CMS Made Simple Forums

Content management as it is meant to be
https://forum.cmsmadesimple.org/

CMSMS 1.10 Beta3 is available.

https://forum.cmsmadesimple.org/viewtopic.php?t=56826

Page 1 of 1

CMSMS 1.10 Beta3 is available.

Posted: Sat Sep 17, 2011 8:37 pm
by calguy1000
Ready for download, and hot off the presses.

This release should address all known issues with the beta version. and a few others. There is a new version of MicroTiny, and fixes to smarty processing, a host of typo fixes... fixes for SSL configurations, and a few other things.

Please test this release as fully and completely as possible. Hopefully it will be the last beta.

Re: CMSMS 1.10 Beta3 is available.

Posted: Sun Sep 18, 2011 7:14 am
by fredp
Hi,

I extracted cmsmadesimple-1.10-beta3-english.tar.gz atop my 1.10-beta2 test install and did an upgrade. That seemed to go fine. Next, I rechecked Admin:Content->Pages access using the "shared SSL" certificate on my host.

That worked too... but, Firefox again warned of "unencrypted content". So, I extracted a list of http: requests from "Live http headers" output. The list contains jquery and xajax javascript filenames (see attached).

I researched the jquery files case and I found a problem in the OutputHeaderJavascript() function in lib/classes/class.admintheme.inc.php (and a similar problem in lib/classes/class.cms_cookies.php). You can expose these problems using a simple 'grep' of the source tree:

Code: Select all

#find . -type f -exec fgrep "_SERVER['https']" {} /dev/null \;

./lib/classes/class.cms_cookies.php:    if( !isset($_SERVER['HTTPS']) || empty($_SERVER['https']) || $_SERVER['https'] == 'off' ) return FALSE;
./lib/classes/class.admintheme.inc.php:         $ssl = isset($_SERVER['https']) && (strtolower($_SERVER['https']) == 'on' || $_SERVER['https'] == 1);
fp2 www/110>
[/size]The last time I checked, PHP array keys were case-sensitive. Thus, isset($_SERVER['https']) will, generally, always return false -- even when $_SERVER['HTTPS'] is set.

Hope this helps.

Re: CMSMS 1.10 Beta3 is available.

Posted: Sun Sep 18, 2011 5:26 pm
by Rolf
@ Fredp
Fixed in SVN rev. 7417

Re: CMSMS 1.10 Beta3 is available.

Posted: Mon Sep 19, 2011 10:46 am
by fredp
Rolf wrote:@ Fredp
Fixed in SVN rev. 7417
Thanks for the quick fix!
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited