Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
72 check-ins using file www/server/debian/nginx.md version a5ab3e5351
|
2019-08-29
| ||
| 00:21 | Linked to the new material showing Fossil's idea of user power hierarchy from the comment in fossil-v-git.wiki about Fossil's support for the organization's social and power hierarchies. It's not that Fossil has *no* support for enforcing this, it's that it's usually a fairly loose match between the two systems. This is an important point, because some people new to Fossil expect 1:1 mapping and get disappointed when we tell them it just doesn't do that. ... (check-in: b72795a339 user: wyoung tags: caps-doc) | |
| 00:17 | Fixed some URLs still referring to admin-v-setup.md in its old location. ... (check-in: 182c4d7abc user: wyoung tags: caps-doc) | |
| 00:07 | Investigated the use of HTTP for sync over ssh:// and file:// URLs and added what I found to the "Caps Affect Web Interfaces Only" section of the new caps docs. ... (check-in: 845b459439 user: wyoung tags: caps-doc) | |
|
2019-08-28
| ||
| 23:33 | Documented Public Pages and the default user capability set in www/caps/index.md. ... (check-in: 4671ddb179 user: wyoung tags: caps-doc) | |
| 23:15 | Moved the discussion about inadvertent attribution of artifacts and the problems with easy solutions to the problem into the implementation details section of the new caps docs and expanded it to cover recent forum discussions. ... (check-in: 78ad8b7496 user: wyoung tags: caps-doc) | |
| 22:42 | Assorted small improvements to top-level caps doc ... (check-in: f21bfbeede user: wyoung tags: caps-doc) | |
| 22:09 | Expanded the "Why Not Bitfields?" discussion in www/caps/impl.md. Also tweaked the "Capability Letter Choices" text a bit while in there. ... (check-in: 3ac560a2d0 user: wyoung tags: caps-doc) | |
|
2019-08-27
| ||
| 20:35 | Moved www/capabilities.md to www/caps/index.md and www/admin-v-setup.md to www/caps/admin-v-setup.md. Then broke three chunks of the old capabilities.md doc out into new www/caps/* docs: login groups, implementation details of user capabilities, and the user capability reference material. The latter switched from Markdown to HTML format so we could make it a clearer-looking table, rather than its prior hard-to-read bullet list form. ... (check-in: c6cdf9ce8e user: wyoung tags: caps-doc) | |
| 18:04 | Merged most of the new material on Setup vs Admin in the new capabilities doc into the pre-existing admin-v-setup.md doc, which already covers this topic. ... (check-in: ee901c7be3 user: wyoung tags: caps-doc) | |
| 03:56 | Grepped the Fossil source code for C code that checks for Setup caps exclusively to preotect functions and listed those in the Reference section of capablities.md. Also expanded the coverage of the "caps affect Fossil web interfaces only" section, which plays into this. ... (check-in: 689f7683b6 user: wyoung tags: caps-doc) | |
| 01:55 | Rewrote explanation of "o" cap. ... (check-in: 208ca0d713 user: wyoung tags: caps-doc) | |
| 01:40 | Disentangled discussion of "developer" vs "reader" in capabilities.md. ... (check-in: 869494eb8f user: wyoung tags: caps-doc) | |
| 01:00 | Added (Names) to the "Capability Reference" section of capabilities.md so the reference can be used while reading C source code, which uses these names instead of the capability characters in all code past the login handler. ... (check-in: d48dff8fd7 user: wyoung tags: caps-doc) | |
| 00:29 | Remove an unused subroutine. Fix a minor CSS problem. ... (check-in: 2078c746a5 user: drh tags: vdiff-improvements) | |
| 00:11 | On the /vdiff page, show a timeline with both check-ins using different highlights on each check-in. ... (check-in: 6e40f866ab user: drh tags: vdiff-improvements) | |
|
2019-08-25
| ||
| 11:52 | Clarified use of scgi_params, SCRIPT_NAME, and service starting in the generic SCGI server setup doc. ... (check-in: 5a58ac3141 user: wyoung tags: trunk) | |
|
2019-08-24
| ||
| 18:32 | Merge fork ... (check-in: 6c6aae9782 user: andygoth tags: trunk) | |
|
2019-08-23
| ||
| 12:42 | Add the fossil_random_password() utility function and use it to generate a stronger initial admin-user password in the "fossil new" command. ... (check-in: 23a9f9bac2 user: drh tags: trunk) | |
| 12:23 | If the test-markdown-render or test-wiki-render commands are invoked without a repository in which to check for Wiki page names and artifact hashes, then substitute a temporary, empty, in-memory repository so that the commands will still work and won't give SQL errors. ... (check-in: 0ac64dad80 user: drh tags: trunk) | |
| 11:49 | Clarified the placement of "moderator" and "subscriber" in the power hierarchy expression within www/capabilities.md, since each could float up and down somewhat within the fixed hierarchy we give here. Also fixed a broken URL. ... (check-in: ba88f4f2a7 user: wyoung tags: caps-doc) | |
| 11:07 | Markdown hyperlinks are only converted to links to wiki if the named wikipage actually exists. Otherwise, the link becomes a relative link. This is for backwards compatibility. ... (check-in: 3b10e64468 user: drh tags: trunk) | |
| 08:31 | Added www/capabilities.md, a complete treatment on user capabilities, user categories, login groups, and administration matters involving all of this. It does not replace the pre-existing admin-v-setup.md doc, but a bit of its content did move into this new doc. The new doc also contains the user capability info previously in the forum.wiki doc. This is on a branch because although it's quite useful already, it could use some work before being merged down. At the barest minimum, there are some unanswered questions in the new doc that need addressing. This new doc does not replace the existing documentation in the UI. It may be that we end up paring that down a bit now that we have a full doc to refer to, but that is a topic for the forum thread that will appear shortly after this checkin. ... (check-in: 832f107ebb user: wyoung tags: caps-doc) | |
| 05:32 | Fixed a few fatal error messages from the login-group command that referred to an "add" command, which is now called "join". The symptom I saw is that "fossil login-group add" complained that "add" is not a valid command and that you should give '"add" or "leave"' instead! ... (check-in: 09c65d7527 user: wyoung tags: trunk) | |
| 05:22 | Fixed a few messages from the login-group command that referred to an apparent older name for the "join" sub-command, "add". This lead to a confusing symptom: "fossil login-group add foo" -> {unknown command "add" - should be "add" or "leave"}. ... (check-in: 739cd8720e user: wyoung tags: trunk) | |
|
2019-08-22
| ||
| 15:06 | Stronger recommendation for changing the default user's random hex password prior to setting up a Fossil server after learning it's 6 hex digits, not 8 as I thoght when I wrote that! ... (check-in: 9fcd6e443c user: wyoung tags: trunk) | |
| 14:14 | Added bullet list detailing the sources for <script nonce=""> from a Fossil server and the reasons we consider each path safe. ... (check-in: 91377ae432 user: wyoung tags: trunk) | |
| 13:31 | Reworked the material explaining why in-page <style> is currently allowed by Fossil's default CSP to make it clearer that this is most likely a temporary situation and that local custom CSS should go in the skin instead. ... (check-in: 092eeebf40 user: wyoung tags: trunk) | |
| 13:13 | Expanded the discussion of in-repo and out-of-repo resource links in defcsp.md. ... (check-in: 23fcd765f6 user: wyoung tags: trunk) | |
| 12:39 | Reworked the new introductory material in defcsp.md to be less about the CSP as last-resort and more about being a secondary filter to our other measures. Gave examples to clarify the tensions that prevent a purely server-side solution from being a practical solution. ... (check-in: 1c4df5bf0a user: wyoung tags: trunk) | |
| 11:54 | "RaspberryPI" -> "Raspberry Pi" ... (check-in: 5182be99c9 user: wyoung tags: trunk) | |
| 11:53 | Assorted refinements to the new pre- and post-activation advice sections in www/server/index.html: nix passive voice, add a few details, add some links to related docs, etc. Also fixed a CSS indenting problem preventing correct use of <p> in <li>, then made use of the new freedom in these sections' numbered lists. ... (check-in: b5c2c9bf31 user: wyoung tags: trunk) | |
|
2019-08-21
| ||
| 19:18 | Fix the $ROOT mechanism in HTML documents so that it accepts any whitespace character before href= and script=. Add $ROOT in appropriate places in the server documentation. ... (check-in: 3e183bfad8 user: drh tags: trunk) | |
| 18:15 | Outline how to configure a repository before and after server activation. ... (check-in: 154ea087af user: drh tags: trunk) | |
| 17:37 | Improvements to the althttpd documentation. ... (check-in: 44f1df9fef user: drh tags: trunk) | |
| 17:21 | Further improvements to the server document. ... (check-in: c2c4d3039f user: drh tags: trunk) | |
| 16:57 | Extra defenses against running fossil_atexit() more than once. ... (check-in: bc7683e15a user: drh tags: trunk) | |
| 16:55 | Fix the "shell" command so that it avoids invoking the atexit() handler more than once. ... (check-in: 07a5a2118e user: drh tags: trunk) | |
| 15:56 | Server documentation updates. ... (check-in: b2426c2786 user: drh tags: trunk) | |
| 14:46 | Merge in recent developments on trunk. ... (check-in: 70d091eacc user: andybradford tags: test-updates) | |
| 12:32 | Disallow versioning of security sensitive settings tcl-setup, th1-setup, and th1-uri-regexp. For effective security, these settings should only be controllable by an administrator. ... (check-in: 2da704c5a1 user: drh tags: trunk) | |
| 11:26 | Update to the default CSP page. Attempted to resolve merge conflicts, but more editting is likely necessary. ... (check-in: 33a7b8babe user: drh tags: trunk) | |
| 11:09 | Added a header to the new XSS material in defcsp.md so we can refer directly to it. ... (check-in: 7b843f2d43 user: wyoung tags: trunk) | |
| 11:01 | More thorough explanation of <script nonce> in www/defcsp.md, and explained the reason why Fossil has no way of providing that nonce in most content types rather than link to the "XSS via check-in rights" forum post. This new presentation of that post's ideas is more detailed and includes discussion of the feature's interaction with the TH1 docs feature. ... (check-in: 8d43bb8786 user: wyoung tags: trunk) | |
| 09:40 | Major improvements to the new defcsp.md article. Expanded the introductory material to better describe what the CSP does; added named anchors to headers; moved the discussion of $default_csp overrides into this document from customskin.md, which now just says how you use that variable read-only; and added an entirely new section, "Replacing the Default CSP". ... (check-in: 366b23a180 user: wyoung tags: trunk) | |
| 08:52 | Replaced the redundant copy of the default CSP in skins/bootstrap/header.txt with "$default_csp", allowing the TH1 setup script to override the CSP as in all the other stock skins. (Bootstrap is the last stock skin to define a custom <head> element.) ... (check-in: 14ac2cacdd user: wyoung tags: trunk) | |
|
2019-08-20
| ||
| 19:16 | Fix memcpy() compiler warnings. ... (check-in: 7ae4b1a719 user: drh tags: trunk) | |
| 16:11 | Fix possible misaligned pointer to a 16-bit object. ... (check-in: f7c41be825 user: drh tags: trunk) | |
| 15:04 | Updated and expanded documentation on how to set up a Fossil server. ... (check-in: f146e21af9 user: drh tags: trunk) | |
| 07:01 | Fixed a link punctuation bug introduced in [74a6578c]. ... (Closed-Leaf check-in: c57e17931d user: wyoung tags: server-docs) | |
| 06:45 | The merge from trunk accidentally reverted part of the new text in www/embeddeddoc.wiki. (This part was manually merged, and I missed a diff relative to trunk.) ... (check-in: 8976a9dae3 user: wyoung tags: server-docs) | |
| 06:35 | Missed a link to server.wiki that should have been checked in with [74a6578c]. ... (check-in: d5def0c8c4 user: wyoung tags: server-docs) | |
| 06:34 | Merged in trunk improvements ... (check-in: 42d28c0286 user: wyoung tags: server-docs) | |
| 06:28 | Reverted src/doc.c to the trunk version. The "Plan Z" reversion in [8264fd75] was incomplete, causing bad TH1 variable expansion. I believe this explains the symptom I worked around in [9bdf650f0b8]. This check-in also cherry-picks [3d6a4fd95c] onto the branch. ... (check-in: 3cdf764c2c user: wyoung tags: server-docs) | |
| 06:03 | Updated all of the internal hyperlinks referencing www/server.wiki to point at either www/server/index.html or one of the docs it now points at. ... (check-in: 74a6578cd4 user: wyoung tags: server-docs) | |
| 00:41 | Removed "known to work with IIS" bit from www/server/index.html in the CGI section, since that is not actually true. We can put it back once someone figures out [https://fossil-scm.org/forum/forumpost/de18dc32c0 | the IIS + CGI + Fossil CPU pegging problem]. ... (check-in: 8b7c17de3f user: wyoung tags: server-docs) | |
| 00:37 | Removed documentation of the nonce="$NONCE" feature in www/embeddeddoc.wiki, removed as part of [8264fd75]. ... (check-in: d55f6b1501 user: wyoung tags: server-docs) | |
|
2019-08-19
| ||
| 23:32 | Fix a broken hyperlink on the new server-docs index page. ... (check-in: 461c8f06fc user: drh tags: server-docs) | |
| 19:29 | Updating links in www/server/windows/stunnel.md to correct locations. ... (check-in: 65d175aef0 user: ckennedy tags: server-docs) | |
| 18:24 | [https://www.fossil-scm.org/forum/forumpost/89dba2d978|Plan Z] ... (check-in: 8264fd75bc user: drh tags: server-docs) | |
| 12:38 | Added missing www/chroot.md file ... (check-in: 80cd49f063 user: wyoung tags: server-docs) | |
| 12:09 | Updated www/server/index.html to no longer discuss launchd as a "maybe" option now that we have a document for it, and removed mention of Solaris SMF entirely. ... (check-in: 1e6fbcf214 user: wyoung tags: server-docs) | |
| 11:59 | Added www/server/macos/service.md and then added macOS to the set of server OSes offered in www/server/index.html ... (check-in: e0ad4b48b5 user: wyoung tags: server-docs) | |
| 10:22 | Assorted small tweaks to www/server/windows/iis.md ... (check-in: b5fefeec23 user: wyoung tags: server-docs) | |
| 10:10 | Small tweaks to the new "Serving as a Standalone Server on Windows" article. ... (check-in: 3995a3c7ae user: wyoung tags: server-docs) | |
| 09:47 | Assorted small tweaks to server docs, mainly around new systemd material. ... (check-in: 9d4a478241 user: wyoung tags: server-docs) | |
| 09:10 | Added www/server/debian/service.md, demonstrating systemd configuration of Fossil for the first time in the official docs, both as a user serivce and in socket activation mode as a system-level service. ... (check-in: 94763aed7c user: wyoung tags: server-docs) | |
| 05:00 | Clarity tweak ... (check-in: bc678e1321 user: wyoung tags: server-docs) | |
| 04:58 | Grammar fix on previous ... (check-in: d5c754f97b user: wyoung tags: server-docs) | |
| 04:58 | Title tweak on previous ... (check-in: afc65312fa user: wyoung tags: server-docs) | |
| 04:57 | Added www/server/windows/none.md server setup article ... (check-in: 3e55ddf754 user: wyoung tags: server-docs) | |
| 03:44 | Added explicit instructions on installing IIS within the new IIS server docs. It isn't installed by default, and in the CGI case, CGI isn't part of the default IIS install. ... (check-in: b2f10ad585 user: wyoung tags: server-docs) | |
| 00:30 | Added links back to the top-level www/server/index.html article from the tail end of www/server/*/*.md. ... (check-in: 0f6f151dd3 user: wyoung tags: server-docs) | |