/elgg/ChangeLog

Large files files are truncated, but you can click here to view the full file

2011-10-20  Brett Profitt <brett.profitt@gmail.com>

  	* CHANGES.txt, version.php: Refs #3984. Updated changes. Version bump to
  1.7.14.

2011-10-19  cash <cash.costello@gmail.com>

  	* mod/search/search_hooks.php: Fixes #3983 sanitizing limit and offset for
  comment search

  	* engine/lib/entities.php: Fixes #3722 reverted to previous
  can_write_to_container() plus fix for group check overriding previous return
  value. Passed unit tests.

  	* mod/defaultwidgets/start.php: Fixes #3979 default widgets now registers
  for the correct plugin hook

2011-10-15  Cash Costello <cash.costello@gmail.com>

  	* CHANGES.txt: updated changes file for more accurate description of pages
  change

2011-10-08  Brett Profitt <brett.profitt@gmail.com>

  	* CHANGES.txt, version.php: Bumped version to 1.7.13. Updated changes.

2011-10-06  cash <cash.costello@gmail.com>

  	* engine/lib/input.php: Fixes #3931 fixes vulnerability in live search end
  point

2011-10-05  Brett Profitt <brett.profitt@gmail.com>

  	* engine/lib/entities.php: Fixes #3722. Checking for user when checking
  container.

2011-10-04  cash <cash.costello@gmail.com>

  	* mod/file/actions/upload.php, mod/file/languages/en.php: Fixes #3919
  checking if the file upload failed rather than saving empty file

  	* mod/pages/index.php: Fixes #3916 forwards when no owner

2011-09-29  Brett Profitt <brett.profitt@gmail.com>

  	* engine/lib/access.php: Fixed problem when checking access for logged out
  users that broke installation.

  	* CHANGES.txt, version.php: Refs #3875. Version bump to 1.7.12. Added
  release date.

2011-09-28  Brett Profitt <brett.profitt@gmail.com>

  	* CHANGES.txt: Added IE9 widget bugfix to changes.

2011-09-25  cash <cash.costello@gmail.com>

  	* CHANGES.txt: Refs #3875 updated CHANGES.txt but did not set date of
  release!!

  	* mod/profile/start.php: Fixes #3396 catching exception with a bad user when
  getting profile icon

  	* views/default/spotlight/default.php: Fixes #3874 removes references to
  elgg.com

  	* engine/lib/metadata.php, mod/members/index.php,
  mod/members/languages/en.php, mod/members/views/default/members/search.php:
  Fixes #3372 removed use of deprecated list_user_search()

  	* engine/lib/access.php, engine/lib/annotations.php,
  engine/lib/entities.php, engine/lib/metadata.php,
  engine/lib/relationships.php: Refs #3827 updated the return documentation for
  elgg_get_entities* functions

2011-09-23  Brett Profitt <brett.profitt@gmail.com>

  	* engine/lib/filestore.php, mod/file/actions/upload.php: Fixes #3698. Using
  built in PHP functions to detect mime types.

2011-09-11  Brett Profitt <brett.profitt@gmail.com>

  	* engine/lib/database.php, engine/tests/regression/trac_bugs.php: Fixes
  #3570. execute_delayed_query() accepts either a link or a db link type.

2011-09-10  Brett Profitt <brett.profitt@gmail.com>

  	* mod/blog/archive.php: Fixes #3527. Using elgg_list_entities() instead of
  list_user_entities() to support group archives in blog.

  	* engine/lib/access.php, engine/lib/entities.php,
  engine/tests/regression/trac_bugs.php: Fixes #3722. can_write_to_container()
  doesn't override canEdit() permissions for group entities.
  elgg_override_permissions_hook() checks permissions for passed user.

  	* engine/tests/suite.php: Fixes #3675. Added admin gate keeper to unit
  tests.

2011-06-15  brettp

	* .: Tagged 1.7.10. This is the last thing we do in SVN! Onward to
	  git! Woot!
	* Version bump to 1.7.10. Updated changes.
	* Refs #3544. Fix XSS exploit in embed plugin.

2011-06-14  brettp

	* Refs #3544. Checking for valid types and subtypes in
	  riverdashboard filtering to prevent XSS exploits.

2011-06-14  cash

	* Refs #3544 fixes XSS vector in pages plugin menus

2011-06-14  brettp

	* Fixed wrong variable name.

2011-06-14  cash

	* Refs #3544 better filtering of container_guid in pages plugin

2011-06-14  brettp

	* Refs #3544. Better XSS protection for tags in file search.
	* Refs #3544. Fixed XSS vector in file's search.
	* Refs #1932. Pulled in Russell's patches for 1.7. Still need to
	  merge on GH for 1.8.
	* Fixes #3530. $CONFIG->lastcache has correct value on page load
	  when cache is regenerated.
	* Fixes #3522, refs #3323, #3552. Added more unit tests for ACLs
	  and group ACLs. Added can_edit_access_collection() and moved
	  permission checks for ACL changes to actions.
	* Fixes #3552. Addess ACL unit tests. These currently fail because
	  of #3522.

2011-06-13  cash

	* Fixes #3518 added text and css to make it clear that a user has
	  been banned

2011-06-10  cash

	* Fixes #3524 using Elgg's default font in tinymce editor iframe

2011-06-09  cash

	* Refs #3544 fixed issue with messages plugin and send_to parameter
	* Refs #3544 added note about preventing reflected XSS
	  vulnerabilities. We need to develop a set of best practices on
	  this and publish them for plugin authors.

2011-06-02  brettp

	* Updated changes. Version bump.
	* Fixes #3366: Added warning to
	  get_entities_from_annotation_count() that it doesn't actually
	  count.
	* Fixes #3323. Group ACLs are populated correctly when adding
	  joining users who aren't currently logged in. Thanks for the
	  code, emdagon!
	* Fixes #3508. Pulled in the right commits to add a "creating",
	  "river" hook for river entries.

2011-06-01  brettp

	* Refs #3508. Undoing previous commit. Will find the real commit
	  for river plugin hook tomorrow.
	* Fixes #3508: Backported add, river plugin hook from 1.8
	* Fixes #3421. Checking for user entities before accessing methods
	  during registration.
	* Fixes #3316. Moved profile's call to
	  register_metadata_as_independent() higher up in the boot
	  sequence.

2011-05-28  brettp

	* Fixes #2831. Attempts to save widgets if not logged in displays
	  an error instead of doing nothing.
	* Fixes #3416. Making sure all users have the relationship
	  member_of_site to their primary site. If you're using any
	  unsupported multisite features you will need to add relationships
	  to other site guids manually.
	* Refs #3264: Can't reply to messages with a deleted sender.

2011-05-27  brettp

	* Fixes #3264. Messages from deleted users show up as "Deleted
	  user" instead of showing the viewer's icon.
	* Fixes #3414. Not rewriting http -> https if https login is
	  enabled on a fully https server.
	* Fixes #3383. urldecode()'ing the submit input for delete action.
	  Wow this is hacky.
	* Fixes #3418. Throwing exception if a gatekeeper call can't
	  forward away.
	* Fixes #3359 Updated TinyMCE to 3.4.2.

2011-05-26  cash

	* Fixes #3485 - using the correct url for autocomplete

2011-05-13  cash

	* Fixes #3424 admins can delete pages again
	* Fixes #3429 display message board posts to everyone
	* Fixes #3433 correctly checking return value of plugin hook in
	  elgg_count_comments() now

2011-04-04  brettp

	* Removed a number of executable props.
	* Removed version number in readme because it's not needed and we
	  always forget to update it.
	* Version bump to 1.7.8.

2011-04-02  cash

	* updated changelog for 1.7.8 release
	* Fixes #3001 using :checked in user validation bulk actions
	* Fixes #3179 encoding characters in search query string
	* Fixes #3277 supporting deleting disabled entities in a recursive
	  delete
	* fixed annoying reportedcontent forwarding issue

2011-03-31  cash

	* Fixes #2940 integrated Prasanth's changes into htaccess_dist for
	  better comments on php settings

2011-03-26  cash

	* Fixes #3248 adds remove_submenu_item() to 1.7 branch
	* Refs #3238 #3246 integrated fixes for annotations into 1.7 branch
	* Fixes #3238 update_metadata() allows updating the name and
	  integrated the fix for #3246 into 1.7 branch

2011-03-19  brettp

	* Refs #3164. Merged messages denormalization to 1.7 branch.

2011-03-17  cash

	* Fixes #3154 prevent system log cache from crashing Elgg
	* Fixes #2886 custom_index checks if another plugin has provided a
	  front page

2011-03-16  cash

	* Fixes #3149 only call hooks once per trigger
	* Fixes #2987 brought the fix over from trunk
	* Fixes #2988 fixed typos in relationship import method
	* Fixes #2994 search title for group uses name instead of
	  description
	* Fixes #2878 detect_extender_valuetype() makes sure passed value
	  type is valid
	* Fixes #1833 clearing the blog guid metadata when saving an edited
	  blog post
	* Refs #2909 removes bookmark plugin's use of clearRelationships()
	* Fixes #2901 fixes duplicate translation string in messages plugin

2011-03-15  cash

	* Fixes #2978 editing a topic works now and admins are allowed to
	  edit topics
	* Fixes #2968 adds logged in user check - thanks for the bug report

2011-02-18  brettp

	* Fixes #2847. Cache is set correctly on installation.

2011-02-14  brettp

	* Refs #2914: You can sort by r.time_created when using
	  relationship getter/lister functions.

2011-02-04  brettp

	* Fixes #2836: Reverted [7972]'s changes and removed the 2nd
	  incorrect 'bookmarks:more' definition.
	* Fixes #2837: Using an ID on bookmarks widget's "show more
	  discription" link to prevent js collisions.

2011-02-01  brettp

	* Credited reporter with user validation by email admin bug.

2011-02-01  cash

	* need admin privilege to see unvalidated users
	* Fixes #2835 removed user collection method and added comments to
	  partially implemented site collection functionality
	* Fixes #2836 cleaned up the more language strings in bookmarks

2011-01-31  cash

	* Bumping version to 1.7.7 and updated changes
	* removed deprecation notice in code merged from trunk to 1.7
	  branch
	* Fixes #2787 group icons are deleted when group is deleted
	* Fixes #2697 added groups and users back to activity filter
	* Fixes #2833 adds parameter to control action timeout
	* fixed regression test for image resizing
	* Fixes #2779 can now call get_widget_types() more than once
	* Fixes #2672 deleting pages is now also controlled more tightly
	* Fixes #2749 treating deprecated_version as a number rather than
	  string
	* Fixes #2790 added a preg_match in get_context() that checks for
	  /pg/<context>
	* Fixes #2793 added logic to handle variable names longer than 32
	  characters
	* Fixes #2813 returning null if a configuration value is not set
	  instead of false
	* Fixes #2828 remove_metadata() now returns false if any of the
	  delete_metadata() calls fail
	* Fixes #2818 pagination not showing when limit = 0

2011-01-24  cash

	* Fixes #2617 fixed exception message if email address is not
	  passed to elgg_send_email()
	* Fixes #2686 can now blank external pages
	* Fixes #2672 creating subpages is restricted

2011-01-23  cash

	* added catch for no comments in group forum river view
	* Fixes #2805 #2804 forcing globals to be globals for when
	  start.php is included in a function

2011-01-13  cash

	* Fixes #2746 displaying the no file notice only when elgg_list*
	  returns nothing
	* Fixes #2757 setting charset to utf-8 in unit tests reporter
	* Fixes #2791 moved widget strings into language file

2011-01-07  brettp

	* Merged r7585 to 1.7 branch. Can now specificy callback to
	  elgg_get_entities() using the 'callback' option.

2011-01-05  cash

	* Fixes #2557 moves register_entity call on groups to groups plugin
	* Fixes #2744 removed duplicate strings
	* Fixes #2767 - fixing WSOD on a bad delete
	* Fixes #2765 group menu for file plugin turned off when group
	  files is disabled

2010-12-31  brettp

	* Fixes #2745: Removed debug statements.

2010-12-23  brettp

	* Merged previous from tag.
	* Updated changes.
	* Fixes potential SQL injection in simplecache.

2010-12-22  brettp

	* Forgot to add the change I just made...
	* Version bump to 1.7.6. Updated changes.
	* Fixes #2684: is_registered_entity_type() returns correctly for
	  types without a subtype. Note: registering a subtype implicitly
	  registers a type.

2010-12-21  cash

	* corrected documentation on get access collection

2010-12-01  cash

	* Refs #2430 adds get_entities_from_access_collection() back in in
	  1.7 branch

2010-11-30  cash

	* Refs #2630 fixed url in messages delete action

2010-11-28  cash

	* Refs #2630 supporting pg/messages/<username>

2010-11-27  cash

	* Fixes #2691 fixes all pages link on all site pages page

2010-11-26  brettp

	* Updated Changes for 1.7.5.
	* Version bump (and correction) in README.txt.
	* Version bump to 1.7.5.
	* Using get_input() for widget save action.
	* Fixes #2583: Added deprecated notice for
	  list_entities_from_relationship(). Accidentally included the
	  actual fix in r7445.
	* Fixes #2572: Removed license, copyright, author, and link
	  docblock tags in all files. License and copyright are covered by
	  LICENSE.txt and COPYRIGHT.txt in root. Updated the
	  CONTRIBUTOR.txt file.

2010-11-22  cash

	* so we don't need to the global $SESSION
	* removed use of session class for get_loggedin_userid()
	* Fixes #2673 fixes warning in plugins.php
	* Fixes #2671 conversation pulled out to language file

2010-11-22  brettp

	* Fixes #2659: Pulled out styles into a css view for
	  uservalidationbyemail.
	* Fixes #2565: Wrapped twitterOAuth's include for OAuth in
	  class_exists().
	* Refs #2660: Corrected docblock for remove_group_tool_option().
	* Fixes #2660: Added remove_group_tool_option().

2010-11-21  brettp

	* Fixed possible XSS in bookmarks plugin.
	* Fixes #2669: Require a user to enter his current password before
	  being able to change it.
	* Fixes #2612: Corrected language string go to search:go.
	* Refs #2670: Fixed profile XFN in user listing view.
	* Fixes #2670: Rel links are correct for XFN in profile pages.

2010-11-11  cash

	* Fixes #2643 - do not load view path cache when plugins are
	  disabled
	* Fixes #2635 caching view types so that plugins can define new
	  view types when caching is turned on
	* Fixes #2641 was not checking for arrays in singular test
	* fixed tools url for files

2010-11-09  cash

	* cleans up previous commit
	* Fixes #2609 - walking group profile field arrays for encoding
	* Fixes #2626 - adding default annotation view
	* Fixes #2632 - documentation was incorrect for get_metadata_byname
	  - it does not return a metadata value
	* Fixes #2630 updated 1.7 file urls

2010-11-07  cash

	* Refs #2630 messages 1.7 plugin uses page handler urls now
	* Refs #2630 invite friends plugin in 1.7 branch now uses page
	  handler
	* Refs #2630 - groups plugin in 1.7 uses page handler for all URLs

2010-11-06  cash

	* fixed language string from previous commit
	* Fixes #2564 Refs #2630 1.7's thewire plugin has better urls and
	  links to users
	* Refs #2630 - updated 1.7 pages urls
	* Refs #2630 - fixed 1.7 members urls
	* Refs #2630 - fixed 1.7 bookmarks urls
	* Refs #2630 - fixed 1.7 blog urls

2010-11-03  brettp

	* Fixes #2582. Using the correct language string.

2010-10-27  cash

	* Refs #2592 - large profile icons are now being created when
	  cropped
	* Fixes #2589 - user add action now checks password before creating
	  user entity

2010-10-14  brettp

	* Forgot to include Twitter oAuth instructions in changes. #Fail.
	* Bah forgot to add the release date in CHANGES.
	* Updated changes for the bookmarks bugfix while in beta.
	* Version bump to 1.7.4 final.

2010-10-12  brettp

	* Added a second bulk actions for validating unvalidated users if
	  there are > 5.

2010-10-11  brettp

	* Fixes #2552. Fixed langauge string.
	* Refs #2551: Added placeholder title text for bookmarks that were
	  added without titles.

2010-10-10  brettp

	* Fixes #2551. Checking for title and address in bookmark save
	  action.

2010-10-09  brettp

	* Fixes #1833: Saving a blog draft saves the blogguid to the
	  session to avoid problems when pulling in drafts on existing blog
	  posts.

2010-10-08  cash

	* using elgg_get_excerpt() in comment river view

2010-10-08  brettp

	* Interface fixes for unvalidated users page.
	* Only selecting disabled entities to avoid showing entities
	  logging in with 3rd party plugins.
	* Simplified taking bulk actions on users. Added "check all"
	  button.

2010-10-07  brettp

	* Version bump in README. Updated changes.
	* Added pagination to unvalidated user list.

2010-10-06  brettp

	* Refs #2537: Invalidating instead of regenerating simplecache when
	  plugin states are changed.
	* Version bump to 1.7.4b
	* Fixes #2410: Added elgg_invalidat_simplecache(). Instead of doing
	  a silly echo ''; exit; when simplecache can't load a file, it now
	  regenerates and displays it.
	* Refs #2518: Backported the Unvalidated Users admin section to
	  1.7.

2010-10-05  brettp

	* Fixes #2202. Backported parts of 1.8's Twitter service to 1.7 for
	  oAuth. We'll need to selectively merge the bug fixes and
	  improvements I've made back to 1.8. Updated The Wire to use the
	  new twitter services plugin hooks.
	* Fixes #2493: Added optional parent argument to profile's
	  setup_avatar_menu(). Added JS in riverdashboard to rebuild the
	  avatar menu when loading sections via ajax.
	* Fixes #2465. Fixed an invalid call to is_callable() in the
	  ElggMemcache::__construct() to prevent an early call to
	  elgg_echo(), which caches the hard coded default language 'en'.
	  Also removed the early elgg_echo() call if switching between
	  multiple and single versions of memcache. The memcache
	  implementation needs rewritten.

2010-10-01  cash

	* Fixes #2499 - fixed resize of non square tall images and resizing
	  of images not allowed to be upscaled

2010-09-30  cash

	* Fixes #2498 - checking for existence of comment text before
	  displaying
	* Fixes #2489 - group tool registered with 'file'

2010-09-29  cash

	* Fixes #2474 - using local variables rather than globals for db
	  paramaters
	* Fixes #2496 - fixes group pages welcome message editing and the
	  editing of a user's welcome page by an admin
	* fixed bug where Elgg crashes if an update is attempted on a bad
	  entity

2010-09-15  brettp

	* Refs #2366: Merged previous to 1.7 branch.

2010-09-12  cash

	* Fixes #2459 - correctly handle POST data when magic quotes is
	  turned on for the web services API

2010-09-11  brettp

	* Fixes #2464: Using is_numeric() in get_entities() to avoid
	  returning entity with guid 1 if a truthy param is passed.

2010-09-11  cash

	* json viewtype needed an entity_list view

2010-09-09  cash

	* Fixes #2454 - perform password sanity checks before registering a
	  user

2010-09-03  cash

	* need to check if page owner exists before using it

2010-09-02  brettp

	* Version bump to 1.7.3.

2010-08-31  cash

	* Fixes #2437 - fixes bug introduced in [6707] - thanks for the
	  report!
	* Fixes #2429 - profile only adds sidebar links when viewer has
	  proper permissions

2010-08-29  cash

	* Forward to REFERER when captcha check fails

2010-08-28  cash

	* Fixes #2426 - deprecated get_entities* functions now support
	  multiple owners as they did in Elgg 1.6
	* merged [6872] from trunk into 1.7 branch

2010-08-23  cash

	* Fixes #2412 - catch DB exception and create the group acl

2010-08-19  brettp

	* Version bump for 1.7.2.
	* Fixes #2393: Added Evan to contributors file.

2010-08-15  cash

	* Fixes #2406 - check if the passed viewtype is valid on boot

2010-08-11  cash

	* updated comment in upgrade so people do not confuse sql and php
	  upgrade scripts

2010-08-10  cash

	* Fixes #2399 - fixes topic string in groups plugin

2010-08-08  cash

	* fixed hardcoded 'via' in the wire plugin
	* Fixes #2398 - 'update' is no longer hardcoded in wire

2010-08-07  cash

	* cannot use links in a system message due to jQuery
	* People are having a hard time figuring out where the Elgg wiki is
	  so including the link
	* cleaned up the reported content plugin
	* Fixes #1905 using better button titles in reported content plugin
	* Fixes #1828 - encoding quotes in file titles for embed plugin
	* Fixes #2395 - 'by' no longer hard coded but replaced by
	  'groups:lastcomment'
	* Fixes #2371 - create_annotation returns false when a plugin
	  rejects the annotation through the elgg event
	* the elgg loading entity from a database row function now falls
	  back to the parent class when the sub class no longer exists due
	  to a plugin being disabled
	* fixed bug in twitter widget when username is not set - extra div
	  was leaking through
	* removed dependency from the plugins on css in bookmarks plugin
	* added world wire posts link to sidebar when logged out
	* Closes #2362 - ignoring all . directories in mod
	* Fixes #2392 - search plugin's mysql query now specifies the
	  database link
	* fixed avatar drop down issue for the write as reported at
	  http://community.elgg.org/mod/groups/topicposts.php?topic=538793&group_guid=212067

2010-08-06  cash

	* do not push status message to say that notification settings have
	  been saved if they haven't changed
	* Fixes #2388 - check now includes type to avoid issue that Milan
	  pointed out
	* fixed some language issues in pages plugin
	* Fixes #2387 - removed all title editing disabling code
	* Fixes #2389 - removed some junk from the widget textareas

2010-08-06  brettp

	* Merged [6790]'s License correction to 1.7 branch and 1.7.2b tag.
	* Merged license correction from [6803] to 1.7 branch and 1.7.2b
	  tag.

2010-07-31  cash

	* standardized todo comments so that it is easier to track them in
	  an IDE
	* entity list pagination needs a clearfloat in case the entity view
	  does not fill entire width

2010-07-30  cash

	* updated the @since documentation for the engine starting from
	  1.7.0

2010-07-27  cash

	* Began pulling out 1.7.2 changes into CHANGES.txt

2010-07-24  cash

	* distinguishe between PHP log messages and Elgg log messages
	* Refs #1150 - removed direct session access from minor core
	  plugins
	* missed this in [6763]
	* Refs #1150 removed session access and did a little clean up in
	  messages plugin
	* Refs #1150 - removed remaining direct session accesses in core
	  views
	* missed this in [6755]
	* removed unused language strings in riverdashboard plugin
	* Cleaned up the friends widget plugin

2010-07-23  cash

	* Refs #1150 - removed some direct session access from core views
	* cleaned up the title view

2010-07-22  cash

	* Refs #1150 - using get_loggedin_user* functions on settings pages
	  and cleaned up view code
	* Refs #1150 - core actions do not use $_SESSION['user']

2010-07-21  brettp

	* Added optional params to validate_action_token() to specify a
	  token to validate instead of pulling from $_REQUEST.

2010-07-21  cash

	* cleaned up some documentation for annotations
	* added comment in get_data() related to returning false or an
	  empty array
	* removed imaginary elgg_new() function calls and replaced with
	  elgg_echo()

2010-07-20  cash

	* Refs #2327 - replaced call to get_tags() in category list view
	* Refs #2327 - replaced call to list_entities_from_metadata() in
	  category listing page and fixed a context issue that needs to be
	  looked at for 1.8
	* Refs #2327 - replaced call to list_entities_from_metadata() in
	  group tag search
	* Refs #2327 - replaced call to list_entities_from_metadata() in
	  file search page
	* Fixes #2369 - non-logged in users no longer misleading text on
	  closed groups
	* Fixes #2370 - applied Glen's patch to fix groups welcome message

2010-07-16  brettp

	* Refs #2327. Applied Evan's patch to remove a call to
	  list_entities in /entities/list.php
	* Fixes #2353. Applied Evan's patch so that elgg_get_tags() returns
	  tags with count >= threshold instead of >.
	* Fixes #2144. Applied Evan's patch to not regenerate simplecache
	  in regenerate_plugin_list().

2010-07-15  cash

	* Refs #1974 - json river view now uses json export global and
	  changed timestamp to a timestamp

2010-07-15  brettp

	* Closes #2358, refs #2351. Using empty() to check for subtype
	  string in get_objects_in_group().
	* Refs #2351. get_objects_from_container() returns FALSE on
	  incorrect subtypes.
	* Refs #1974: Added HTML string to river output json view.

2010-07-13  brettp

	* Fixes #2063: Added unit tests for get_image_resize_parameters().
	  Removed odd logic that ignored all options when not upscaling
	  (see #1445).

2010-07-10  cash

	* more standardization of entities.php
	* added missing brackets so if statement conforms to coding
	  standard
	* Fixes #1896 - notifications are now set when collections change -
	  includes an upgrade script to fix installs pre-fix
	* Fixed a bug where $limit was being ignored if set to 0
	* Refs #2035 - forgot that people may be upgrading from 1.6 or
	  earlier so cannot reuse same function name that I stole from
	  earlier upgrade script
	* Fixes #2035 - profile icons now use user guid rather than
	  usernames - includes upgrade script
	* Closes #2275 - added friendly title to page urls
	* Fixed site notifications for pages plugin
	* Fixes #2305 - page titles can be edited
	* Fixes #1391 - widget ownership is not limited to users

2010-07-09  brettp

	* Fixes #2224: Applied Evan's patch to not cache unchangable
	  ElggEntity attributes.

2010-07-09  cash

	* Closes #2324 - cleaned up documentation related to new output and
	  views core lib files
	* Fixed deprecated notice for list_entities_from_metadata()
	* removed unused code in file plugin's world page controller
	  related to tags
	* Fixes #2346 - limit is now used in file world page controller

2010-07-07  cash

	* Fixes #2333 - Applied Evan's patch - elgg_make_excerpt is now
	  elgg_get_excerpt
	* Closes #2326 - moves views related boot function to views.php
	* Fixes #1434 - applied Evan's patch - max execution time is turned
	  off during upgrades

2010-07-06  cash

	* Closes #2328 - applied Evan's patch to remove hacks from htaccess

2010-07-05  cash

	* Fixes #1291 - blog access control has specific CSS to set width

2010-07-04  cash

	* Fixes #2337 - when group content is deleted, forward to group
	  page
	* Refs #2063 - pulled out resize parameter calculations into a
	  separate function so that we can write unit tests on it
	* removed empty line from top of HTML page

2010-07-03  cash

	* Fixes #1243 - deleting a user on his profile forwards to user
	  administration and system message includes name of user deleted
	* Closes #2027 - added plugin hooks for friendly time and friendly
	  title
	* Closes #740 - updated documentation on metadata creation to be
	  explicit with reference to not supporting associative arrays
	* Refs #1393 - tried to make the ugly hack comprehensible and added
	  a note that this will be deprecated in Elgg 1.8
	* Closes #864 - file and notification plugins already set page
	  owner. Removed remaining page owner on remaining admin plugins
	  doing that.
	* Fixes #2061 - missing filestore metadata causes fallback to
	  default filestore rather than exception. If a bad filestore is
	  specified, throw useful exception message
	* registering simpletype before grabbing tags in embed plugin
	* made warning stronger on htmlawed plugin - same as trunk now
	* Refs #2327 - removes another call to deprecated
	  get_entities_from_relationship() in groups plugin
	* newest blog posts listed first in date archive now
	* Refs #2327 - registering simpletype as a tag name in files plugin
	  for filetype cloud
	* Refs #2327 - removes some deprecated get entities from
	  relationship calls in groups plugin
	* Refs #2327 - removed calls to deprecated
	  get_entities_from_annotations() in annotations.php
	* updated documentation on exposing a method in web services api
	* Fixes #2034 - adds a group create event and renames the group
	  join event so it does not collide with group create
	* removed river view for groups not used in Elgg 1.5 and beyond
	* Fixes #2295 - added a membership roster page
	* Fixes #2277 and standardizes group widgets for blogs, bookmarks,
	  files, and pages - themes may need to add 2 new CSS elements
	  related to .group_widget
	* Closes #1856 - forum topics can now be edited

2010-07-02  cash

	* easier to understand version of previous commit
	* Fixes #2297 - calling metadata with a null value does not delete
	  first array value anymore - returning id of created metadata and
	  updated all functions that use the return value
	* Fixes #828 - set_input() and get_input() now handle nested arrays

2010-07-01  cash

	* removed empty directory from last commit
	* Closes #2117 - removes empty views no longer needed due to new
	  fallback mechanism on viewtypes

2010-06-30  cash

	* Refs #2027 - using elgg_view_friendly_time() in core
	* Refs #2117 #2276 #2027 - added elgg_get_friendly_time and
	  elgg_get_friendly_title so they can be used in non-html views
	* added documentation to the graphics/icon view

2010-06-27  cash

	* Refs #2068 - fixed invisible groups when access level is owned by
	  group
	* Fixes #2200 - committed bman's patch with a hint to developers to
	  avoid redirects

2010-06-24  cash

	* Refs #1127 - create time has been added to relationships
	* Refs #2068 - missing commit from [6553]

2010-06-23  brettp

	* Fixed typo in INSTALL.txt.

2010-06-23  cash

	* Fixes #2068 - group access collections owned by group - also
	  updated access collection membership in case problems occurred in
	  the past

2010-06-23  brettp

	* Fixes #2041: Updated category links for blogs.
	* Checkboxes input: Corrected the <br /> and once again forcing []s
	  on internal name.
	* Fixes #2300: Using usort() to sort users by their display name in
	  user picker.
	* Fixes #2012: Blog posts not in full view mode are trimmed to 500
	  chars.
	* Using '...' instead of &#8230 in elgg_make_excerpt() to keep it
	  usable in non-HTML land.
	* Added policy for breaking between standard English words.
	  Updated a few examples and fixed some typos.
	  CODING.txt is now double spaced for your viewing pleasure (since
	  whitespace is free).
	* Fixes #2054: elgg_pluralise_options_array() was too smart for its
	  own good and was breaking singular -> plural rewrites if a
	  default wasn't ELGG_ENTITIES_ANY_VALUE. Made it dumb. Added unit
	  tests for site_guids.

2010-06-22  brettp

	* Grab counts for search terms first to avoid multiple queries on 0
	  results. Switched to boolean mode for title/desc only searches.
	* Added default value for $where in search_get_where_sql().
	  Commented out worthless if statement.
	  -This line, and those below, will be ignored--
	  
	  M start.php
	* Fixes #1943: Removing boolean mode operators from highlighting in
	  search. Fixed boolean mode detection when using +, -, and ~s.
	* Fixes #397: Added hidden value for checkboxes to allow use in
	  settings. Cleaned up checkboxes code.

2010-06-21  cash

	* Improved the documentation of create_metadata()
	* replaced 2 with ACCESS_PUBLIC in group listing view

2010-06-19  brettp

	* Fixes #2135: Escaping regexp chars in search strings.
	* Refs #2252: Allowing plugins to load during an upgrade in order
	  to recache views correctly.
	  Merged a few important missed bits of 1.8's start.php file to
	  1.7's.
	* Making sure to include admin field in utf8 username update.

2010-06-18  brettp

	* Fixes #2274: Use !$order_by_metadata instead of
	  !isset($order_by_metadata) in
	  elgg_entities_get_metastrings_options() because isset(array())
	  returns true, which forces a join on the metastrings table.
	  Added unit tests for egeb_relationship()
	* Fixes #2293: Pulled in Glen's patch.

2010-06-18  cash

	* Fixes #2252 - global variable that page_elements/header depends
	  on now set for caching - before views were cached but browser was
	  not requesting them

2010-06-17  brettp

	* Fixes #2123: Special encoding and data migration for utf8
	  usernames when upgrading from < 1.7.
	  Version bumpbed.

2010-06-16  cash

	* Closes #2288 - friends pages can now be removed from page
	  handling system. Links to these friends pages in core could
	  already be removed through remove_menu() and overriding views
	* Refs #2288 - cleaned up friends pages - removed start script,
	  fixed a title bug, removed direct $_SESSION access
	* Fixes #2287 - handles empty site email address now

2010-06-15  brettp

	* Fixes #2164: Backported elgg_list_entities_from_metadata() to 1.7
	  branch
	* Fixes #2014: Pulled in Evan's patch to display invalid username
	  chars.

2010-06-15  cash

	* fixed group featuring

2010-06-15  brettp

	* Backported 1.8's engine/start.php file to 1.7 because it's much
	  nicer.

2010-06-14  brettp

	* Fixes #2252: Move core view discovery to system boot event so
	  upgrade.php correctly regenerates views cache for core views.
	  Very important for css...
	* Can't take it any more--view functions have been pulled out into
	  engine/lib/views.php

2010-06-13  brettp

	* Fixes #2208: Applied Evan's patch to remove extra spaces from
	  pagination "current page." CSS is already in place to keep things
	  pretty.
	* Fixes #2126: Applied Evan's patch.

2010-06-12  cash

	* elgg_view() was not falling back to plugin views correctly

2010-06-05  cash

	* Fixes #2261 - forward user on error back to referrer. Captcha
	  still doesn't play nice.
	* Fixes #2257 - checking if invited person is already member and
	  display better error messages
	* Fixes #2265 - checking if user has any collections before
	  updating them
	* Fixes #2264 - checking if access collection is empty before
	  looping

2010-06-04  brettp

	* Fixed UTF8 reply subject mangling.
	  Removed an unused view.

2010-06-04  cash

	* Closes #2260 - group names are now links in widget
	* Closes #1837 - removes bad notification relationships during
	  upgrade

2010-06-03  brettp

	* Merged previous CODING.txt changes to 1.7 branch.

2010-06-03  cash

	* Refs #1837 - Generalizes previous commit to also handle deleted
	  friends
	* Refs #1837 - leaving a group now removes the notification
	  relationships

2010-06-02  cash

	* Closes #2115 - simplecache is viewtype specific and does not
	  regenerate twice per reset

2010-06-01  cash

	* Refs #2115 - simplecache is now viewtype sensitive
	* profile icon encodes & properly
	* img tag widths and heights should not include px

2010-05-29  brettp

	* Merged previous view_type additions to 1.7 branch.

2010-05-28  cash

	* stop cutting off the last word of short posts
	* Closes #2191 - can now remove menu items

2010-05-27  nickw

	* Porting r6257:6258 from trunk: registers password reset/request
	  as public actions.

2010-05-27  cash

	* Closes #2044 - rewrote default_page_handler so that it does what
	  it is supposed to do
	* Closes #2108 - TinyMCE no longer pulls out domain from local
	  links
	* Fixes #2171 - input/pulldown now works with an options array

2010-05-26  brettp

	* Merged previous to 1.7.

2010-05-26  cash

	* Fixes #2037 #2089 - fixing issues with joining group when saving
	  group
	* forgot to uncomment actual fix in previous commit - truly closes
	  #1963 this time
	* Fixes #1963 - group profile data is now properly encoded and
	  includes upgrade script to fix current data
	* standardized group edit action

2010-05-24  brettp

	* Merging previous to 1.7 branch.

2010-05-20  brettp

	* Merged 6118 and PART of 6117 from trunk => 1.7. *grumble, grumble
	  atomic commits*
	* Merging [6119] into 1.7 branch.

2010-05-19  cash

	* Fixes #2138 - updating a bookmark does not add a new bookmark
	  river event now
	* Fixes #1879 - admins can now edit and delete group forum topics
	  and posts in groups they do not belong to

2010-05-18  brettp

	* Merged previous commit's functionality into 1.7 branch.

2010-05-13  cash

	* moved some output related functions from elgglib.php to
	  output.php
	* Closes #2140 and #2184 - excerpt code is now in output.php
	* removed activity.php from libraries being loaded
	* good-bye activity.php - moved only function to river.php and
	  deprecated
	* promote river2.php to river.php
	* Refs #2140 - welcome output.php and a general purpose excerpt
	  function

2010-05-12  cash

	* Fixes #1923 - added page owner to 2 group pages
	* Fixes #2181 - only add river event when profile edited by owner
	* Fixes #2136 - removed session fingerprint using user agent - not
	  dependable, nor does it provide any increase in security
	* Fixes #2153 - user agent removed from action token calculation
	* Fixes #2006 - simplecache and viewpathcache flags work the same
	  way now

2010-05-11  brettp

	* Check wwwroot for trailing slashes on site info edit.

2010-05-11  cash

	* Fixes #2187 - notifications plugin now unextends the user
	  settings view for notifications
	* Refs #2187 - added method to unextend views
	* Fixes #2186 - forgot to add & in [5996]

2010-05-10  cash

	* Fixes #2185 - sets query string in rewrite rules rather than in
	  php code - **requires update to htaccess**

2010-05-07  cash

	* Fixes #1900 - page owner is set for notification pages
	* added page handler to notifications plugin
	* finished standardizing the notifications plugin

2010-05-05  brettp

	* Fixes #2145: elgg_list_entities() respects offset and limit
	  passed via $_GET.
	* Fixes #2148: Admin-only actions called by non-admin users
	  register an error on redirect.
	* Fixes #2156: Blog draft and preview work without body content.

2010-05-04  cash

	* starting standardizing the notifications plugin
	* riverdashboard now supports RSS feeds and allows non-logged in
	  users to view
	* cleaned up documentation on contentwrapper view
	* use pagehandler in riverdashboard and select page title based on
	  configuration

2010-05-03  cash

	* forgot to add @since on addition of remove_from_river_by_id()
	* Standardized the riverdashboard plugin
	* Closes #2066 - added function to remove single river entry
	* merged [5939] from trunk into 1.7 branch

2010-05-01  cash

	* you post comments - not save them - this confuses content owners
	  who think they are saving their content
	* Refs #1150 - active code in engine now uses get_loggedin_user*
	  functions
	* made get_loggedin_user() consistent with its documentation and
	  made null uppercase

2010-04-30  cash

	* Refs #2117 - rss viewtype needs entity list view
	* Closes #1888 - forum topics view now uses $vars[] instead of
	  get_input()
	* Fixes #2141 - applied patch to catch request for non-existent
	  user's profile icon

2010-04-29  cash

	* Fixes #2137 - time creation parameters are now properly be
	  rewritten for deprecated interfaces
	* cleaned up messageboard code - better widget code, no direct uses
	  of $_POST, and so on
	* Refs #2055 - added comment to explain why output of
	  get_access_sql_suffix() is modified in river table query
	* Closes #2130 - forward(REFERER) now works

2010-04-28  cash

	* Fixes #2133 - user default access works again
	* Fixes #2132 - widget save action no longer forwards and does not
	  queue up system messages
	* Fixes #1783 - deleted message board entries are removed from the
	  river
	* standardized the messageboard plugin

2010-04-27  cash

	* Refs #2117 - only fall back to default view if that viewtype has
	  been registered
	* Fixes #1403 - conversion over to new mail function is complete
	* brought the invite friends plugin up to standards
	* a little cleanup of friend create river view
	* Fixes #2120 - actions() now checks properly for public actions
	* Fixes #2119 - handles disabled entities in the river
	* Refs #1403 - invitefriends now uses an Elgg function to send mail

2010-04-26  cash

	* Fixes #2060 - users are logged in regardless of method's
	  requirement for authentication
	* removed session PAM from default web services handler

2010-04-23  cash

	* Refs #1403 - first cut at a general purpose email send function

2010-04-22  cash

	* fixed elgg_get_file_list() so that it actually works
	* improved documentation of elgg_extend_view()
	* Added plugin hook to forward()

2010-04-21  brettp

	* Updated changes and bumped version for 1.7.1

2010-04-21  cash

	* cleaning up [5822] - putting elgg_format_url() in the same
	  location in elgglib.php

2010-04-20  cash

	* Fixes #2075 - applied Melvin's patch to the foaf views
	* merged [5603] into 1.7 branch from the trunk

2010-04-20  brettp

	* Fixed the previous fixes for Insanoday 2010.

2010-04-19  brettp

	* Refs #2074: container_guid support added to search backend, but
	  no interface for it yet.

2010-04-17  brettp

	* Merged previous commit into 1.7.

2010-04-16  brettp

	* type_subtype_pair correctly rewrites to type_subtype_pairs in
	  elgg_get_entities().

2010-04-16  cash

	* Fixes #2065 - added missed .
	* Fixes #2069 - when a file is updated, it needs to be saved to
	  force attributes to database
	* Fixes #2062 - use mb wrapper functions on file names in file
	  plugin upload action
	* Fixes #2067 - group forum comments now removed from river when
	  deleted

2010-04-15  brettp

	* Version bump.

2010-04-14  cash

	* profile icons need to be scaled if smaller than asked for

2010-04-14  brettp

	* Fixes #2039: Added indicator.gif.

2010-04-13  cash

	* #refs #2035 - added profile icondirect back to the 1.7 branch
	* fix for previous - subtype depends on type so type must be
	  specified when retrieving entities based on subtype
	* Refs #2041 - added category listing page and standardized plugin

2010-04-12  cash

	* thewire rss feed did not have a proper guid - fixed this

2010-04-09  brettp

	* Fixes #2053: Tags return the correct title in search for users
	  and groups.
	* Reopens #2028: Removed clearfloat class to fix search results
	  displaying for entities. Removed unnecessary CSS. Updated
	  comments view to display the same as entities. Comments still
	  need to support the new overrides. The readme file needs to be
	  updated to reflect the changes.

2010-04-06  brettp

	* Merged #5634 to 1.7.
	* Merged 5624 from trunk.

2010-04-05  brettp

	* Fixes #2028: Pull in Justin's changes to allow search overrides
	  for url, time, and icon.
	* Fixed installation problems after [5584].

2010-04-03  cash

	* get_entities() was not passing a limit of 0 to
	  elgg_get_entities()
	* fixed bug caused by display name collision in friends picker
	* those who have iconv can use it with friendly titles by
	  uncommenting
	* Fixes #1976 - comments now have a search view for RSS
	* Refs #2016 - profile edit action can now handle multi-dimensional
	  arrays
	* fix for previous commit
	* Fixes #2017 - htmlawed now handles multidimensional arrays
	* if first or last word consists of all non-safe url characters you
	  end up with - in odd spot. This fixes that.
	* blog owner's name was not being set in page title
	* fixed minor layout issue where the To: and icon were flipped when
	  composing a message
	* Fixes #2040 - forward user to inbox after sending a message
	* updated changelog for today's commits
	* Added remove_widget_type() so that sites can control what widgets
	  are available
	* Made the widgets for the various content plugins consistent
	* Fixes #2013 - adds blog widget
	* Fixes #1223 - skip notification methods that no longer exist
	* Fixes #1308 - if subtype front is not defined, externalpages was
	  throwing a warning

2010-04-03  brettp

	* Added 1.7.1 changes to CHANGES.txt
	* Refs #2015: Reverted output/url to not force http:// prefixes on
	  URLs.

2010-04-03  cash

	* Refs #2005 - javascript not corrupted by logging at DEBUG/WARNING
	  level

2010-04-02  brettp

	* Fixes #2027, fixes #1265: Moved friendly time and friendly title
	  into views that can be overridden by plugins.
	* Fixes #671: Moved admin flag from metadata to users_entity table.
	  +5 speed.

2010-04-02  cash

	* Refs #1976 - added rss search view to the wire

2010-04-01  brettp

	* Added a few more metadata tests.
	* Cleaned up some of the sql where functions for
	  elgg_get_entities_from_metadata().
	* Enable filtering on search queries.

2010-04-01  cash

	* Fixes #1989 and refs #2035 - profile icondirect should work for
	  those using CGI
	* Refs #2010 - file download action restored and exempted from
	  token requirement - does not need to be merged into trunk

2010-03-31  brettp

	* Fixes #1928: UTF8 migration moved from db to code to detect if it
	  is required. Bumped version to 1.7.1 (2010033101).

2010-03-31  cash

	* Fixes #1945 - add_to_river now checks for view with default
	  viewtype
	* Added an error message to explain denied access to closed group
	  pages
	* Fixes #2011 - access check for closed groups for group plugins

2010-03-30  brettp

	* Fixes #2022: get_entities_from_annotations() rewrites owner_guid
	  to annotation_owner_guids. Cleaned up some leftover code. Added
	  maxtime back to select statement.
	* Fixes #2022: Added abilty to get entities by metadata/annotation
	  owner_guid. DRY'd up the metadata and annotations SQL. As an
	  added bonus, you can now sort by annotation value if so inclined.

2010-03-30  cash

	* Refs #1976 - Search now includes a link to RSS page
	* Fixes #2019 - correctly checks the container permissions based on
	  user id
	* Fixes #2020 - all changes to thewire that were lost are
	  intregated back in
	* Refs #2020 - wire does not integrated with activity dashboard
	  anymore
	* Refs #2020 - wire post is not turned into tag array because we
	  have free text search now

2010-03-29  cash

	* Fixes #2016 - profile edit action can now handle 1D arrays
	* Fixes #1967 - cleans up forward()

2010-03-28  cash

	* better fix for previous commit
	* fixes warning in notification settings when no friends selected
	* fixed bugs in friend picker for notifications - was not i18n
	  friendly and not handling case where no friends selected yet
	* cleaned up php code in notification's forminternals and fixed
	  open link tag - I'll handle merge into trunk
	* made the friend picker in notifications multi-byte string
	  friendly

2010-03-26  brettp

	* Refs #2015: It's too early. Using the correct variable.
	* Fixes #2015: output/url view again appends http:// to the value
	  if missing.

2010-03-26  cash

	* removed undeclared variable $area1 from blog index

2010-03-25  cash

	* Fixes #2008 - fixed some sloppy code in the embed plugin so that
	  pagination works
	  -- This line, and those below, will be ignored--
	  
	  M mod/embed/views/default/embed/pagination.php
	  M mod/embed/views/default/embed/media.php
	* Fixes #1937, refs #1781 - stripping tags moved into plugin
	  actions until better solution
	* missed file for revision [5441]
	* Fixes #2001 - setting subtype correctly in clone method
	* Fixes #1925 - member search by tag now works

2010-03-24  cash

	* tag cloud functions are deprecated in 1.8

2010-03-22  cash

	* Refs #1991 - owner_guid needs to be set to NULL when setting
	  container_guid

2010-03-19  cash

	* Fixes #1902 - strips slashes from url encoded titles for
	  bookmarks
	* Fixes #1999 - replaces calls to mysql_real_escape_string() with
	  sanitise_string()

2010-03-19  brettp

	* Merged 5426 from trunk to 1.7.
	* Merged 5424 into 1.7 branch.
	* Fixes #1988: Corrected metadata case sensitivity in
	  list_entities_from_metadata().
	* Fixes #1992: Removed incorrect extended view in the wire.

2010-03-19  cash

	* Fixes #1940 - db settings are checked before settings.php is
	  created
	* Fixes #1993 - links in tag cloud now properly hit search pages
	* Fixes #1991 - only sets container to owner if container not
	  defined for get_entities()

2010-03-19  brettp

	* Fixes #1994: Missing views now throw a NOTICE instead of a
	  WARNING.

2010-03-18  cash

	* Fixes #1951 and #1952 - tag lib now has elgg_get* interface

2010-03-17  brettp

	* Fixes #1818: Tinymce's init uses a class selector on text areas
	  to avoid hijacking plaintext fields on the same page.

2010-03-17  cash

	* Refs #1976 - adds RSS layout view for search

2010-03-16  cash

	* Fixes #1984 - missed the echo of description on the edit form for
	  [5413]
	* Fixes #1984 - front page preview code is commented out correctly
	  now
	* Fixes #1927 - group search by tag works now
	* Fixes #1924 - groups plugin now uses invite strings for
	  invitations

2010-03-15  cash

	* Fixes #1953 - removes unnecessary html in page handlers of blogs
	  - this is a 1.7 branch only change
	* Group discussion RSS feed was not displaying text of post because
	  it was saved in annotation
	* Fixes #1980 - Group rss feed was using owner rather than
	  container
	* Fixes #1968 - send messages pagination now works like inbox
	* Fixes #1977 - strip tags from user's display name
	* Fixes #1469 - install pages will not be cached now by the browser

2010-03-14  cash

	* Fixes #1982 - fixed no groups string in custom index plugin

2010-03-13  cash

	* Fixes #1973 - removed tags from external pages plugin as not
	  needed with the new search in Elgg 1.7

2010-03-12  cash

	* Fixes #1969 - missing echo in pages welcome view

2010-03-11  cash

	* Refs #1947 - fixes pagination for thewire plugin
	* Refs 1947 - fixes pagination for the pages plugin
	* Only showing div for delete group when the group has been created
	  on edit form
	* Refs #1947 - Fixes pagination for groups plugin
	* Fixes #1545 - diagnostics plugin does not throw a ton of warnings
	  now
	* Fixes #1944 - full_url() now correctly handles standard https
	  port
	* Fixes #1961 - reported content now including report object in
	  plugin hook
	* Fixes #1949 - defined global $CONFIG in user validation by email
	  page handler

2010-03-10  cash

	* Fixes #1954 in 1.7 branch - logged out users cannot reply to wire
	  posts
	* refs #1947 - fixes pagination for bookmarks

2010-03-09  brettp

	* Merged trunk:5338 into 1.7 branch. Fixes problem with view type
	  when using deprecated list_entities().

2010-03-09  cash

	* updated language in groups plugin - you 'post' to a discussion
	  forum rather than 'save'
	* fixed pagination for User Administration
	* refs #1947 - fixes pagination for file plugin
	* fixed pagination for latest activity on front page
	* fixed a minor issue with a blog menu item
	* refs #1947 - fixes offset handling for blog pages
	* Fixes #1950 - passes offset so that pagination works on dashboard
	  latest activity page
	* fixed comment in core language file

2010-03-08  cash

	* Refs: #1927 - gr…