my Iceweasel is stuck with "Your request got filtered out due to possible security issues." on tiki.org
Your request was: tiki.org/tiki-logout.php
had to delete cookies
chealer: I got this earlier today
chealer: it disappeared the second time I tried to login after a few minutes
rodrigoprimo: the security thing? rick said he had it too
chealer: yes
I'll try to check which cookie causes it if it happens again
hum, removing the tabs cookie seems to have fixed it
(because it did happen again)
 New Forum Posts: Execute the Tiki installer - http://tiki.org/tiki-view_forum_thread.php?forumId=6&comments_parentId=42537
I particularly get it on http://tiki.org/styles/fivealive/menu_divider.png
polom
Wouldn't it be awesome if users where able to specify "Argument variables" that output... say comapny adress and CVR number?
So that a company's employees can write {cadress} and it would end up with the full company adress?
ofcourse it should be user definable?
Hi Merbster. Do you know about Tiki's 'dynamic variables'? Maybe the same idea - %variable%
chibaguy, they are too clunky to use since they wrap every dyn variable in a form.
which will REALLY screw up any tracker templates etc. if you use it there
I don't need input I just need "shortcut wiki syntax" to company data :)
I am thinking maybe I should try and add this to Tiki
I have a pretty good idea how to achieve it (except the UI part but I can't be that complicated)
it*
There are some terms that are already available, aren't there, like {$user} or {{user}} or whatever the syntax is?
(I forgot what is supposed to work in wikitext.)
so anyway that could be expanded.
http://doc.tiki.org/Wiki+Argument+Variables
Merbster: ^^
chibaguy, those are what I'd like to expand upon
I alrleady added custom code four our special use cases - even made one that fetches data from a webservice.
four = for :P
Sounds good. There could be something like the custom strings translation admin page to add new ones (regarding the user interface).
chibaguy, I am not familiar with that one.
I jsut did a test where I include an external js file in the custom header area in look and feel
added 1 function that alerts I am god 
and testet it from a wikipage
and it worked
http://doc.tiki.org/Customized+String+Translation
no I added an extra function to the script. Including it the same way. But it says it's not defined now
and by including it the same way I mean I did not change anything in look and feel.
I mean it's just a form to enter the string and the translation.
so I could imagine a page to enter the variable and its value.
yes. I agree chibaguy 
hmmm.
I don't get it. I am even using "holdReady" jquery function to make sure my script is included before the document.ready function is fired.
tikiwiki: 03pkdille * r38605 10/trunk/lib/smarty_tiki/ (137 files): No changes - code styling only (seen on quality.tiki.org)
tikiwiki: 03pkdille * r38606 10/trunk/lib/smarty_tiki/function.jscalendar.php: No changes - code styling only - split long lines (up to 658 chars)
Where are the Customization fields under look and feel stored in the database?
I added something to the <head> area anw now I get WSOD
tiki_preferences?
chibaguy, yes I allready found it :) I was not sure of the pref name.
ok
argh the wsod perseveres.
chibaguy, do you know where tiki cahces stuff besides templates_c ?
hm, there's a modules/cache directory.
Do you know if tiki-index.php is cached somewhere? or the part that is responsible for the head area
because the preference's value is still retained, yet I cleared it to "" manually in the DB
Another thing that puzzles me is that the page is WSOD but if I "View Source" the whole HTML for the page is there.
hmmm
restarting IE fixed the problem
:-)
polom guys
tikiwiki: 03robertplummer * r38607 10/trunk/ (6 files in 4 dirs): [ENH] More cleanup to get everything stabalized and unified
tikiwiki: 03robertplummer * r38608 10/trunk/lib/core/HtmlFeed.php: [FIX] Turned caching back on
polom all
Hey RobertPlummer_ :)
polom
fabricius: polom
fabricius: I just got your email.
cool
fabricius: It will be frustrating probably at first setting up the new Jison parser, and will take some time.
fabricius: But after you do, it just takes a few minutes to add new syntaxes.
fabricius: Things to note are that it is buggy, and it needs some help to get up to the current parser.
fabricius: Another thing is that QUASIWYG doesn't yet exist, but is a theory of how to incorporate the new jison parser with codemirror to have a truly unified editor.
One of the big problems that the current WYSIWYG editor is that is converts back and forth, back and forth, from wiki syntax to html, and that can be problematic.
the current WYSIWYG is useless if you have semi-complex pages
Most of the testers said it was utterly useless because it could ruin several hours of work by screwing up the fomratting etc.
RobertPlummer_: so you want to make up a single Editor for WikiSyntax and WYSIWYG?
fabricius: QUASIWYG changes this becuase it is a single language that you are editing, no conversion.
Honestly it is like WYSIWYG v2.
sounds good
fabricius: The output is a reflection of the wiki syntax rendered in real time on the user side or server side, that is why it is so powerful.
and do I understand right, that Jison Parser and QUASIWYG is related?
fabricius: Right, Jison is a javascript parser, I wrote a php version of it.
fabricius: So we can have the same language, rendered the same way, on both user and server side.
Iread about it on old.nabble and on librelist
fabricius: Please note, even though it may be rendered the "same", they may be different if chosen, for instance on user side we may want to give them a drag and drop UI, where on server side, we just output the rendering.
RobertPlummer_: How I would choose between server side and user side and why?
fabricius: Well, our current parser has bugs at times, the choice to go to a different parser was to fix that, but also it has a many fold accomplishment.
For instance....
Wiki to PDF
"fabricius: It will be frustrating probably at first setting up the new Jison parser, and will take some time." => wouldn it be helpful, if the new parser is used - for ex. onmy private site and stuff?
fabricius: If you plan on helping to make it better.
fabricius: Right now it "works", but there are some problems with it, that can be ironed out.
fabricius: I need to write a how to on setting it up, but if you can follow the setup on Jison's page, then it should be fine.
RobertPlummer_: sure I want - I want to use and to provide the best "WIKI CMS Groupware", so I have to help to make it better, as you do and as the others do
fabricius: Yes.
fabricius: I'm working on a job right now that will eventually lead me back to it, but for now I'm on other things.
"a many fold accomplishment" what that means?
fabricius: Many outputs.
fabricius: THink of something you'd want a wiki page to output to, and you can now write it.
tikiwiki: 03pkdille * r38609 10/trunk/lib/smarty_tiki/ (149 files): No changes - code styling only (seen on quality.tiki.org)
fabricius: html is the obvios first choice, but then pdf is another, and word, or odf, the list goes on.
RobertPlummer_: ah - I can write a wiki page and then chhose to "output" a pdf, odf etc
fabricius: Right, of course it hasen't been written yet, but the possibility is there.
RobertPlummer_: so aswell show the page as HTML in the browser, as "print it out" as print or pdf, respectively download it as pdf aswell as odf
all: is there a tiki-pagehistory.php that doesn't show the revisions at the bottom?
fabricius: That is correct, once it is created, the possibilities really start to open up.
RobertPlummer_: but you say, that you are not on that for a while
fabricius: The pdf thing is something that marc and lp are looking at, but in the mean time we need to cleanup the parser, ideally put it into the lib/core/ with a more robust class, and then make the error handling better.
Merbster: your WYSIWYG testers - wich Tiki version they use? I feel, that the WYSIWYG improved in the last couple of weeks and versions and it seems less messy to me in 7.2/8.0 than in 6.x
fabricius, I don't remember. Allthough we will keep an eye out for any wysiwyg editors. I expect it to become a problem that we lack one.
RobertPlummer_: same for you and for me, I think me using the new parser would make most sense in times you are developing - in 7.x i made the experience, that using daily builds gave me finally a more comfortable situation than even using stable LTS - due to frequent and quick fixes and so
fabricius: yes, good point.
that's mainly why I ask, if you actually can recommend me to use it
RobertPlummer_:  if you (and LPH and ...) restart coding/developing in a few weeks, I can start using it then   
fab
RobertPlummer_: if development goes on now, I be prepared to activate it straight away
yes?
fabricius: That sounds good, but if I were you, I'd a least give a look over, perhaps even getting the jison parser installed on your local system so you can fix/extend it when the time comes.
RobertPlummer_: ah I thought I just had to activate it in the admin area of the Tiki installation => what I would have to do and is it possible on a managed webhosting account?
fabricius: To activate it, it is easy, turn it on.  To develop with it, that requires a few steps.
RobertPlummer_: ah - I think, I best could use it and give feedback
fabricius: ok
RobertPlummer_: so when you mean would be a good time, that I activate the new parser and would it make more problems, if I start with the oild one and switch later?
fabricius: Nah, the output should be very similar, but the older one is more mature at this point.
tikiwiki: 03robertplummer * r38610 10/trunk/lib/ (3 files in 2 dirs): [FIX] Removal of un-needed vars
tikiwiki: 03robertplummer * r38611 10/trunk/tiki-pagehistory.php: 
tikiwiki: [ENH] nohistory querystring forces history disapear
tikiwiki: [ENH] preview_date overrides preview with the version from the date given
RobertPlummer_: does the new one has a different syntax?
fabricius: It should be similar, but I think there are a couple syntaxes that aren't yet supported.
fabricius: numbered lists.
fabricius: that is on lphuberdeau's list to add soon.
Question: I want to setup a site, where a new user will have his own tracker automatically, based on a template-tracker - is that possible?
Description: I setup a tracker with certain fields. When a new user register, he/she get's a copy of this tracker as personal tracker, only visible by him (and the superadmin), but noone else
So I would not need to setup or copy the tracker for every user - it would be "autocreated"
should/could I use the "usertracker" thing for that?
another Question: I see the function to export profiles in Admin -> Profiles - how can I import an exported profile into a new installation?
polom all
polom
polom robertplummer and chealer
chealer: polom
polom all
hi changi
how are you?
not so good :(, info is doing some strange things
does anyone know 188.40.53.203
oh yeah, saw that yesterday :-(
I'm not aware that I do...
chealer: I experienced the tracker field disapearing too a few times, but it seems to stop when I try to look at the issue
when i do a php tiki-index.php, it stop trying to get information from that IP
chealer, lphuberdeau: the same for me lol.
changi: 188.40.53.203 is in germany I think
nkoth|nelson: thanks, i've noticed that too :)
lphuberdeau: I didn't experience the issue listed on http://dev.tiki.org/Tiki8#Non-blockers, just read it. Nelson and Jonny did
I had put it on a blocker at first but because it is so hard to reproduce I lowered it to a non blocker
changi: info is trying to get information from 188.40.53.203?
yes
nkoth, trying real hard to reproduce now... think I might have found something in the code
and it timeout out before getting information
chealer: looking in the database, don't find any occurence of that
ping tiki.org
PING tiki.org (188.40.53.203) 56(84) bytes of data.
188.40.53.203 is in Germany - Bavaria - Gunzenhausen - Company: Hetzler AG
chealer: so the problem is since Oliver switch tiki.org to 8.X ? 
http://www.ipillion.com/ip/188.40.53.203
intertiki maybe
chealer: tiki.org is oliver's server, probably blocking ICMP due to security
changi: I'm not sure, but could be from what I know
not the same as info.tiki.org
nkoth|nelson: I just meant that that IP address is indeed tiki.org
ah right, but that would explain
ah look here - found Oliver: http://www.checksitetraffic.com/ip_address/188.40.53.203
probaly intertiki
near Frankfurt/Hessia (Germany) and Oliver comes from near Frankfurt
changi: a couple of issues you may want to know - since a week or more community has been having intermittent problems with database failures which were reported. they were not reported to be fixed, but I don't see them since it was upgraded to 8
database problem on tiki.org or *.tiki.org on 8.X ? 
changi: since yesterday community is having [again] intermittent problems with mod security, it's giving a page like http://tiki.org/styles/fivealive/menu_divider.png but on all pages at times until you clear some cookies
changi: database problems on tiki.org (community), which I didn't see since it was upgraded to 8
changi: and from yesterday too, I'm unable to login to *.tiki.org, getting "Unable to contact remote server.". and the PHP warning "fsockopen() [function.fsockopen]: unable to connect to tiki.org:80 (Connection timed out)". so far no one else got that
login is definitly a intertiki issue
I'm guessing the login issue may be due to mod security too, but didn't verify yet (not really familiar with InterTiki
i see a lot's of tcp packet going to tiki.org having no response
is there a chat functionnality on info.tiki.org which has interaction with tiki.org ? 
tikiwiki: 03lphuberdeau * r38612 10/branches/8.x/lib/trackers/trackerlib.php: [FIX] Not too sure what this did, except randomly deleting fields
chealer, nkoth: I think I found it r28612
*38612
not that I know changi
i think mod_security is the one to disable to have a quick test
lphuberdeau: heh. nice
was not an easy one to track down
lphuberdeau: how does the bug work? Is it if ratingId is 0 it deletes the first field or what?
nkoth, not too sure exactly
might be something like that
changi: yeah... the other problem is that Oliver has been far from responsive in the last month (even though he did manage to upgrade). I don't know how long it could last if it's on his side
but the whole thing just looked wrong
anyway, deleting the rating field seems wrong to me in all cases
changi: try disabling all the modules on info and see
just make tiki-modules.php return nothing
(dev and doc is working fine.... so it must be something specific to info)
...working fine except when I try login :-/
it seems to be userslib intervalidate() that uses fsockopen
actually, lphuberdeau, I think the bug might be in get_field_id_from_type. let me see. I suspect it return the 
nkoth, the value was empty
which is fine for the trackers I was working with
hmm
chealer: maybe he doesn't have time anymore
maybe someone from the german community could take the lead
I guess he doesn't. is there someone else with access to community?
changi: just to be sure, could you tell us what arguments fsockopen() gets?
chealer: i think i found the main issue : templates/modules/user_module.tpl
fsockopen($protocol . $server, $port) in sendPayloadHTTP10() in lib/pear/XML/RPC.php
what are $protocol, $server and $port
server : tiki.org port : 80
if you can reproduce, that is
changi: is the file customized?
chealer: no, it try to connect to tiki.org to get users information
because of intertiki
changi: user_module.tpl is for "user modules" (custom modules). there must be one problematic custom module
I imagine one of them is calling a plugin (if I understand correctly that requests to info time out because info tries to contact tiki.org which itself times out)
chealer: that's what i'm thinking
another point, we have a big SYN activity between info and tiki.org
we should have a "safe mode" to debug that kind of problem
chealer: you should be able to connect on info.tiki.org if you know the admin password
changi: the password for system access?
i mean for tiki admin
did you noticed that the footer is not well displayed on tiki.org ? 
changi: oh, the password of the admin user. I don't know. so you're logged in on info?
changi: yes, noticed that yesterday
no i'm not logged in on info, because only god know the password (by god i mean Marc :) )
hehe. but I don't get seem to be able to get any page from info at this time, can you?
yes i do
changi: which URL? my requests wait and wait and wait with no progress
...and eventually get me a 500 error
home / demo and many other
changi: I can't get the homepage (http://info.tiki.org/, 500)
chealer: i can reset the admin password to get in
tikiwiki: 03lphuberdeau * r38613 10/trunk/ (. lib/trackers/trackerlib.php): [MRG] Automatic merge, branches/8.x 38593 to 38612
changi: unless you could get the content of user modules, that's a good idea if you're actually able to access it
oh, I was able to get http://info.tiki.org/tiki-admin.php after a real long time
the Featured Tiki module is broken
chealer: we'll have a bigger issue if tiki.org is not fixed in 2 or 3 days, the conntrack of ovh.tiki.org will be full causing all *.tiki.org to be down
changi: what is ovh.tiki.org?
the new community server which hosted dev/doc/info/code/tv/themes !!
OK
chealer: i think we should put info.tiki.org in maintenance
until tiki.org is  and intertiki is solved
changi: the contribute module is linked to tiki.org (the image is http://tiki.org/display264)
changi: do you get quick page loads on info or do you have to wait a long time each request?
changi/chealer, but I don't understand why doc/dev is working?
chealer: have to wait for each request 
or wait - maybe you can't login also
nkoth|nelson: doc and dev are working because they don't have direct link on tiki.org
nkoth|nelson: they only use tiki.org for the login process
changi: but we don't know what direct link info has with community, do we?
chealer: no we don"t
changi: could you try unassigning user modules? those on the left?
I find Tiki News and contribute suspicious
Polom
I'm looking at the status of Tiki8 with regard to PHP5.3, more specifically regarding the use of split & ereg
First thing: Some ISP tells me split & ereg are removed from PHP5.3 but php.net just says "This function has been DEPRECATED as of PHP 5.3.0. Relying on this feature is highly discouraged."
So, I understand the ISP is wrong and these function still exist, is that right ?
Second thing: is it correct that we still use PHP split in tiki-8.x/lib/xmlrpc.inc and various tiki-8.x/lib/pear/ places ?
Other places where we have split function, it's a Tiki-defined function :-)
xmlrpc is a third party
OK, so the actual Tiki code does seem clean
XML-RPC is long dead as far as I am concerned
Jyhem: right, assuming that the regex extension is present
I assume pclzip is third party also, but I see some in tiki-8.x/lib/sheet/include/
lib/sheet/include/ is also 3rd party
So we are clean except 3rd party stuff, which still works because split & ereg are *deprecated*, not suppressed (yet)
back 
damned internet connection
re changi
chealer: still not able to connect
changi: if you have the same problem as I do, it started yesterday evening/afternoon...
hum
what do we do know ?
s/know/now
a get 500 internal server every time
that's sounds like what I had earlier
is there a timeout parameter i can switch to a lower value ? 
if I'm not the only one unable to login to *.tiki.org and Oliver is the only one with access to community, surely he needs to be contacted
changi: in PHP? max_execution_time
I'm always surprised to see how long requests take to fail on tiki.org
tikiwiki: 03chealer * r38614 10/branches/8.x/tiki-setup_base.php: 
tikiwiki: [FIX] AdoDB
tikiwiki: Note: r35445 regression. Did not test that the redirection would still happen when desired, only that it doesn't happen when it shouldn't.
polom
Jyhem or Jyhem_laptop ?
hi
xavi: yes!
hi Jyhem_laptop
see email
you have a url to download a db dump
plus instructions to reproduce the issue with multiban in proposals/6x
Interesting: I get a "Sea Surfing (CSRF) detected. Operation blocked." page
Never seen it before, it is dependant on some pref ?
there is a pref afaik see admin security
nkoth|nelson: thanks
Jyhem_laptop: there's a pref indeed, but it rarely happens. it can happen incorrectly if you come back to a tab after a long time of inaction
tikiwiki: 03robertplummer * r38616 10/trunk/lib/core/FileGallery/File.php: 
tikiwiki: [FIX] For lookup directly, gets data automatically
tikiwiki: [ENH] lookup archiveFromLastModif
tikiwiki: 03robertplummer * r38617 10/trunk/ (4 files in 4 dirs): [ENH] Lookup feeds by date
It happens consistently using the "Delete & Ban" button of tiki-list_comments.php
tikiwiki: 03lphuberdeau * r38618 10/trunk/ (5 files in 5 dirs): [NEW] Module to initialize new tracker items (works nicely within the app frame for a map)
tikiwiki: 03chealer * r38619 10/trunk/lib/core/TikiDb/Pdo.php: 
tikiwiki: [FIX] Database: display the actual failed query when $numrows is defined (by passing the query that will be modified by reference)
tikiwiki: This only fixes the problem for PDO, the ADOdb case is more complicated
Jyhem_laptop: in which version?
No, not reproduced now. strange
It was proposal/6x from Revision: 37317 but now I just upgraded and it's gone
never mind
s/upgraded/updated/
chealer and Jyhem_laptop: I selected the other checkbox for CSRF prevention, just in case that allowed the multiban to work
and that one is the feature that shows that message
anyway, it's not critical to reproduce the issue. With the standard feature to prevent CSRF (the other one, in "Admin home > Security > (at the bottom)" the same issue happens to me in localhost and at the server, that multiban doesn't work in proposals/6x
weird thing, because the same db dump in Jyhem_laptop's server, multiban works
Jyhem_laptop: it's gone,. because I changed the CSRF feature from one to the other in your site
Ahhh, ok! This was puzzling
maybe FreeBSD includes some security features which prevent passing arguments in he URL ?
mmm, I'll try changing the priority of the languages of the browser (in case it matters)
I had english selected 
oh well, I have no clue.
I forget about it (I'll live with it)
Gald it works in 7.x and 8.x
Whenever I upgrade in the future to 8.x (or 9.x) , this will work :-)
thanks Jyhem anyway for the feedback and testing. it seems some tricky bug related some server settings, it seems, related to some tiki data, probably
time to log out
c u all
Jyhem_laptop: ^
tikiwiki: 03nkoth * r38620 10/trunk/lib/profilelib/installlib.php: [NEW] Allow to update tracker item via profile.
tikiwiki: 03nkoth * r38621 10/trunk/lib/trackers/trackerlib.php: [FIX] In the event that one of the field is an items list field with postponed filtering, the joining index if is $i will cause db error due to it being out of sequence.
tikiwiki: 03nkoth * r38622 10/trunk/lib/ (categories/categlib.php profilelib/installlib.php): [FIX] Categorization of trackeritems was not working through profiles.
tikiwiki: 03nkoth * r38623 10/trunk/lib/categories/categlib.php: [ROLLBACK] Partial rollback of r38622, this part of the change does not seem necessary.
Problem: it seems, that I cannot login to profiles => similar problem than earlier on on another Tiki site? an Intertiki problem? => does anybody know?
should be the same intertiki problem
nkoth|nelson: so who could check? on tiki.org all seems setup OK so far
only oliver - it looks liek something on t he server
lphuberdeau: I am running into a strange issue where after running a datachannel that creates a single  tracker item, all the other tracker items disappear from the search index (unless I rebuild the whole thing). Any clue what might be the issue?
aha, addng a new item via normal interface causes problem too - 
ok, tracked the bug to the tiki.trackeritem.create - should be able to fix soon
tikiwiki: 03nkoth * r38624 10/branches/8.x/lib/trackers/trackerlib.php: [FIX] Obvious typo