that were broken with the Path fix in 2.2.28 earlier today. Version 2.2.28 (2011-07-24)This release fixes 2 potential XSS vulnerabilities and a bug with Path: links. Version 2.2.27 (2011-06-19)This release fixes a validation bug on pages after a redirection. A new block WikiStyle Version 2.2.26 (2011-05-21)This release fixes a redundant removal of link hashes from WikiTrails, and updates the documentation to the most recent version from PmWiki.org. Version 2.2.25 (2011-03-22)This release only updates the documentation to the latest state on pmwiki.org. Version 2.2.24 (2011-02-15)This version reverts the way existing PageVariables are processed, like version 2.2.21 or earlier, but it adds a special variable $authpage which can be used in PageVar definitions. It is the same as the $page array, but exists only if the visitor has read permissions. For example, an administrator can set to config.php: Then, the edit summary metadata will only be available if the user has read permissions. Version 2.2.23 (2011-01-25)This version sets the default value of Version 2.2.22 (2011-01-16)This version adds the variable PageVariables should now respect authentications: without read permissions, the title, description, change summary, author of a protected page are unavailable. PageVariables that are computed without reading the page are still available (eg. $Group, $Namespaced,
Version 2.2.21 (2010-12-14)Due to a mis-configuration of a local svn repository, some of the changes intended for 2.2.20 didn't make it in the correct branch. This release corrects this. Version 2.2.20 (2010-12-14)This version fixes a potential XSS vulnerability, reported today. An AuthUser bug with excluding users from authgroups was fixed. A new InterMap prefix PmL10n: was added, it leads to the Localization section on PmWiki.org and should help the work of translators. A couple of other minor bugs were fixed and the documentation was updated. Version 2.2.19 (2010-11-10)This is a documentation-update release. Version 2.2.18 (2010-09-04)This version fixes 3 minor bugs, and updates the documentation. Version 2.2.17 (2010-06-20)This version adds a variable $PostConfig containing functions and scripts to be loaded after stdconfig.php. Tabindex was added as a valid form field attribute. Protected downloads now respect existing browser caches. AuthUser now allows more flexible cookbook recipe integration. A couple of bugs were fixed and the documentation was updated. Version 2.2.16 (2010-05-10)This version fixes a bug with parsing html attributes which could allow XSS injection. Wikis allowing unprotected editing are encouraged to upgrade. A bug with the "center" button of the GUI edit toolbar was corrected. The "exists" conditional now accepts wildcards, for example: The documentation was updated. Version 2.2.15 (2010-03-27)This version adds some minor bugfixes and optimizations notably a bug with Version 2.2.14 (2010-02-27)This release corrects inline styles for WikiTrail links. Undefined include/template $EnableUndefinedTemplateVars = 1; # keep and display unset {$$variables} PageList templates now accept the sections "Title" attributes were added to external links. You can have tooltip titles on external links, including InterMap and attachments, by adding the link title in double quotes after the URL: [[http://www.pmwiki.org"Home of PmWiki"| External link]] For international wikis, PmWiki now automatically translates the titles of technical pages like GroupAttributes or RecentChanges -- just define these strings as usual in XLPage, for example, in French: 'AllRecentChanges' => 'Tous les changements récents', Some minor optimizations were done and the documentation was updated. Version 2.2.13 (2010-02-21)This release fixes a bug with The page history layout was modified with a rough consensus in the community. The history now defaults to "source" view with word-level highlighting of the differences. Authors can see the changes in rendered output by clicking on the link "Show changes to output". Admins can switch back the default by adding such a line to config.php: $DiffShow['source'] = (@$_REQUEST['source']=='y')?'y':'n'; To disable word-level highlighting and show plain text changes: In the page history rendering, a few minor bugs were fixed and the code was slightly optimized. The documentation was updated. Version 2.2.12 (2010-02-17)This release adds simple word-level highlighting of differences in the page history, when "Show changes to markup" is selected. To enable the feature, add to config.php such a line: This feature is like what the InlineDiff recipe provides, but not exactly the same, and the implementation is simpler. It is enabled on PmWiki.org and can be improved -- your comments are welcome. Version 2.2.11 (2010-02-14)This release adds two new table directives for header cells, (:head:) and (:headnr:). They work the same way as (:cell:) and (:cellnr:) except that create <th> instead of <td> html tags. The pagerev.php script was refactored into separate functions to allow easier integration of recipes displaying the page history. A couple of minor bugs were fixed and the documentation was updated. Version 2.2.9, 2.2.10 (2010-01-17)Most important in this release is the official change of
So, if your wiki relies on page variables from included pages, and doesn't have More information about page variables can be found at: http://www.pmwiki.org/wiki/PmWiki/PageVariables This release adds a new variable This release also adds a new variable A number of bugs were fixed and the documentation was updated. Version 2.2.8 (2009-12-07)This release fixes another PHP 5.3 compatibility issue with conditional markup. The Author field now handles apostrophes correctly. The documentation was updated. Version 2.2.7 (2009-11-08)This release fixes most PHP 5.3 compatibility issues. Unfortunately some specific builds for Windows may still have problems, which are unrelated to PmWiki. Notably, on Windows, all passwords need to be 4 characters or longer. Upload names with spaces are now correctly quoted. The documentation was updated. Version 2.2.6 (2009-10-04)With this release it is now possible to display recently uploaded files to the RecentChanges pages -- if you have been using the RecentUploadsLog recipe, please uninstall it and follow the instructions at http://www.pmwiki.org/wiki/Cookbook/RecentUploadsLog. The release also introduces Version 2.2.5 (2009-08-25)This release adds a new markup for Pagelist templates, Version 2.2.4 (2009-07-16)This release fixes a bug introduced earlier today with HTML entities in XLPages. Version 2.2.3 (2009-07-16)This release fixes six potential XSS vulnerabilities, reported by Michael Engelke. The vulnerabilities may affect wikis open for editing and may allow the injection of external JavaScripts in their pages. Public open wikis should upgrade. A new variable It is now possible to use A number of other small bugs were fixed, and the documentation was updated. Version 2.2.2 (2009-06-21)The major news in this release is a fix of an AuthUser vulnerability. The vulnerability affects only wikis that (1) rely on the AuthUser core module for User:Password authentication, -AND- (2) where the PHP installation runs with the variable "magic_quotes_gpc" disabled. All PmWiki 2.1.x versions from pmwiki-2.1.beta6 on, all 2.2.betaX, 2.2.0, and 2.2.1 are affected. The PmWiki SiteAnalyzer? can detect if your wiki needs to upgrade: http://www.pmwiki.org/wiki/PmWiki/SiteAnalyzer If your wiki is vulnerable, you should do one of the following at the earliest opportunity:
Alternatively, you can temporarily disable AuthUser until you upgrade. Note that even if your wiki does not have the AuthUser vulnerability at the moment, you are strongly encouraged to upgrade to PmWiki version 2.2.2 or later, as some future configuration of your hosting server might put you at risk. This release also comes with minor updates in the local documentation; fixes
were applied for international wikis - notably global variables in
xlpage-utf-8.php and a new variable Version 2.2.1 (2009-03-28)This release comes with an updated local documentation; wiki trails now work cross-group; guiedit.php now produces valid HTML, and other small bugs were fixed. We also added Version 2.2.0 (2009-01-18)This is a summary of changes from 2.1.x to 2.2.0.
when carrying out this upgrade inspect your config files for lines such as
$BlocklistDownload ['Site.Blocklist-PmWiki'] = array('format' => 'pmwiki');
as you may wish to fix then, eg
$BlocklistDownload [$SiteAdminGroup . '.Blocklist-PmWiki'] = array('format' => 'pmwiki');
When migrating a wiki you will have to manually modify the permission or by a script replace in all the page concerned passwdread=nopass: by passwdread=@nopass (see PITS:00961) --isidor
$EnableWikiWords = 1;
$LinkWikiWords = 0;
Version 2.1.27 (2006-12-11)This version backports from 2.2.0-beta a bugfix for Version 2.1.26 (2006-09-11)This version fixes a bug in feeds.php that would cause feed entries to be mixed up. Version 2.1.25 (2006-09-08)This release fixes a bug in authuser.php introduced by the 2.1.24 release. The skin template code has also been extended to allow Version 2.1.24 (2006-09-06)This release makes some improvements and fixes to the AuthUser capability. A bug in authuser.php that had trouble dealing with non-array values in $AuthUser has been fixed. It is now possible to specify group memberships from local/config.php (remember that such entries must come before including the authuser.php script): # alice and bob's passwords $AuthUser['alice'] = crypt('alicepassword'); $AuthUser['bob'] = crypt('bobpassword'); # members of the @writers and @admins groups $AuthUser['@writers'] = array('alice', 'bob'); $AuthUser['@admins'] = array('alice', 'dave'); # carol is a member of @editors and @writers $AuthUser['carol'] = array('@editors', '@writers'); AuthUser can now read from Apache-formatted .htgroup files. The location of the .htgroup file can be done either in local/config.php or Site.AuthUser # local/config.php: $AuthUser['htgroup'] = '/path/to/.htgroup'; # Site.AuthUser htgroup: /path/to/.htgroup Versions 2.1.21, 2.1.22, 2.1.23 (2006-09-05, 2006-09-06)This release closes a potential security vulnerability for sites that are running with 'register_globals' set to on. Details of the vulnerability will be forthcoming on the mailing list and site. Sites that are running with PHP 'register_globals' and 'allow_url_fopen' set to 'On' should upgrade to this release at the earliest opportunity. If upgrading isn't an option, contact Pm for a patch to older versions. There is now a tool available to analyze PmWiki sites for security and other configuration settings, see PmWiki:SiteAnalyzer. Version 2.1.23 also corrects a bug that prevented PmWiki from being able to read pagefiles created by versions of PmWiki before 0.5.6. Version 2.1.20 (2006-09-04)More minor bugfixes:
Version 2.1.19 (2006-08-30)This release provides a number of very minor bugfixes and enhancements:
The next release(s) may have a number of substantial code enhancements and changes, so this release simply closes out a few items before introducing those changes. Version 2.1.18 (2006-08-28)This release closes a potential cross-site scripting vulnerability that could allow authors to inject Javascript code through the various table markups. The release also adds a new Finally, this release corrects a problem with Version 2.1.17 (2006-08-26)This release fixes a long-standing bug with The new IMS caching code maintains a "imstime" cookie in the visitor's browser that keeps track of the time of last login, logout, author name change, or site modification. This cookie is then used to determine the proper response to browser requests containing If-Modified-Since headers. (Previously only the time of the last site modification was available.) Browsers which do not accept cookies will effectively act as though IMS caching is disabled. Version 2.1.16 (2006-08-26)This release makes some improvements to skin handling -- primarily this improves the capability of relocating skin files to other locations, and to provide the ability for recipes to insert items at the end of HTML output. This release introduces a Also, the A new
The keys (on the left) indicate the places to look for a "skin .tmpl
file" in the filesystem, while the values (on the right) indicate the
url location of the "skin css file". Modifying the value of
As far as I can see, none of the changes introduced by this release should have any sort of negative impact on existing sites, so it should be safe to upgrade. (If I'm wrong, please let me know.) Version 2.1.15 (2006-08-25)This release includes a number of feature enhancements and code cleanups as reported or requested by administrators. First, AuthUser's LDAP authentication system now allows the use of
a A chicken-and-egg problem with the Also, the RetrieveAuthPage() function -- used for retrieving pages only if the visitor is authorized to do so -- now recognizes a special level parameter of 'ALWAYS', which means to always authorize access regardless of the browser or visitors current permissions. This may be useful for allowing certain operations to take place from within trusted scripts without having to grant full authorization to the browser. Hardcoded instances of the local/ directory now use a
customizable Some minor internal changes have been made to scripts/wikistyles.php to better accommodate the wikipublisher recipe. It's probably better if we don't try to explain them. :-) Version 2.1.13, 2.1.14 (2006-08-15, 2006-08-16)This release fixes a bug in handling numeric passwords, and also allows ldaps:// authentication sources. Version 2.1.12 (2006-08-07)This version introduces the ability to nest divs and tables.
The standard As in previous versions of PmWiki, the To restore PmWiki's previous "non-nested" div behavior, set $Transition['nodivnest'] = 1; in a local customization file. Other changes in this release:
Version 2.1.11 (2006-06-09)This is a minor update that prevents Version 2.1.10 (2006-06-03)Version 2.1.4 introduced an This release adds a Site.LocalTemplates page for the The 'pmwiki' skin now places a <span> around the "Recent Changes" link in the header to make it somewhat easier to style. Version 2.1.9 (2006-06-02)This release fixes a long-standing and difficult-to-find bug with
the handling of Version 2.1.8 (2006-06-01)This release simply changes the $NotifyListFmt variable to be
Version 2.1.7 (2006-05-31)This release introduces a variety of improvements and bugfixes. Vspace paragraphs are now divs:
Version 2.1.7 changes the way that PmWiki handles vertical
space in output (the infamous <div class='vspace></div><p>...paragraph text...</p> is automatically converted to <p class='vspace'>...paragraph text...</p> This allows for better control over paragraph spacing. It is
expected that this change in vspace handling will not have
any detrimental effects on existing sites. Sites that have
set custom values for Improved email notifications of changes: Version 2.1.7 incorporates a notify.php script that provides improved capabilities for sending email notifications in response to page changes. This script is intended to replace the previous MailPosts capability, which is now deprecated (but will continue to be supported in PmWiki 2.1.x). Details and instructions for using notify.php are in the PmWiki.Notify page. Added 'group home page' syntax: A group name followed by only a dot or slash is automatically treated as a reference to the group's home page, whatever it happens to be. This simplifies some pagelist templates as well as a number of other items. In particular, group links in pagelist output now points to the correct locations (instead of being a page in the current group). Several bugs and vulnerabilities have been fixed:
Version 2.1.6 (2006-05-22)The primary improvement in this release is the addition of
a pagename argument to the This release also restores the ability to have hyphens in InterMap link names. Lastly, the release closes a potential cross-site scripting vulnerability in the WikiTrail markup, and provides some small performance improvements. Version 2.1.4, 2.1.5 (2006-03-29)This release fixes a few more bugs:
The release also adds a couple of items:
Version 2.1.3 (2006-03-17)This release fixes a bug that prevents the Version 2.1.2 (2006-03-16)This release fixes a bug with handling "nopass" passwords. It also makes some speed improvements to large web feeds, and fixes a couple of minor HTML tag mismatches. Version 2.1.1 (2006-03-13)This release primarily fixes a bug with passwords containing multiple authorization groups, and in the process slightly liberalized the formatting of "@group" and "id:name" handling. This release also adds a new mechanism for managing and displaying FAQ pages. Version 2.1.0 (2006-03-12)This set of release notes is fairly lengthy, as it chronicles all of the changes since 2.0.13 (four months of development). A lot remains the same, but some changes warrant extra care when upgrading from a 2.0.x version to 2.1.0 (thus the major revision number change). As always, questions and issues can be mailed to the pmwiki-users mailing list. Here's the list:
span.wikiword a.createlink { display:none; } span.wikiword a.createlinktext { border-bottom:none; text-decoration:none; color:inherit; }
Wiki administrators should note that from this release on PmWiki defaults to having WikiWords disabled. To make sure WikiWords are enabled, use Bugs and other requests can be reported to the PmWiki Issue Tracking System at http://www.pmwiki.org/wiki/PITS/PITS. Any help in testing, development, and/or documentation is greatly appreciated.. Release Notes archive - notes for versions older than 2.1.0.
This page may have a more recent version on pmwiki.org: PmWiki:ReleaseNotes, and a talk page: PmWiki:ReleaseNotes-Talk. |