Diamanda XSS Fixes

Check out the new site at https://rkblog.dev.

14 July 2008 Comments

I've updated Diamanda in SVN and packages on Sourceforge. The update is important as it fixes XSS holes in MyghtyBoard (add topic) and Diamanda (wiki) (changes summary and description). Captcha code was also updated according to user suggestions (thanks Chris and Bluszcz). Modified files that fix the XSS holes are diamandas/myghtyboard/views.py and diamanda/diamandas/wiki/views.py.
The latest packages are available on sourceforge.

RkBlog

Diamanda Applications Set, 14 July 2008

Check out the new site at https://rkblog.dev.

Comment article

Diamanda 2008-TEST-1.1 released

I've released a new version of Diamanda Application Set - 2008-TEST-1.1. It's a small update against 1.0 stable release. Most changes affected layout (new look, fixes in templates, CSS and JS files), but also more generic use of forum topics as comments systems. Also password change has been fixed to work with Django 1.0.*.

› Read more

ContentBBcode examples

Some examples and info about CBC

› Read more

Content module in Diamanda 2008

The "Content" module in Diamanda is now under heavy development. Things I want to add are (comments, ideas are welcomed):

For the main page - "what's new?" box displaying a list of new and edited content/post/other entries (similar to Confluence "Recently Updated")
Boxcomments are out, content comments are a special forum topic per content entry (created at the first comment, ability to set forum for comment topics for every content entry and it children)
Default syntax is Markdown + CBC, however you can add HTML + CBC entries via the admin panel, or you can replace markdown with other markup library (user add/edit interface only for non-HTML type)
Attachment management - upload images, files and then insert in content (manages files from all SITE_IDs)
Edit proposals, new content proposals - normal user can edit or add content, however it has to be approved to go public (diff changes etc.)
More CBC (ContentBBCode) - create some useful CBC tags for tables, charts etc.

› Read more

Forum in Diamanda 2008

Most of the features planned for the Forum application (MyghtyBoard) have been implemented. The hot new stuff is:

Better look (user interface)
Using only BBCode markup, combined with MarkitUp jQuery editor
Support for solving and unsolving topics by topic authors, moderators or staff
Simple system for marking new topics and post since last visit
Option to set moderators for each forum
Option to set topics prefixes for each forum, and filtering topics in forum by selected prefixes

› Read more

Diamanda 2007.04.26

I've released new Diamanda at google.code. This release contains all applications available on my sites including gettext translator and Baldurs Gate Characters.

› Read more

Diamanda project changes

Until now "Diamanda" was a wiki Django application released with MyghtyBoard Forum and some other mini applications. As of today my sites use newer version of those applications. There is no wiki application – instead there is plain "Articles" type application. Other applications – MyghtyBoard, Task Manager, UserPanel, BoxComments, News and other have been improved and/or written from scratch. In the next days, week I'll release the code as a new Diamanda release – "Diamanda – Django applications set".

› Read more