V0.08a
- Polling has been implemented by
poll.php
online.php has been revamped- Fixed a security flaw in
online.php that would've allowed a user's account to be compromised
- Added a new field,
lastrequest, to the member and session tables of the database; the new field holds the user's last $_REQUEST information
- Improved the way local errors are handled
- Fixed a bug in the Private Messaging System
- Began translating HTML into XHTML; any template inconsistencies can probably be blamed on this transition
- This document has been converted to valid XHTML 1.0 Strict and renamed to
changelog.html
readme.html and license.html have been converted to valid XHTML 1.0 Strict- Removed the FAQ button in the header, since implementing it is not a priority
- Moved the functionality of
addevent.php into event.php
- Added a new global routine,
Msg(), which has merged several functions
- Fixed a bug in the header
- Fixed a bug in
profile.php
- Fixed a bug in
index.php and category.php
board.php and category.php have been merged into forumdisplay.php
V0.07a
- Implemented custom user folders in Private Messaging
- The Memberlist can now return just the members whose usernames begin with a specified character
- The functionality of the Quote button has been implemented
- Added a new configuration setting,
$CFG['parsing']['showimages'], which controls whether or not [img] tags are shown as images or links
- The parsing of vB codes has been revamped and improved
- All form values are now handled through
$_REQUEST instead of $_GET and $_POST
- Fixed several bugs in
private.php
- Fixed a potential bug in
init.inc.php
- The avatar system has been revamped and is now complete
- Cookies are now used to remember users and log them in automatically
- vB formatting code implemented: [list]
- The Search engine has been removed while it is being overhauled
- Several user options have been implemented
V0.06a
- The system is now licensed under the OvBB License Agreement v2; the main difference is that you can now remove the copyright notice at the bottom of pages
- Errors are now handled internally by a new function:
HandleError()
- A system-wide timestamp,
$CFG['globaltime'], has replaced all calls to time(); this not only gets rid of redundant code, but also synchronizes the system
- Pagination has been incorporated into
board.php; gone are the days of a single long list of threads
- Some HTML in
board.php, memberlist.php, search.php, and thread.php has been rewritten to render better
- Added a new field to the
member table of the database: threadsperpage
- Renamed the configuration setting,
$CFG['default']['perpage'], to a more specific $CFG['default']['postsperpage']
- Added a new configuration setting:
$CFG['default']['threadsperpage']
- The calendar generated by
calendar.php now reflects the user's time settings if they're logged in; and if they're not, it reflects the default time settings of the board
- Replaced an
if/else clause (8 lines) with a ternary statement (one line) in login.php
- Replaced the
while() loop with a for() loop in online.php
- Eliminated a warning in
online.php
- Replaced an
if/else clause (two lines) with a ternary statement (one line) in profile.php
- The user's joindate in
register.php is now calculated from the time as PHP reports it; it was previously calculated by the database
- Fixed a number of overlooked instances of XSS vulnerabilities that existed throughout the forums
- vB formatting codes implemented: [size=blah], [font=blah], [color=blah], [img], [code], [php], [quote], and [dt=blah]
- Thread icons are now called post icons to more accurately reflect their purpose; all related changes have been made (i.e.,
threadicons.inc.php is now posticons.inc.php, etc.)
login.php now attempts to redirect the user to the page they were trying to access before they logged in- The user will now receive a message letting them know they're already a registered member if they try registering while logged in
- Fixed a bug in
online.php which caused it to not display the corresponding host name (if known) for users' IP addresses
- Core functionality for Private Messages has been added
- The Private Messages section of the User Control Panel index now works
- Simple permissions have been implemented
- Guests have been partially implemented
- The core functionality of
editpost.php has been mended and is now complete
- Signatures are now parsed by default
- Lots of changes to the database structure that I've lost track of
- Fixed lots of bugs and changed many things that I've lost track of
V0.05a
- Consolidated the
Unauthorized() functions of editpost.php and event.php into a single instance now located in functions.inc.php
- Consolidated the
InvalidThread() functions of posters.php, newreply.php, and thread.php into a single instance now located in functions.inc.php
- Consolidated the
InvalidBoard() functions of newthread.php and board.php into a single instance now located in functions.inc.php
- Changed "validation" to "confirmation" in
register.php as it makes more sense
- The brackets are now outside--no longer inside--the Check signature length. link in
register.php
- The long-awaited User Control Panel makes its debut, comprised of several components:
- Main source file,
usercp.php
- New directory,
/includes/usercp, which stores the dependencies of usercp.php:
editprofile.inc.phpeditoptions.inc.phpeditpassword.inc.phpeditbuddylist.inc.phpeditignorelist.inc.php
- Fixed a bug in
TimeInfo() of header.inc.php which, in some instances, caused incorrect timeoffsets to be displayed
- Moved
TimeInfo() out of header.inc.php and into a more proper location: functions.inc.php
- Fixed a bug in the time functionality code in
init.inc.php that basically disregarded the users' Daylight Saving Time/Summer Time settings
- Modified various whitespaces (both textual as well as visual) throughout the forums to increase consistency and aesthetics
- Added five new fields to the
member table of the database: showsigs, showavatars, autologin, buddylist, and ignorelist
- Fixed a bug in
init.inc.php that caused PageStats() to display an incorrect query count for users logged in
- Moved the "Start timer..." code closer to the top of
init.inc.php to report a more accurate generation time of pages
- Deleted several superfluous instances of various variables throughout the system
- Significantly modified
online.php to allow multiple description entries for the same page based on different querystrings
- Added location descriptions in
online.php for the new User Control Panel sections
- Fixed a bug in
profile.php that caused the user's biography to not be displayed
- The "Add [user] to your Buddy list." and "Add [user] to your Ignore list." links in
profile.php now work
- Modified some junk code in
login.php
- Added an error page to
login.php for when an invalid username or password is given
- Fixed a bug in
profile.php that caused users born 1969 or before to appear not to have a birthday; the bug affected only Windows systems
- Eliminated several XSS vulnerability instances in
thread.php, board.php, and category.php
- Added a clause in
register.php to check if the GD graphics library is installed before calling ImageVerification(); if the library isn't installed, image verification is simply skipped
- Fixed a bug in
register.php which would have allowed automated processes to register new member accounts, even if image verification was enabled
- Fixed several instances of invalid HTML throughout the forums
- Fixed a bug in
category.php that caused it to try and display a category board when no category ID was specified
- Fixed a bug in
thread.php that caused the lastpost anchor to be printed out at the wrong time
- Replaced an
if/else clause (8 lines) with a ternary statement (one line) in addevent.php
- All broken links in the system now loopback (point to the page in which they are contained) and will continue to do so until their functionality is implemented
- Removed unnecessary instances of
echo() in newreply.php, newthread.php, editpost.php, and addevent.php
- The status bar in
newreply.php, newthread.php, editpost.php, and addevent.php now reads "This toolbar requires JavaScript." when the user's browser does not support JavaScript
- Added an error page to
profile.php for when an invalid user ID is given
- Fixed a problem with the system that would arise when a user specified an incomplete homepage address
- Fixed a problem related to user avatars: if a user has no avatar, the value of the
avatar field in their member record should be NULL; otherwise, the field should equal the filename of the image to be used
- The type of the database table (MyISAM, InnoDB, etc.) is no longer specified in the installation SQL script
- Names are no longer enclosed in backticks in the installation SQL script
- Condensed some code in
register.php
- Added a snippet of code to
register.php to make sure the e-mail address the user is specifying isn't already used by an existing member
- Fixed a simple bug in
register.php whereby a guest's session would not be deleted from the database once they registered thus showing one too many active users
V0.04a
- Fixed a bug that affected OvBB installations hosted on a server with
session.use_trans_sid enabled by default, causing problems for forum members who didn't accept cookies
- Fixed a security flaw in URLs with the raw Session ID appended, potentially allowing an XSS attack to be performed
- Changed the session name from the PHP default, PHPSESSID, to the one used in vBulletin 2, s
- Fixed a simple bug in
header.inc.php whereby a guest's session would not be deleted from the database in the event they were to register or login, thus showing one too many active users
- Fixed (I think) a bug in the time-related functionality; apparently I had removed a configuration setting I thought was no longer needed:
$CFG['time_offset']['display'] renamed to $CFG['time']['display_offset']$CFG['time']['dst_offset'] configuration setting re-added; previously existed as $CFG['dst']$CFG['time']['dst'] configuration setting added to replace using date('I')$CFG['time_offset']['server'] configuration setting deleted- Unnecessary (I hope) else clause removed from
init.inc.php
- Added a location description for
event.php in online.php; the absence of a description caused users who were viewing a calendar event to have an empty Last Activity value in the Who's Online list
- Capitalized "index" in the location description for
index.php in online.php
- Modified various whitespaces throughout the forums to increase consistency
- Smilie codes are now parsed (into their respective images) when previewing a new thread, reply, or post edit
- The "Disable smilies..." option in
newreply.php and addevent.php actually works now
- Posts that have smilies disabled in them are now displayed correctly by
thread.php
- The automatic e-mail address parsing option in
newthread.php, newreply.php, and addevent.php now works; the one in editpost.php will work, too, when I fix the double-tag bug in ParseEMails()
- Disabled the automatic e-mail address parsing option in
editpost.php until I fix a bug (see above)
- Disabled the automatic URL parsing option in
newthread.php and newreply.php, as that functionality hasn't been added yet
- New source file added,
functions.inc.php, whose purpose is to consolidate the many functions into one location; though only two functions are in it as of now, most--if not all--will be there in the coming versions
- New functions added:
ParseMessage() and ParseEMails()
- Improved the parsing of these vB formatting codes: [b], [i], and [u]
- vB formatting codes added: [email], [email=blah], [url], and [url=blah]
- New source file added,
forgotdetails.php, which allows users to retrieve their member details in case they've forgotten them; also fixed an associated link in editpost.php
- New database table added,
request, which temporarily stores member details requests
- Almost all static forum colors have been replaced with configuration settings definable in
config.inc.php; changing the forum color layout is now as simple as updating the configuration file!
- The View New Posts link that appears at the top of the forum index when you're logged in no longer points to the non-existent
somelink.php page; the View New Posts functionality still doesn't work, mind you, but at least it doesn't take you to a non-existent page
- Added the item, Please select one:, into the Forum Jump list found in various places throughout the forums; the absence of this caused the first forum listed to be inaccessible
- Improved the "vBulletin-likeness" of the style of
memberlist.php
- Fixed a bug that caused dates to be incorrectly formatted in
addevent.php
- Fixed a bug in
addevent.php that allowed users to post events without subjects
- Added a space to fix a grammatically-incorrect error message in
addevent.php
- Changed all occurrences of "date" to "day", in
addevent.php, when referencing a day and not a complete date
- Removed the "Make this event public?" option in
addevent.php, as it was giving me headaches and isn't necessary anyway; I'll probably add it back at a later version
V0.03a
- Replaced most of the remaining vBulletin images with my own
- Renamed several images for better description
- Converted all remaining GIF images to PNG
- Removed unneeded background image instance in
header.php
- Fixed a fatal bug in the results page of
search.php
- Fixed a bug in
editpost.php that would've allowed anyone to edit any post
- Fixed a bug in
newreply.php that caused new replies to be only partially added to the database
- Got rid of various benign warnings that showed up in
editpost.php, index.php, and register.php
- Corrected the text style of the message boxes in
newreply.php and newthread.php
- Modified
index.php so that it only displays the Board Statistics and newest member welcome when there actually exists at least one registered member