1. 10 Dec, 2010 2 commits
    • Brion Vibber's avatar
      extlibs updates: PEAR::Mail to 1.2.0, PEAR::Net_SMTP to 1.4.2 (need to go together as a pair) · 65f2d12b
      Brion Vibber authored
      PEAR::Mail updated to 1.2.0 from 1.1.4, fixes deprecation warnings on PHP 5.3, as well as:
      1.2.0:
      • QA release - stable.
      • Updated minimum dependencies (Net_SMTP, PEAR, PHP)
      • Doc Bug #15620 Licence change to BSD
      • Bug #13659 Mail parse error in special condition
      • Bug #16200 - Security hole allow to read/write Arbitrary File
      _hasUnclosedQuotes() doesn't properly handle a double slash before an end quote (slusarz@curecanti.org, Bug #9137).
      • Make sure Net_SMTP is defined when calling getSMTPObject() directly (slusarz@curecanti.org, Bug #13772).
      • Add addServiceExtensionParameter() to the SMTP driver (slusarz@curecanti.org, Bug #13764).
      • Add a method to obtain the Net_SMTP object from the SMTP driver (slusarz@curecanti.org, Bug #13766).
      
      PEAR::Net_SMTP updated to 1.4.2 from 1.3.1, needed to support updated PEAR::Mail:
      1.4.2:
      • Fixing header string quoting in data(). (Bug #17199)
      1.4.1:
      • The auth() method now includes an optional $tls parameter that determines whether or not TLS should be attempted (if supported by the PHP runtime and the remote SMTP server). This parameter defaults to true. (Bug #16349)
      • Header data can be specified separately from message body data by passing it as the optional second parameter to ``data()``. This is especially useful when an open file resource is being used to supply message data because it allows header fields (like *Subject:*) to be built dynamically at runtime. (Request #17012)
      1.4.0:
      • The data() method now accepts either a string or a file resource containing the message data. (Request #16962)
      1.3.4:
      • All Net_Socket write failures are now recognized. (Bug #16831)
      1.3.3:
      • Added getGreeting(), for retrieving the server's greeting string. (Request #16066) [needed for PEAR::Mail]
      • We no longer attempt a TLS connection if we're already using a secure socket. (Bug #16254)
      • You can now specify a debug output handler via setDebug(). (Request #16420)
      1.3.2:
      • TLS connection only gets started if no AUTH methods are sent. (Bug #14944)
      65f2d12b
    • Brion Vibber's avatar
      extlibs updates: PEAR::Mail to 1.2.0, PEAR::Net_SMTP to 1.4.2 (need to go together as a pair) · baae319a
      Brion Vibber authored
      PEAR::Mail updated to 1.2.0 from 1.1.4, fixes deprecation warnings on PHP 5.3, as well as:
      1.2.0:
      • QA release - stable.
      • Updated minimum dependencies (Net_SMTP, PEAR, PHP)
      • Doc Bug #15620 Licence change to BSD
      • Bug #13659 Mail parse error in special condition
      • Bug #16200 - Security hole allow to read/write Arbitrary File
      _hasUnclosedQuotes() doesn't properly handle a double slash before an end quote (slusarz@curecanti.org, Bug #9137).
      • Make sure Net_SMTP is defined when calling getSMTPObject() directly (slusarz@curecanti.org, Bug #13772).
      • Add addServiceExtensionParameter() to the SMTP driver (slusarz@curecanti.org, Bug #13764).
      • Add a method to obtain the Net_SMTP object from the SMTP driver (slusarz@curecanti.org, Bug #13766).
      
      PEAR::Net_SMTP updated to 1.4.2 from 1.3.1, needed to support updated PEAR::Mail:
      1.4.2:
      • Fixing header string quoting in data(). (Bug #17199)
      1.4.1:
      • The auth() method now includes an optional $tls parameter that determines whether or not TLS should be attempted (if supported by the PHP runtime and the remote SMTP server). This parameter defaults to true. (Bug #16349)
      • Header data can be specified separately from message body data by passing it as the optional second parameter to ``data()``. This is especially useful when an open file resource is being used to supply message data because it allows header fields (like *Subject:*) to be built dynamically at runtime. (Request #17012)
      1.4.0:
      • The data() method now accepts either a string or a file resource containing the message data. (Request #16962)
      1.3.4:
      • All Net_Socket write failures are now recognized. (Bug #16831)
      1.3.3:
      • Added getGreeting(), for retrieving the server's greeting string. (Request #16066) [needed for PEAR::Mail]
      • We no longer attempt a TLS connection if we're already using a secure socket. (Bug #16254)
      • You can now specify a debug output handler via setDebug(). (Request #16420)
      1.3.2:
      • TLS connection only gets started if no AUTH methods are sent. (Bug #14944)
      baae319a
  2. 27 Nov, 2010 2 commits
  3. 19 Nov, 2010 1 commit
  4. 15 Nov, 2010 1 commit
  5. 06 Oct, 2010 1 commit
  6. 19 Jul, 2010 1 commit
  7. 29 Jun, 2010 3 commits
  8. 01 May, 2010 1 commit
  9. 30 Apr, 2010 2 commits
  10. 31 Mar, 2010 1 commit
    • Brion Vibber's avatar
      Ticket #1281: JID validation now more or less follows spec instead of calling e-mail validator · 0841fa71
      Brion Vibber authored
      Basic splitting/validation code submitted via http://status.net/wiki/XMPP/JID_validation -- Copyright 2009 Patrick Georgi <patrick@georgi-clan.de> Licensed under ISC-L, which is compatible with everything else that keeps the copyright notice intact.
      
      Added PEAR Net_IDNA package to extlib to handle IDN normalization (also used by Validate's email verifier if present).
      
      * added test suite, supplemented my own test cases with JID validation and normalization test cases from libpurple
      * follows XMPP rules for validation of name part
      * fixes for normalization with non-ASCII names
      * will do domain checks if $config['email']['check_domain'] is on, checking for an XMPP-server SRV record or any lookup. (We don't actually need to ping those direct though.)
      * some more obscure stringprep validation rules aren't quite followed yet, but we err on the side of permissiveness.
      * we still don't actually let you save your address with a resource on it, as we strip resources when looking up users who've sent us presence or message updates. I would recommend saving the outgoing resource as a separate field if/when we add that..?
      0841fa71
  11. 24 Mar, 2010 1 commit
  12. 08 Mar, 2010 2 commits
  13. 24 Feb, 2010 1 commit
  14. 20 Feb, 2010 1 commit
    • Evan Prodromou's avatar
      Add HTMLPurifier to extlib · 81ea0f81
      Evan Prodromou authored
      HTMLPurifier defangs arbitrary submitted HTML. We're using it in the
      OStatus plugin, but it may be valuable for other parts of the codebase
      (I think OEmbed might benefit, for example).
      81ea0f81
  15. 15 Feb, 2010 1 commit
  16. 20 Jan, 2010 2 commits
  17. 03 Jan, 2010 1 commit
  18. 08 Dec, 2009 1 commit
  19. 16 Nov, 2009 2 commits
  20. 08 Nov, 2009 2 commits
  21. 05 Nov, 2009 2 commits
  22. 04 Nov, 2009 1 commit
  23. 02 Nov, 2009 3 commits
    • Brion Vibber's avatar
      Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, adding... · 5581143b
      Brion Vibber authored
      Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, adding redirect handling and convenience functions.
      Caching support will be added in future work after unit tests have been added.
      
      * extlib: add PEAR HTTP_Request2 0.4.1 alpha
      * extlib: update PEAR Net_URL2 to 0.3.0 beta for HTTP_Request2 compatibility
      * moved direct usage of CURL and file_get_contents to HTTPClient class, excluding external-sourced libraries
      * adapted GeonamesPlugin for new HTTPResponse interface
      
      Note some plugins haven't been fully tested yet.
      5581143b
    • Brion Vibber's avatar
      Revert "Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2... · b22fc5b7
      Brion Vibber authored
      Revert "Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, adding redirect handling and convenience functions."
      Going to restructure a little more before finalizing this...
      
      This reverts commit fa379678.
      b22fc5b7
    • Brion Vibber's avatar
      Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, adding... · fa379678
      Brion Vibber authored
      Rebuilt HTTPClient class as an extension of PEAR HTTP_Request2 package, adding redirect handling and convenience functions.
      Caching support will be added in future work after unit tests have been added.
      
      * extlib: add PEAR HTTP_Request2 0.4.1 alpha
      * extlib: update PEAR Net_URL2 to 0.3.0 beta for HTTP_Request2 compatibility
      * moved direct usage of CURL and file_get_contents to HTTPClient class, excluding external-sourced libraries
      
      Note some plugins haven't been tested yet.
      fa379678
  24. 31 Oct, 2009 1 commit
  25. 30 Oct, 2009 1 commit
  26. 21 Oct, 2009 1 commit
  27. 16 Oct, 2009 1 commit
  28. 15 Oct, 2009 1 commit