Good Morning!
This are the git changes for DokuWiki committed
yesterday. Please test them and report bugs.
---------------------------------------------------------------------
http://github.com/splitbrain/dokuwiki/commit/6453acd5ff173a0249d088e9b3b58fa8feddeffa
Author: Andreas Gohr <gohr[at]cosmocode.de>
Date: Wed Mar 1 10:32:08 2017 +0100
skip empty line when reading jQuery versions. fixes #1886
http://github.com/splitbrain/dokuwiki/commit/924e477e18a8bef615c98bea5344d1b1b8054df7
Author: Andreas Gohr <gohr[at]cosmocode.de>
Date: Wed Mar 1 10:03:11 2017 +0100
adjust session ID check to specification
The documentation says sessionIDs are between 22 and 256 chars long. A
quick test only showed 26 chars in common configurations, but this
should cover all possibilities.
http://github.com/splitbrain/dokuwiki/commit/6eb3cdf688d885a7c9f299d8e5cdeaf8a2559ff7
Author: Andreas Gohr <andi[at]splitbrain.org>
Date: Tue Feb 28 19:12:36 2017 +0100
do not use invalid session IDs #1883
When an invalid session ID is passed to PHP a warning is thrown, but the
session is still initialized with this invalid ID (throwing additional
warnings on save).
This makes sure such invalid IDs are removed from the cookie array
before initializing the session.
PHP bug references:
https://bugs.php.net/bug.php?id=68063
https://bugs.php.net/bug.php?id=73860
http://github.com/splitbrain/dokuwiki/commit/3680e2cdaaf5b18434aeabc23696b8feb3dacd8c
Author: Andreas Gohr <andi[at]splitbrain.org>
Date: Tue Feb 28 18:47:13 2017 +0100
do not generate CSRF tokens when no session or user exists
This partly fixes #1883
---------------------------------------------------------------------
You can download individual diffs or patches by appending .diff or
.patch to the given commit URLs above.
Bye,
your git changelog mailer
--
DokuWiki mailing list - more info at
http://www.dokuwiki.org/mailinglist