Mercurial > p > roundup > code
comparison CHANGES.txt @ 4604:ee0b02b22b60
CHANGES.txt: adding missing credits to Ralf for commits in upcoming version.
| author | Bernhard Reiter <bernhard@intevation.de> |
|---|---|
| date | Fri, 13 Apr 2012 16:23:14 +0200 |
| parents | 0566c4d11446 |
| children | a006615b08ec |
comparison
equal
deleted
inserted
replaced
| 4603:0566c4d11446 | 4604:ee0b02b22b60 |
|---|---|
| 10 - We now have two configurable templating engines, the old Zope TAL | 10 - We now have two configurable templating engines, the old Zope TAL |
| 11 templates (called zopetal in the config) and the new Chameleon (called | 11 templates (called zopetal in the config) and the new Chameleon (called |
| 12 chameleon in the config). A new config-option "template_engine" under | 12 chameleon in the config). A new config-option "template_engine" under |
| 13 [main] can take these config-options, the default is zopetal. | 13 [main] can take these config-options, the default is zopetal. |
| 14 Thanks to Cheer Xiao for the idea of making this configurable *and* | 14 Thanks to Cheer Xiao for the idea of making this configurable *and* |
| 15 for the actual implementation! | 15 for the actual implementation! (Ralf) |
| 16 - issue2550678: Allow pagesize=-1 which returns all results. | 16 - issue2550678: Allow pagesize=-1 which returns all results. |
| 17 Suggested and implemented by John Kristensen. | 17 Suggested and implemented by John Kristensen. |
| 18 Tested by Satchidanand Haridas. (Bernhard) | 18 Tested by Satchidanand Haridas. (Bernhard) |
| 19 - Allow to turn off translation of generated html options in menu method | 19 - Allow to turn off translation of generated html options in menu method |
| 20 of LinkHTMLProperty and MultilinkHTMLProperty -- default is | 20 of LinkHTMLProperty and MultilinkHTMLProperty -- default is |
| 49 we now have a regression test. We now take care that bounce-messages | 49 we now have a regression test. We now take care that bounce-messages |
| 50 for incoming encrypted mails or mails where the policy dictates that | 50 for incoming encrypted mails or mails where the policy dictates that |
| 51 outgoing traffic should be encrypted is actually OpenPGP encrypted. (Ralf) | 51 outgoing traffic should be encrypted is actually OpenPGP encrypted. (Ralf) |
| 52 - Ignore confirm set() fields by themselves in the absence of non-"confirm" | 52 - Ignore confirm set() fields by themselves in the absence of non-"confirm" |
| 53 values; otherwise a bare confirm field can be used to change the a | 53 values; otherwise a bare confirm field can be used to change the a |
| 54 password. Reported by Cam Blackwood. | 54 password. Reported by Cam Blackwood. (Ralf) |
| 55 - Updated version of simplified Chinese message file by Cheer Xiao: | 55 - Updated version of simplified Chinese message file by Cheer Xiao: |
| 56 Corrected some mistakes, added a few more items and did some | 56 Corrected some mistakes, added a few more items and did some |
| 57 formating. | 57 formating. (Ralf) |
| 58 - Fix xmlrpc URL parsing so that passwords may contain a ':' character | 58 - Fix xmlrpc URL parsing so that passwords may contain a ':' character |
| 59 (Ralf) | 59 (Ralf) |
| 60 - Be more tolerant when parsing RFC2047 encoded mail headers. Use | 60 - Be more tolerant when parsing RFC2047 encoded mail headers. Use |
| 61 backported version of my proposed changes to | 61 backported version of my proposed changes to |
| 62 email.header.decode_header in http://bugs.python.org/issue1079 | 62 email.header.decode_header in http://bugs.python.org/issue1079 |
| 63 (Ralf) | 63 (Ralf) |
| 64 - issue2550684 Fix XSS vulnerability when username contains HTML code, | 64 - issue2550684 Fix XSS vulnerability when username contains HTML code, |
| 65 thanks to Thomas Arendsen Hein for reporting and patch. | 65 thanks to Thomas Arendsen Hein for reporting and patch. (Ralf) |
| 66 - issue2550711 Fix XSS vulnerability in @action parameter, | 66 - issue2550711 Fix XSS vulnerability in @action parameter, |
| 67 thanks to "om" for reporting. | 67 thanks to "om" for reporting. (Ralf) |
| 68 - issue2550535 In some cases even when keep_quoted_text=yes is | 68 - issue2550535 In some cases even when keep_quoted_text=yes is |
| 69 configured we would strip quoted sections. This hit the python | 69 configured we would strip quoted sections. This hit the python |
| 70 bug-tracker especially for python interpreter examples with leading | 70 bug-tracker especially for python interpreter examples with leading |
| 71 '>>>' strings. The fix is slightly different compared to the proposal | 71 '>>>' strings. The fix is slightly different compared to the proposal |
| 72 as this broke keep_quoted_text=no in certain cases. We also fix a bug | 72 as this broke keep_quoted_text=no in certain cases. We also fix a bug |
| 73 where keep_quoted_text=no would drop the last line of a non-quoted | 73 where keep_quoted_text=no would drop the last line of a non-quoted |
| 74 section if there wasn't an empty line between the next quotes. | 74 section if there wasn't an empty line between the next quotes. (Ralf) |
| 75 - issue2431638 wrong registration link in bounce mail for non-registered | 75 - issue2431638 wrong registration link in bounce mail for non-registered |
| 76 users reported *years* ago by anonymous | 76 users reported *years* ago by anonymous (Ralf) |
| 77 - Fix doc/upgrading.txt which produces errors with latest docutils about | 77 - Fix doc/upgrading.txt which produces errors with latest docutils about |
| 78 wrong block structure. Fix .gitignore in doc directory. Thanks to | 78 wrong block structure. Fix .gitignore in doc directory. Thanks to |
| 79 Cheer Xiao for the patches. | 79 Cheer Xiao for the patches. (Ralf) |
| 80 - Fix wrong execute permissions on some files, thanks to Cheer Xiao for | 80 - Fix wrong execute permissions on some files, thanks to Cheer Xiao for |
| 81 the patch. | 81 the patch. (Ralf) |
| 82 - Fix override of TemplatingUtils in instance.py, thanks to Cheer Xiao | 82 - Fix override of TemplatingUtils in instance.py, thanks to Cheer Xiao |
| 83 for the patch. | 83 for the patch. (Ralf) |
| 84 - Fix another XSS with the "otk" parameter, thanks to Jesse Ruderman for | 84 - Fix another XSS with the "otk" parameter, thanks to Jesse Ruderman for |
| 85 reporting. (Ralf) | 85 reporting. (Ralf) |
| 86 - Mark cookies HttpOnly and -- if https is used -- secure. Fixes | 86 - Mark cookies HttpOnly and -- if https is used -- secure. Fixes |
| 87 issue2550689, but is untested if this really works in browsers. | 87 issue2550689, but is untested if this really works in browsers. |
| 88 Thanks to Joseph Myers for reporting. (Ralf) | 88 Thanks to Joseph Myers for reporting. (Ralf) |