1. 24 Aug, 2002 2 commits
  2. 22 Aug, 2002 2 commits
  3. 18 Aug, 2002 1 commit
  4. 17 Aug, 2002 1 commit
  5. 16 Aug, 2002 1 commit
    • Chad Barb's avatar
      · 60529980
      Chad Barb authored
      The big one.
      
      New look;
      most of the changes are in menu.php3.
      
      A lot of the changes in other files are s/<TD>/<TH>/
      for table headers.
      
      Also closed some tags, tweaked some table styles, etc..
      
      No actual functionality should have changed.
      
      Will be installing soon...
      60529980
  6. 15 Aug, 2002 1 commit
  7. 25 Jul, 2002 1 commit
  8. 17 Jul, 2002 1 commit
  9. 10 Jul, 2002 1 commit
  10. 09 Jul, 2002 1 commit
  11. 07 Jul, 2002 1 commit
  12. 27 Jun, 2002 1 commit
  13. 12 Jun, 2002 1 commit
  14. 07 Jun, 2002 1 commit
  15. 05 Jun, 2002 1 commit
  16. 04 Jun, 2002 1 commit
  17. 02 Jun, 2002 1 commit
    • Leigh B. Stoller's avatar
      Merge reserved.php3 functionality into nodecontrol_list.php3, · a34a1dd4
      Leigh B. Stoller authored
      conditionalized on isadmin() status. These pages were mostly
      overlapping anyway, and the nodecontrol_list.php3 page was done more
      cleanly. No point in all the duplication. Dropped the Node Control
      menu item from the list.
      Add explicit "widearea" view to get remote nodes in their own page,
      instead of listed after all the PCs. Also some minor formatting
      changes.
      a34a1dd4
  18. 29 May, 2002 1 commit
    • Leigh B. Stoller's avatar
      A couple of small changes to prevent the "No Data" errors that · 86c0ffa5
      Leigh B. Stoller authored
      netscape gives when logged in using another browser. Most of the
      problems stems from the desire to allow users to refer to the main
      page in http mode even when logged in. I want to draw the menu as if
      logged in, but have the actual pages demand https mode. I'm also
      trying to catch the case where users have turned off cookies. I think
      Mac's idea is the way to go, but I don't want to mess with it right
      now. These changes will avoid the worst problem.
      86c0ffa5
  19. 22 May, 2002 1 commit
    • Leigh B. Stoller's avatar
      A large set of authorization changes. · d2360b6d
      Leigh B. Stoller authored
      * Cleanup! A lot of the structure derived from the early frame days,
        which had a noticable (and bad) effect on how I wrote the stuff.  I
        cleaned up most of that yuckyness.
      
      * In process, optimize a little bit on the queries. The old code did
        about 9 queries just to write out the menu options, and then
        repeated most of those queries again in the page guts. I've
        consolidated the queries as much as possible (to 3) and cache all
        the results.
      
      * Fix up problem with users who forget their passwords before
        verification. Basically, I fixed the more general problem of not
        being able to update your user info before verification/approval;
        users now get that menu option no matter their status.
      
      * Fix up problem of users being able to access pages before
        verification (but after approval) by going around the menu options.
        The page level check (after the menu is drawn) now checks all
        conditions (password expired, unverified, unapproved, timedout, and
        also nologins()).
      
      * Minor change in approveuser; do not show the new account to the
        project leader until the new user has verified his account.
      
      * Change verification method, as reqwuested by Dave.  In addition to
        providing the key, also provide a web link to take the user straight
        to verification. I actually take them direct to the login page, and
        pass the key in as an argument. If the user is already logged in,
        bypass and go directly to the verify page (not the form page of
        course).  If the user is not logged in, let him log in, and then
        forward the key onward to the verify page. Basically, bypass the
        form all the time, and just do the verification.
      
      * Minor change in showuser; Do not show pid/groups not approved in,
        and if the count is zero, do not draw the table headings.
      d2360b6d
  20. 09 May, 2002 1 commit
  21. 08 May, 2002 1 commit
  22. 22 Apr, 2002 1 commit
  23. 01 Mar, 2002 1 commit
  24. 26 Feb, 2002 1 commit
  25. 25 Feb, 2002 1 commit
    • Leigh B. Stoller's avatar
      Change caching directives. Used to be that all of the pages we spit · c6f8434f
      Leigh B. Stoller authored
      out included directives to prevent caching along the way. Now we look
      at the protocol (http vs https) and include directives that allow
      (encourage) http pages to be cached for a short time. My reasoning is
      that anything we spit out via http is documentation, and can grow a
      bit stale. Sure, the menu on the left is dynamic, but not so dynanic
      that it can't go a little stale too for people who are not logged in.
      c6f8434f
  26. 14 Feb, 2002 1 commit
    • Leigh B. Stoller's avatar
      A morass of form changes. The main goals are to avoid the loss of info · 9ac3d870
      Leigh B. Stoller authored
      when backing up (cause of an error that needs to be fixed) since not
      all browsers handle this the same. Instead, redraw the form with all
      of the original info and a list of error messages at the top.
      Conceptually simple change, but it turns out to be a pain to implement
      since you need to combine the form and processing code in one page
      (well, its just a lot easier to do that), and then change all of the
      forms to deal with a "default" value. That is, each different kind of
      input tag (text, radio, select, checkbox, etc.) requires slightly
      different changes to do that. Lots of forms, lots of entries on the
      forms, and its a long slow tedious process. Much nicer though, although
      the code is a bit harder to grok. At the same time, I added a lot more
      sanity checks of the information being passed in.
      
      The other change is to deal with how browsers handle the back button
      on a form thats been properly submitted. Not all browsers use
      the cache directives the same, and I was often typing back, only to
      have some form get reposted. Thats a major pain in the butt. The way
      to deal with that is to have the processor send out a Location header,
      which modifies the browser history so that the post is no longer in
      the history. You back up straight to the unposted form (if its in the
      cache). I've done this to only some forms, since its a bit of a pain
      to rework things so that you can jump ahead to a page that spits out
      the requisite warm fuzzies for the specific operation just completed.
      
      I've done newproject, joinproject, update user info, newimageid, and
      newimaged_dz forms.
      9ac3d870
  27. 08 Feb, 2002 2 commits
  28. 18 Jan, 2002 1 commit
  29. 10 Jan, 2002 1 commit
  30. 17 Dec, 2001 1 commit
  31. 11 Dec, 2001 1 commit
  32. 10 Dec, 2001 1 commit
  33. 08 Dec, 2001 1 commit
  34. 06 Dec, 2001 1 commit
  35. 05 Dec, 2001 1 commit
    • Leigh B. Stoller's avatar
      More inventive ways to avoid real work; add password expiration · 3e2bb386
      Leigh B. Stoller authored
      capability. New DB field in the users table (pswd_expires) which is a
      date field that initially gets set to one year after the user account
      is created. When the password is changed via the web form, it gets
      bumped 1 more year into the future *unless* the current uid is
      different from the target_uid (ie: you are changing a password for
      someone else). In that case, the expiration is set to the current
      date, which forces the target user to change his password next time he
      logs in. I've changed the menu/auth code to look for password
      expiration, and when expired the menu options contain just a single
      option to change the password. All other https pages will fail with a
      password expired message. Normal text pages will work of course.
      3e2bb386
  36. 30 Nov, 2001 1 commit
  37. 12 Nov, 2001 1 commit
    • Leigh B. Stoller's avatar
      Check in search page stuff. I've incorporated the web form from the · 423e25a5
      Leigh B. Stoller authored
      webglimpse dir right into search.php3. Its a simple form and I wanted
      it to look a little different. It also allows me to get rid of the
      FollowSymlinks change I made a couple of days ago. I've added a
      install section that creates a symlink to the webglimpse dir, but
      thats strictly for convenience. The install target cds into that
      directory and reruns the glimpse index (its very quick cause we do not
      have much documentation, perhaps a second. Overall, I do not like the
      webglimpse stuff, but it will do for now.
      423e25a5