Changelog

From DocMGR

0.58 Changelog

Bugfixes

• Fixed bug which allows users with MANAGE_USERS permissions to set themselves as ADMIN by manipulating POST data in user admin tool
• Fixed bug which allows users with MANAGE_USERS permissions to set any group as ADMIN by manipulating POST data in group admin tool

Features

• Removed dual-licensing. DocMGR is now GPL only
• Added PDF Export module for docmgr documents
• Log all workflow related events for an object in it's own log
• Shift delete icons to last in helper list for all objects
• upgrade to latest version of fckeditor

0.57.3 Changelog

Bugfixes

• fixed browse module pagination
• Fixed expired session handling for ajax components
• added config option for ocrad for document ocring in app-config.php

0.57.2 Changelog

Bugfixes

• checked permissions not showing up in internet explorer
• site status showing "undefined" instead of "updated" on permissions pages
• for objects w/ multiple parents, duplicates displayed in the browser
• textbox/dropdown spacing wrong in ie in the permissions pages
• arrow image not used in nav history tree when viewing object properties

0.57.1 Changelog

Bugfixes

• Fixed nav history tree not working when using browse collection tree from any module other than browse
• Fixed "More Helpers" menu in finder not disappearing in Internet explorer
• Fixed spacing issue in nav history tree in some browsers
• Fixed inability to edit non-txt documents that don't have the "txt" extension
• Fixed thumbnails floating to left side of page in thumbnail view with internet explorer.

0.57 Changelog

Features

• new permissions selection implementation to allow for easy account/group finding a filtering
• Upgraded webdav so it now passes the copy/move and basic litmus tests. Added locking support, although it only works with netdrive currently.
• upgraded to latest edev framework
• Major css cleanup. Also reworked and simplified a lot of the underlying html
• Added "My Routed Documents" to the home page (Martijn Schroder)
• added ability to paginate browse results
• Added file preview from the finder
• make thumbnails and previews be created in the background to speed up file insertion speed
• added ability to associate files to each other
• reworked icons for browse and find module using dropline gnome's neu theme
• added dropdown menus for any object in browse/find that has more than 5 helpers
• created dropdowns in browse path history to quickly jump to another collection on the same level
• created ability to use "index.php?view=/path/to/file" to directly jump to an object
• added document preview from within browse/find
• added ability to search all keywords at once
• updated to latest fckeditor
• abilty to quickly limit search using "objtype:<objtype>" in the search string where <objtype> can be "document","file","collection","url", or "savesearch"
• moved dbencoding/lang_charset to more appropriately named db_charset and view_charset
• add ability to automatically add ldap accounts that don't have permissions in the database

Bugfixes

• Fix security issue with users being able to see collection names they don't have access rights to in the object path trail
• moved admin module tree navigation and made it work
• Fixed image selection issues in fckeditor in internet explorer
• Object deletion errors weren't being displayed when an object deletion fails

0.56.4 Changelog

Bugfixes

• Fixed tsearch2 rank-related errors when searching for a filename w/ a wildcard
• Fixedclicking on an alert doesn't take you to the object's properties page
• Fixed checking a single alert clearing all of them
• show current date when new account logs in for last login time, instead of 1970 date
• Fixed move function in the search results
• Fixed object losing parent if all checkboxes are empty in object parent module, and user hits update
• Reorganized used of DBENCODING AND LANG_CHARSET. XML files also default to LANG_CHARSET to reduce encoding errors in ajax
• Fixed dm_object_log "Column "id" does not exist" errors" in db logs
• Fixed syntax errors on certain search strings containing characters not in REGXP_OPTION.

0.56.3 Changelog

Bugfixes

• Summary not included when emailing a collection
• A file belonging to two collections is deleted when one collection is removed
• Cannot view or copy files in webdav

0.56.2 Changelog

Bugfixes

• clamav not running due to incorrect reference to APP_CLAMSCAN instead of APP_CLAMAV
• some external applications were not appropriately checked for
• some thumbnail functions don't check for appropriate app support first
• foreach error when a file fails to upload for whatever reason
• encapsulated pdfs not being indexed properly
• openoffice documents not indexed correctly
• openoffice 1.0 documents not thumbnailed

0.56.1 Changelog

Bugfixes

• zip collection download does not work
• not assigning templateId from the request variable in the modentry module
• pageAction not successfully compared during processing in modentry module
• use DBENCODING value for xml output instead of utf-8

0.56 Changelog

Features

• store all objects into a two level subdirectory tree
• E-Dev upgraded and reorganized
  • Upgrade to latest ajax code (faster and more error handling)
  • Reorganized core php libraries
  • Reorganized core javascript libraries
• Upgrade to latest fckeditor
• Upgraded to the latest PEAR Webdav server
• Added the ability to clear all alerts at once on the home page
• Added discussions to inline documents
• We now display an icon by the name when there's an active discussion
• Added ability to remove a workflow template
• All external application calls are now stored in a config file so the options may be changed
• do a check to make sure php-cli is not actually the php-cgi binary
• removed ghostscript usage
• Create a config option which will automatically create a perm record for an ldap account if one does not exist
• Added md5 password encryption support for ldap
• DocMGR no longer works with php4. PHP5 and later are required.

Bug Fixes

• added USE_OID setting to config file to stop the LASTVAL() errors in postgresql
• Extensive workflow javascript bugfixes
• Fixed routing not working when using non-default date format.
• Summary not being indexed in tsearch2 setup (reindex required)
• rewrite "upgrade50.php" script to use older version of database
• Fixed foreign languages not displaying correctly after logging in
• When you click move, the tree in the new window now expands to the appropriate current directory
• Fixed a great many (but not all) opera compatibility problems
• Fixed user with manage permissions not seeing a document uploaded by another user
• Fixed "You must select a recipient to proceed" incorrectly displaying in workflow in I.E.
• Fixed DocMGR sending all emails in iso-8551

0.55.3 Changelog

Bugfixes

• dm_saveroute and dm_saveroute data not in docmgr.pgsql or upgrade.php. A separate upgrade script has been made available for 0.55.x users to add these tables. It's in the scripts/ directory
• docmgr-autoimport stops if certain objects already exist (it should just continue)
• Error updating account when pulled from search with an auto-hit

0.55.2 Changelog

Bugfixes

• Permissions error when a user tries to move an object if only Manage Object permissions are checked.
• Add option to prevent user with edit permissions from creating an object in the root folder
• Use sed instead of tr to allow for proper indexing of foreign languages
• Don't check for php binary if backindex is disabled
• Fixed reindexing issue when DISABLE_BACKINDEX is set
• rework temp file creation for indexing functions
• Image upload through fckeditor now works with backindex disabled
• fixed docmgr-autoimport and createthumbs.php
• Fixed adding files through webdav (and backindex disabled problems)
• Add a title consisting of the document name to an document edit window
• Added View and Edit links in Document properties.
• magic_quotes breakes images in inline documents (when editing and adding)
• Fixed sql error when searching for a file when no collections are in the system
• reindex.php doesn't reindex inline document content
• dm_document flat files not being removed when the object is deleted
• Fixed a great deal of safari/konqueror display issues. I couldn't fix the konqueror multi-file upload issue, konqueror just doesn't support "onChange" for input type=file. Strange that safari does...
• Keyword searches now case-insensitive
• I.E. javascript error in home directory settings page
• No "Add New" dropdown if accessing collection as your own home directory
• If deleting a collection used by a user as a home directory, an error would be generated when the user tried to access the Browse module
• Changed SESSION_TIMEOUT1 back to SESSION_TIMEOUT
• Duplicates removed in ldap-config.php
• Fixed webdav error when viewing collections w/ certain characters
• Disabled default debug logging in webdav

0.55.1 Changelog

Bugfixes

• Updated docmgr.pgsql to contain new database structure (sorry everyone)
• Updated language selector to only show php files in the language selection list.
• dm_object_perm called instead of dm_view_perm in search_function.inc.php. Only affects users with strict permissions enabled.
• FCKEditor does not display at right height for I.E. users
• Better comments for iconv setup
• Remove warning messages from showing in console during ocr, unless debug is enabled
• Update checksum.php to use new file config

0.55 Changelog

Features

• Added inline document object. Can now create, edit, and view a document from within DocMGR. Files are stored using xhtml format, and the excellent app FCKEditor was added as an editor for this object
• Reworked workflow interface to a new look and to use ajax. Allows for easier workflow creation, editing of existing recipient entries.
• Can now save a current workflow as a template to use later.
• Can now opt to be emailed when a workflow route is complete
• Can now be emailed a copy of a file when subscribed to the file or a parent of that file
• Can now configure which characters to prevent being in an object's name.
• Can now set a user's home collection for a user when they open the browse module
• Background indexing can now be disabled to run indexing in the foreground. This is due to indexing problems with users having certain server configurations.

Bugfixes

• Security hole in the user administrator utility allowing someone to open another module by specifying includeModule=module_name in the url
• date and account list checking in the workflow creator
• File revision limit not being honored
• Convert all xml data for ajax requests to utf-8 before being send to the browser
• charConv now uses the php function first.
• collection email does not include the full url
• promoting a file does not update the thumbnail
• removed absolute width setting from the collection tree
• email sent for a new object creation from a folder subscription does not work (the link)
• javascript translations being to be moved to their own file to prevent extra javascript text at the beginning of the page.

0.54.2 Changelog

Bugfixes

• Fixed keyArr typo in search form
• Prevented gocr from trying to index non-existent file
• Permissions error displayed when trying to set permissions on an object with OBJPERM_LEVEL set to strict
• Fix "File Not Found" error for php4 users accessing via webdav
• Users without Administrative priviledges cannot zip & download a file
• Zip & Download icon not always showing for non-admins
• Default permissions not being set correctly when viewing as a non-admin with non-insert rights
• Improper permissions on fileedit module
• Improper permissions on create save search query module, and "Save This Search" showed for users without Insert permissions
• UserID not set on imported collections from the imported module
• Updated two calendar language files (NL and FR) with user-submitted ones containing bugfixes (Thanks to Sébastien and Frans)

0.54.1 Changelog

Bugfixes

• Fixed class loading error under php4 in the indexer script.
• Duplicates being displayed for an Administrator when a collection has permissions for a user or group set on it in the Browse Tree.
• Certain helper icons not being displayed for a user with OBJ_MANAGE rights.
• Debugging for docmgr-indexer.php
• LDAP_FILTER now used properly for account searches in ldap.inc.php
• Fixed missing isProgRunning() function. Function and calling instance renamed to isPidRunning()

0.54 Changelog

Features

• New object/helper backend for easier development.
• Background indexing to allow for quicker entry of files into the system
• Multiple file upload in the upload utility
• The ability to monitor a collection for changes to its members
• The ability to specify a version number when uploading or updating a file
• Search speed enhancments
• Now record history of file names
• Postgresql 8.1 compatibility
• Use of the "file" binary to find file types of files without extensions. If recognized, we then can index the file
• Cron index was removed in favor of background indexing
• Removed the Messages left module because it was taking up space. Default language can now be set in the user's profile
• LDAP attribute mapping file
• Can attach a note to a task when assigning it to a person in workflow
• Thumbnail view in search results
• Webdav file structure reorganization and code cleanup.
• Slightly remodeled home page
• Configurable Account Lockout (jbackman)
• Configurable Session Timeouts (jbackman)
• Last Login and number of Failed Logins (jbackman)
• Configurable to require secure cookies (jbackman)
• Configurable Login Banner (jbackman)
• Ability to restrict a user to change only his/her password, not the rest of his/her profile (jbackman)
• Email security enhancements: The user cannot change the from address in the email message, only from the profile menu, thus users with only the ability to change their password will not be able to spoof email (jbackman)
• Anonymous access enhancement: The email generated when a file is accessed anonymously include the date/time of the access as well as the originating IP address (jbackman)
• Allows an administrator to require that emails with attachments only be sent to users of the system, otherwise the anonymous email mechanism must be used (jbackman)
• Gives finer grain time limits on anonymous file pickups (jbackman)
• A module to allow the editing of a text file from within docmgr (redrat)

Bugfixes

• No more duplicates in file search results
• Fixed foreach errors for php4 users when no keywords are defined
• User can no longer upload to a collection they have read-only access to
• Fixed error subscribing to a file
• Can no longer pass the id of one object to a module responsible for a different object type

0.53.3 Changelog

Bugfixes

• Error when a non-admin tries to update their own profile
• strings being escaped unnecessarily if magic_quotes is on
• Object name not checked for uniqueneses when moving an object from one collection to another collection.
• Can remove a checked out file through bulk delete
• File promote doesn't work anymore
• Permissions for a file not being checked correctly in the finder
• Not able to jump to second page in search results

0.53.2 Changelog

Bugfixes

• Tsearch2 indexing error when updating file properties
• Several webdav fixes including proper allowing of viewing and checking in/out, along with file size not displayed properly.
• Duplicates being displayed for collections for non-admins in the quick browse tree and in webdav
• Typo in site.css (results in thumbnails not being displayed correctly in I.E.)
• The user that checks out a file can now clear the checkout
• English language file charset is now utf-8
• Errors on file revision promoting. Another attempt made to fix this for the people that are experiencing this error.
• Konqueror doesn't let you clear a checkout

0.53.1 Changelog

Features

• Modified search function to yield quicker search results, and to remove duplicate results for non-admin users

Bugfixes and Security Fixes

• A user can reset permissions and take ownership of a subdirectory that they do not own
• Sql error when promoting a file revision
• Can't click on Browse after checking in a file
• A user can modify their own login by modifying the post request
• If a route is complete, you can still edit the recipients
• You can create a blank discussion
• Fixed replacing an existing file (updating) through webdav and windows xp client
• Webdav logging error for file/collection creation and uploading
• A user who has been given group administration capabilities, can delete a group that has administrative capabilities, even though there is a message saying that you are not allowed to modify that group. By selecting the group, then clicking update, the group name is changed to a blank, and the administrative privliges for that group is removed.
• Fixed vulnerablity to cross site scripting and sql insertion attacks.
• Non-administrative users may receive duplicate results in search.
• Users may bypass password by using a sql insert that's longer than 25 characters
• In import, the path isn't updated of the directory we are browsing
• We don't do permissions checking when viewing a file
• Anonymous access file viewing doesn't seem to work
• A user with EDIT_PROFILE can edit account info for any other non-admin user
• We no longer echo ERROR_SQL except when in debug mode
• Tree shows all files, instead of certain files for non-admin users
• The keyword avanced_search shows filesize::numeric sql errors
• foreach errors in the array_function.inc.php file are now fixed.

0.53 Changelog

Features

• Saved searches feature implemented.
• Ajax based collection browsing
• Ajax based collection tree
• Redesigned advanced search page
• Account and collection filters on advanced search page
• Ajax based import browser
• Thumbnail view available for search results
• Webdav backend updated to use latest PEAR release
• Object name restriction now implemented to keep in sync with webdav specs. No object can have the same name as any other object in that collection level
• Keyword setup using xml layout. allows for text or dropdown keyword availability
• The ability to start a workflow after creating the steps without having to click "Begin"
• Added "The DHTML / JavaScript Calendar" app for date selection

Bugfixes

• Non-file objects' properties (name, summary) are now indexed during creation for tsearch2 users.
• Anonymous email options not displayed when selected
• email sending functions updated for better compatibility with mail viewers
• Fixed object sorting in the collection tree, and in search results. Also you can now sort by "Size" & "Rank" (tsearch2 only)
• Redid the module.png image to remove the transparency problem in I.E.
• Fixed problem with files not being promoted if latest revision was removed (Thanks to Nacho Barrientos)
• Fixed various hard coded language bugs
• Antiword options modified to handle utf8 properly
• Deleting the first level state in workflow no longer deletes the second level as well.
• Created new tsearch2.sql file to work with 8.0.3 and later
• Make select all box unselect as well in the object lists
• You can no longer set a collection as its own parent
• Included createcache.php into the scripts directory
• Dashboard now shows all files checked out by the user, not just files owned by the user under Checked Out Files
• Discussion link problem in konqueror fixed
• docmgr-autoimport errors fixed
• In the discussion forum, pressing enter now submits the form correctly.
• Required fields are now checked when creating a new collection, url, or saved search
• Files are no longer duplicated in the Recently Added Files list on the dashboard for non-adminstrators

Version 0.52.1 Changelog

Bugfixes

• Fixed an xml parsing error related to handling file extensions. Users upgrading from 0.52 can simple replace the config/extensions.xml file with the file from this release.
• Fixed xml function error for command line scripts in scripts directory.
• Fixed a display error in file properties when one keyword field is enabled.
• Updated webdav to use simplexml if available.

Files updated

• config/extensions.xml
• scripts/docmgr-cronindex
• scripts/docmgr-autoimport
• scripts/reindex.php
• scripts/createthumbs.php
• modules/center/file/fileproperties/display.php
• webdav/HTTP/WebDAV/Server/Filesystem.php

Version 0.52 Changelog

Features

• PHP simplexml functions now used for xml processing if available
• "prevent_index" tag now supported in extensions.xml. Putting this tag in an extension record will prevent that extension from being indexed.
• "BYPASS_MD5CHECK" config option added. This gives the ability to view a file even if it generates a md5sum warning. This is option is disabled by default. (Thanks to Sean)
• "OBJPERM_LEVEL" Config option added for more strict object security. If set, users who do not own a file will not be able to view it unless explicitly set by the file's owner. (Thanks to Suretec)

Bugfixes

• Security Fix: Users can no longer upload to a directory if they have View permissions for that directory. They must at least have Edit rights set.
• Deleting a file with a workflow instance that has been created but not started now deletes properly without generating an error.
• New groups may now be created on a fresh installation without a sequence warning error from postgresql.
• Pressing the "enter" key now submits the new group form properly
• Email generation cleanup so the headers are created properly. (Thanks to Sean for pointing this out)
• Fixed reduceArray errors in docmgr-autoimport
• Write permissions are check in the files directories on startup and at upload
• Upgrade script tries several methods to delete the foreign key from 0.50 to current
• Files which cannot be read due to permissions are no longer attempted to be imported by the import module or the autoimport script.
• Added Internet Explorer header workaround to file views. This should fix file viewing errors experienced by some I.E. users.

Version 0.51 Changelog

Features

• ClamAV file scanning support at upload/import
• Checksum verification for files on all database viewing
• Anonymous email support (emailing to non-docmgr users).
• Restricted delete option added - only admins can remove files if set (Thanks to kristov)
• Iconv encoding conversion support for openoffice/oasis. Currently used by openoffice/oasis files (Thanks to kristov)
• Can place a limit on number of saved revisions for a file
• Ability to remove past revisions of a file
• Antiword integration. This allows for cleaner indexing of MS Word files, along with the ability to create thumbnails.
• workflow - can add multiple recipients at once now
• workflow - Added link to force-complete a pending workflow item
• Prevent logs from being deleted at file deletion
• Make from address field read-only for sending emails
• Changed Recent Files to open properties instead of file
• Added docmgr-autoimport script for importing files in a directory from a cron job
• There is now a simple log view filter under file logs

Bugfixes

• Fixed a bug where collections with view-only did not show up for a user in the browse tree (Thanks to vikrant for doing the leg work and finding the cause of this one)
• fixed a bug where only admins or file owners could view past revisions of a file (Thanks to kristov)
• workflow - handle rejects properly
• Fixed a tsearch2 searching problem where searching for the string "my file" would not return a file named "my file.ext". Tsearch2 users must reindex to implement the fix.
• Fixed thumbnails not being created during import process if file has "'" in name Handle workflow rejects properly
• Display proper error when removing a file that has a pending route
• Collection name did not index when uploading thru webdav with tsearch2
• Change login to use _DO_LOGIN
• Fixed translation for Create New Account
• Fixed import foreach error when importing from a folder with no files
• Fixed translation errors under email module
• Fixed incorrect imap_8bit() usage when sending email via sendmail
• Button alignment in group manager
• Updated 0.44-0.49.x to 0.50 upgrade script
• Fixed addslashes bug in webdav for files uploaded with an "'" in the name
• Added sanity checking to file retrieval in webdav

Version 0.50.1 Changelog

• Fixed permissions error when non-admin checks in a file they had previously checked out.
• Fixed permissions for non-admin users when file browsing. A non-admin user that was not an object owner was able to move/delete an object which they did not own if that object did not have any permissions set on it.
• Fixed missing reduceArray function, called during image OCR and encapsulated PDF Indexing.
• Removed url subscribe icon. It wasn't supposed to be there yet.
• Thanks to everyone who found and reported these bugs!
• Affected Files:
  • include/app_postauth.inc.php
  • include/array_function.inc.php
  • modules/common/search_function.inc.php
  • modules/common/file_process.inc.php

Version 0.50 Changelog

• New database layout which allows an "everything as an object" approach to managing collections, files, and new object types.
• Addition of the URL object type. This is an indexable redirect or shortcut to a web address
• DocMGR is now built on the latest revision of its development platform. This allows for easy addition/removal of modules in the system, better security, and more flexibility. In addition to module-level security, object-level security can now occur at the module level. I plan to begin encouraging outside module contribution.
• Redesigned interface in many sections. I reworked the interface to allow for easier use, and to allow for easy expansion as new modules and object types are added. Plus, I think the look is a little more contemporary.
• New language file loading. Site Administrators can download desired language files from the main DocMGR website and drop them as needed into the lang/ directory.
• Collections can now have multiple parents. But, this feature is not turned on as I have not figured a way to make the quick browse collection tree work properly.
• Searches can now return matching collections, as well as files and urls.
• Search queries are more restrictive by default. If no boolean operator is specified, multiple words are joined with "AND" instead of "OR" by default. For example, "My Files" is now searched for as "my AND files". The assumption here is the user is searching for both terms and wants a file returned that has both.
• It is now possible to assign up to 6 keywords to an object. The keywords are set such that the administrator can designate field names in the config file (Customer Number, Invoice Number, etc), and the user can populate these at upload and search by them later.
• Subscription to files for notification when a file is checked out/in.
• "Zip and download" option for collections.
• The ability to bookmark collections for quick access.
• Dashboard-style home page to track bookmarks, file subscription alerts, workflow tasks, checked out files, and recently added documents.
• The DocMGR data and thumbnail directories (now under "files") can be moved to a different location by simplying moving the "files" directory and changing the path in the config file.
• Workflow for files. You can currently assign users to perform tasks on a file (approval, view, and edit). This is still in early development. I'm happy with the database layout of this, but not very happy with the workflow user interface. It still needs work, but I'm releasing it as-is to get user feedback. With the new development platform, it's easy for admins to disable the module altogether if they don't want users to access workflow.
• Reworked webdav server. It works well in Windows XP, Netdrive/Webdrive, Cadaever, and Konqueror. With the exception of file overwriting (files are not updated with a new revision, but completely overwritten) it also works well with Gnome's Webdav implementation. This is out of my hands, as it's a "feature" in gnome-vfs. We're finally moving closer to a stable WebDAV implementation.
• Experimental ldap support. You'd better be familiar with ldap before playing with this one.