gmane.comp.cms.tiki.devel

Re: [Tiki-devel] Decoding HTML special characters in page sources

Filipus Klutiero — 2012-05-16T23:45:18

I'm not sure what you mean. If you meant that rejections *should* be 
removed, then I disagree. If you meant that rejections could be removed 
to facilitate fixing the approval problem, then I agree that I don't 
really care about rejections, and it's unclear why rejected plugin calls 
would stay. The administrator can't send a message explaining the 
rejection to the editor, so I don't see how a rejection can be useful to 
editors.

I'm not sure what you mean by "removing rejected all pending", but this 
is the step which may not be as easy as it seems.

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

Re: [Tiki-devel] $baseurl in CLI scripts

Robert Plummer — 2012-05-16T21:55:23

I digress.

On Wed, May 16, 2012 at 5:15 PM, LRRC IT Department <
techsupport-OwpFwPqgrgdrovVCs/uTlw< at >public.gmane.org> wrote:

Re: [Tiki-devel] $baseurl in CLI scripts

LRRC IT Department — 2012-05-16T21:15:36

I'm sorry, this does not work from CLI.
When running the script from a command line it is impossible to 
determine what the baseurl should be because the environment variables 
that are set by the web server are not present.
We need to specify this value in a config file or in a database.

On 5/16/2012 4:33 PM, Robert Plummer wrote:

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
TikiWiki-devel mailing list
TikiWiki-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f< at >public.gmane.org
https://lists.sourceforge.net/lists/listinfo/tikiwiki-devel

[Tiki-devel] the specified wiki page cannot be used as Smartytemplate

Pete Jalajas — 2012-05-16T20:55:32

In
  lib/smarty_tiki/resource.wiki.php
     13  * \brief Smarty plugin to use wiki page as a template resource
     14  * -------------------------------------------------------------
     15  * File:     resource.wiki.php
     16  * Type:     resource
     17  * Name:     wiki
     18  * Purpose:  Fetches a template from a wiki page
     19  * -------------------------------------------------------------
     20  */
     21 function smarty_resource_wiki_source($page, &$tpl_source, $smarty)
     22 {
     23         global $tikilib, $user;
     27                 $tpl_source= tra('Permission denied: the
specified wiki page cannot be used as Smarty template resource').'<br
/>';
     28                 // TODO: do not cache ! and return the message
only once should be enough...
     29                 return true;
     30         }
     31
     32         $info = $tikilib->get_page_info($page);
     33         if (empty($info)) {
     34                 return false;
     35         }

In line 27 above, it wou

Re: [Tiki-devel] $baseurl in CLI scripts

Robert Plummer — 2012-05-16T20:33:28

I believe the base URL for tiki can be had from TikiLib::tikiUrl();
On May 16, 2012 3:41 PM, "LRRC IT Department" <techsupport-OwpFwPqgrgdrovVCs/uTlw< at >public.gmane.org>
wrote:

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
TikiWiki-devel mailing list
TikiWiki-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f< at >public.gmane.org
https://lists.sourceforge.net/lists/listinfo/tikiwiki-devel

[Tiki-devel] $baseurl in CLI scripts

LRRC IT Department — 2012-05-16T19:38:57

I am having trouble with Daily Reports feature (using trunk HEAD).

The links in the report all start with http://c: instead of the proper url.



The code for creating these reports is using a global $baseurl variable.

The problem is that this variable will not be properly set when calling a
script from the command line without using wget or curl.



I am thinking of adding a new preference to specify the baseurl for CLI
scripts.

Is this a good approach? Does Tiki already have this (I could not find it
in docs)?



Thank you.



---

Best regards,

Nethanel
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
TikiWiki-deve

Re: [Tiki-devel] Tiki9 testing - category admin not showing allthepermissions available

2012-05-16T17:57:19

Arild - the problem is that unless the scope for the edit_structures
permission is set to 'object' then you cannot grant this permission on an
individual structure page since it is simply not listed in the permissions
admin screen. So I think your suggested test below is impossible to do.
 
And I'm not sure that my problem is solved for the same reason, even if an
underlying permission check is now done.
 
geoff
 
 
  _____  

From: Arild Berg [mailto:bergar-wvxZZ5UFmn7tSSmVQiiApQ< at >public.gmane.org] 
Sent: 16 May 2012 16:15
To: 'Tiki developers'
Subject: Re: [Tiki-devel] Tiki9 testing - category admin not showing all
thepermissions available



Hi Xavi,

 

In structures, when creating a new page, the direct object permissions will
be inherited for users with either admin permissions or edit-page +
edit-structure permissions.

The inherited permissions are copied from the "parent" page.

 

To test. for a user without global editing rights, grant direct permissions
on a structure page. (edit-page and edit-str

Re: [Tiki-devel] Tiki9 testing - category admin not showing all thepermissions available

Arild Berg — 2012-05-16T15:15:00

Hi Xavi,

 

In structures, when creating a new page, the direct object permissions will
be inherited for users with either admin permissions or edit-page +
edit-structure permissions.

The inherited permissions are copied from the "parent" page.

 

To test. for a user without global editing rights, grant direct permissions
on a structure page. (edit-page and edit-structure rights).

When the user creates a new structure page (using "Add Page"), the new page
will also be editable for the same user, since the direct permissions are
inherited.

Thus a user should be able to edit the page tree, given permissions to a
single root page.

 

Note that direct object permissions override all other permissions settings,
and that this functionality should be used with care.

In the wiki admin the copying of these direct permissions can be disabled.

 

Hope this helps

 

Note that Geoff's problem mentioned below is not exactly the same, but is
fixed/included in the same commit, due to a change in the underlying
perm

Re: [Tiki-devel] Mail queue

Marc Laporte — 2012-05-16T13:47:53

On Wed, May 16, 2012 at 9:03 AM, LRRC IT Department
<techsupport-OwpFwPqgrgdrovVCs/uTlw< at >public.gmane.org> wrote:

Here is:
https://sourceforge.net/users/lrrcenter




Torsten?

Thanks!

Re: [Tiki-devel] Mail queue

LRRC IT Department — 2012-05-16T13:03:09

My SF username is lrrcenter.
I also tried to register on tiki.org, but never received a validation
email.
Thank you.

---
Best regards,
Nethanel

them in
--------------------------------------------------------------------------
----
threats.

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

Re: [Tiki-devel] Mail queue

Marc Laporte — 2012-05-16T12:53:06

Hi Nethanel!

What is your SourceForge username?

Better work in trunk than in patches :-)

Thanks!

M ;-)



On Tue, May 15, 2012 at 5:36 PM, LRRC IT Department
<techsupport-OwpFwPqgrgdrovVCs/uTlw< at >public.gmane.org> wrote:

Re: [Tiki-devel] Mail queue

Xavier de Pedro — 2012-05-16T10:10:40

Nethanel, awesome! (I've been for months after some coder to implement 
this type of feature!)

+1 to have this implemented in 9x LTS at some point (9.1, since I guess 
it's too late for 9.0)

Jonny, what you say would be (imho) an improvement that could be added, 
if you wish, in a later stage to this improvement made by Nethanel. 
Commit early, commit oftern...

Cheers

Xavi

On 16/05/12 11:59, Jonny Bradley wrote:

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

Re: [Tiki-devel] Mail queue

Jonny Bradley — 2012-05-16T09:59:44

Hi Nethanel

I've wanted this for a long time, but never got round to writing it! I would rapidly add a buffer of some sort so that when someone does N modifications to an object within M minutes (both settable prefs) then it just sends out one mail of the accumulated changes in the diff (in lovely html form of course! :)

I'll try and review the patch properly soon, but one little issue is that we've always aimed to make most of Tiki available on shared (simple) hosting, so an alternative to cron would be nice. I thought such a thing does exist in Tiki (like WP's "poor man's cron") but can't find it now...

We could also do with a consistent way of organising php files that need to be called by the shell or cron... but that's enough for now!

Thanks again, and welcome!

jonny


On 15 May 2012, at 22:36, LRRC IT Department wrote:



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and

Re: [Tiki-devel] Decoding HTML special characters in page sources

Jonny Bradley — 2012-05-16T09:51:28

Surely the only "problem" ones are previously approved ones, no? So my thoughts would be:

* Close the site!
* Make sure i only have approved plugins by removing rejected all pending (there may be unchecked ones on unused pages)
* Do the upgrade (where previously approved plugins will need re-approving)
* Approve all pending (which should be only the ones that were approved before)
* Open the site

Rejected ones will appear as pending as pages get viewed again, so carry on as before...

Personally i don't think running a site with rejected plugins on is a good idea, the page or whatever should be fixed to not contain "bad" content, i would have thought, but then i don't run any "public" sites like this.

jb



On 15 May 2012, at 19:49, Filipus Klutiero wrote:



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussi

Re: [Tiki-devel] Tiki9 testing - category admin not showing all the permissions available

Xavier de Pedro — 2012-05-16T07:41:26

Arild, what should be done (if structure permissions are not modified to 
allow object permissions at structure level, regardless of global 
permissions on structures), so that a non-admin users can be granted 
permissions to edit 1 structure, but not all the others...

I'm willing to test, but I don't6 fuly get what is the expected 
procedure, without object perms on structures, that this behavior can be 
achieved.

Any pointers appreciated.

Xavi

P.S. I've been pursuing to have permissions on local structures in tiki 
sites since a few years ago already ... (I'm very concerned with this 
limitation in tiki already with structures; and imho, this should be 
achievable without using categories in an optimum tiki implementation)

On 05/05/12 09:38, Arild Berg wrote:
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discu

Re: [Tiki-devel] BigBlueButton plugin

Xavier de Pedro — 2012-05-16T07:05:04

Hi Duane:

Beyond my skills, I'm afraid (I hope someone else using BBB and with the 
requried skills can include that in their roadmap). We will also benefit 
comunity-wise speaking (tiki webinars list so many fake events already...)

I just wanted to add to your comment that, as far as I know, there is no 
way from within tiki to indicate which recordings need to be tagged as 
unpublished, and or deleted. And for what I understood at the bbb-setup 
list and their documentation pages, there is no easy administration page 
from within bbb to do that.

Cheers

Xavi

On 15/05/12 22:22, Duane Kennedy wrote:
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_________________

Re: [Tiki-devel] Decoding HTML special characters in page sources

Xavier de Pedro — 2012-05-16T07:01:17

My 2 cents: I tried the refresh function yesterday in our 9x production 
site (a few hundred wiki pages; just 1 year old tiki site), with 128 Mb 
allowed in php.ini, and it just hit "memory exhausted" php error the 10 
times I tried (even if after every few trials, I saw a few records in 
tiki-plugins.php that I could then validate)

So yes, some carefull implementation would be needed, also (or at least) 
regarding memory consumption.

Xavi

On 15/05/12 20:49, Filipus Klutiero wrote:

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

[Tiki-devel] Mail queue

LRRC IT Department — 2012-05-15T21:36:27

Hello,

I installed Tiki very recently and I am still exploring the various
features.

I was interested in deferring notification delivery, so as to speed up the
UI and to prevent problems in case the SMTP mail server is slow or not
responding.



Attached is a patch (for 9.x branch, also works with 8.x) that intercepts
email messages just before they are sent out and stores them in a database.

A cron job can then be run to actually send these messages (script
included) asynchronously.

It is very similar to the Daily Reports feature, but is working on a lower
level (and can be used together).



I would appreciate any comments about this approach.

Thank you.



---

Best regards,

Nethanel
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in m

[Tiki-devel] BigBlueButton plugin

Duane Kennedy — 2012-05-15T20:22:35

Hi Folks,

I've noticed the BBB plugin for Tiki doesn't take recording published
status into effect.  I know BBB recording admin panel allows setting
recordings to "unpublished", so it would be great if the getRecordings
function in bigbluebuttonlib.php could incorporate a filter to exclude
unpublished recordings from the recordings array.

Sadly, the implementation of such a filter is outside my graphic designer
brain's ken.

Anyone else up for the challenge?

Cheers,
Duane
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________
TikiWiki-devel mailing list
TikiWiki-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f< at >public.gmane.org
https:/

[Tiki-devel] CMSday in Paris, June 14th, 2012

Marc Laporte — 2012-05-15T20:05:58

http://www.cmsday.fr/

Anyone going?

Re: [Tiki-devel] Decoding HTML special characters in page sources

Filipus Klutiero — 2012-05-15T18:49:35

I don't think rejections should be removed after the upgrade any more 
than before the upgrade.

If I understand correctly that you're saying the installer could verify 
the number of calls pending approval before the upgrade and if that's 0, 
approve any call showing as pending approval after the upgrade, that was 
my idea as well, but it really wasn't as easy as it looks on the actual 
installation I tested it on. There were about 20 calls showing as 
pending approval in the beginning, but we couldn't see any of these 
items as actually requiring approval. Some were associated with pages 
which showed no plugin calls lacking approval, others didn't even show 
which object they came from. The refresh function didn't reduce that 
since it only picks up those on wiki pages. So we can't delete all 
pending calls then refresh (at best, we could - perhaps - delete pending 
calls on wiki pages).

Also, in any case, parsing all pages will take some time, so such a tool 
would need a careful implementation.

On 201