2013-06-23 Benedikt Bär <email address hidden>
* New feature: LESS compiler
You can now use less stylesheets.
.less files are automatically compiled into
.css files if they have changed.
Signed-off-by: Benedikt Bär <email address hidden>
2013-01-13 Benedikt Bär <email address hidden>
* New feature: New template function
You can now use the setuserdata() function in
your templates.
This can be used to set a session variable from
your templates.
Signed-off-by: Benedikt Bär <email address hidden>
2012-12-14 Benedikt Bär <email address hidden>
* New feature: Include "remoteip" in systemData
The systemData variable has gained a new member,
"remoteip".
This can be used to get the IP address of the
user browsing the site.
Signed-off-by: Benedikt Bär <email address hidden>
2012-12-14 Benedikt Bär <email address hidden>
* Bugfix for Lua
The systemData variable was not passed correctly
to lua scripts in the compiled PHP templates.
This commit fixes this so scripts that rely on
the systemData variable work.
Signed-off-by: Benedikt Bär <email address hidden>
2012-12-01 Benedikt Bär <email address hidden>
* New feature: New Lua functions
A new hmac() function in the Lua scripts is
available. It can be used to HMAC-sign data.
A new base64_encode() function in the Lua
scripts is available. It can be used to base64
encode data.
Signed-off-by: Benedikt Bär <email address hidden>
2012-11-30 Benedikt Bär <email address hidden>
* New feature: New Lua functions
A new url() function in the Lua scripts is
available. It can be used to do HTTP/HTTPS
GET and POST requests.
A new json_decode() function in the Lua scripts
is available. It can be used to decode JSON
strings.
Signed-off-by: Benedikt Bär <email address hidden>
2012-11-30 Benedikt Bär <email address hidden>
* Improved feature: Better Lua security
Some of the potentially harmfull functions in
Lua were not disabled, which could lead to
security issues.
This commit adds some more disabled functions
in the Lua interpreter. Normal scripts should
not be affected.
Signed-off-by: Benedikt Bär <email address hidden>
2012-11-18 Benedikt Bär <email address hidden>
* New feature: 'secure' flag for cookies
Up until now, the session cookie Web::class sent
where accessible for all connections. However,
sometimes you might want to run a site on HTTPS
only, so we need a way to set the cookie to be
sent over HTTPS only.
This commit implements a new database value in the
master database, "domains" table, which you can use
to enable the 'secure' cookie flag.
Signed-off-by: Benedikt Bär <email address hidden>