CHANGELOG

0.54.1 Changelog

Bugfixes

• Fixed class loading error under php4 in the indexer script.
• Duplicates being displayed for an Administrator when a collection has permissions for a user or group set on it in the Browse Tree.
• Certain helper icons not being displayed for a user with OBJ_MANAGE rights.
• Debugging for docmgr-indexer.php
• LDAP_FILTER now used properly for account searches in ldap.inc.php
• Fixed missing isProgRunning() function. Function and calling instance renamed to isPidRunning()

0.54 Changelog

Features

• New object/helper backend for easier development.
• Background indexing to allow for quicker entry of files into the system
• Multiple file upload in the upload utility
• The ability to monitor a collection for changes to its members
• The ability to specify a version number when uploading or updating a file
• Search speed enhancments
• Now record history of file names
• Postgresql 8.1 compatibility
• Use of the "file" binary to find file types of files without extensions. If recognized, we then can index the file
• Cron index was removed in favor of background indexing
• Removed the Messages left module because it was taking up space. Default language can now be set in the user's profile
• LDAP attribute mapping file
• Can attach a note to a task when assigning it to a person in workflow
• Thumbnail view in search results
• Webdav file structure reorganization and code cleanup.
• Slightly remodeled home page
• Configurable Account Lockout (jbackman)
• Configurable Session Timeouts (jbackman)
• Last Login and number of Failed Logins (jbackman)
• Configurable to require secure cookies (jbackman)
• Configurable Login Banner (jbackman)
• Ability to restrict a user to change only his/her password, not the rest of his/her profile (jbackman)
• Email security enhancements: The user cannot change the from address in the email message, only from the profile menu, thus users with only the ability to change their password will not be able to spoof email (jbackman)
• Anonymous access enhancement: The email generated when a file is accessed anonymously include the date/time of the access as well as the originating IP address (jbackman)
• Allows an administrator to require that emails with attachments only be sent to users of the system, otherwise the anonymous email mechanism must be used (jbackman)
• Gives finer grain time limits on anonymous file pickups (jbackman)
• A module to allow the editing of a text file from within docmgr (redrat)

Bugfixes

• No more duplicates in file search results
• Fixed foreach errors for php4 users when no keywords are defined
• User can no longer upload to a collection they have read-only access to
• Fixed error subscribing to a file
• Can no longer pass the id of one object to a module responsible for a different object type

0.53.3 Changelog

Bugfixes

• Error when a non-admin tries to update their own profile
• strings being escaped unnecessarily if magic_quotes is on
• Object name not checked for uniqueneses when moving an object from one collection to another collection.
• Can remove a checked out file through bulk delete
• File promote doesn't work anymore
• Permissions for a file not being checked correctly in the finder
• Not able to jump to second page in search results

0.53.2 Changelog

Bugfixes

• Tsearch2 indexing error when updating file properties
• Several webdav fixes including proper allowing of viewing and checking in/out, along with file size not displayed properly.
• Duplicates being displayed for collections for non-admins in the quick browse tree and in webdav
• Typo in site.css (results in thumbnails not being displayed correctly in I.E.)
• The user that checks out a file can now clear the checkout
• English language file charset is now utf-8
• Errors on file revision promoting. Another attempt made to fix this for the people that are experiencing this error.
• Konqueror doesn't let you clear a checkout

0.53.1 Changelog

Features

• Modified search function to yield quicker search results, and to remove duplicate results for non-admin users

Bugfixes and Security Fixes

• A user can reset permissions and take ownership of a subdirectory that they do not own
• Sql error when promoting a file revision
• Can't click on Browse after checking in a file
• A user can modify their own login by modifying the post request
• If a route is complete, you can still edit the recipients
• You can create a blank discussion
• Fixed replacing an existing file (updating) through webdav and windows xp client
• Webdav logging error for file/collection creation and uploading
• A user who has been given group administration capabilities, can delete a group that has administrative capabilities, even though there is a message saying that you are not allowed to modify that group. By selecting the group, then clicking update, the group name is changed to a blank, and the administrative privliges for that group is removed.
• Fixed vulnerablity to cross site scripting and sql insertion attacks.
• Non-administrative users may receive duplicate results in search.
• Users may bypass password by using a sql insert that's longer than 25 characters
• In import, the path isn't updated of the directory we are browsing
• We don't do permissions checking when viewing a file
• Anonymous access file viewing doesn't seem to work
• A user with EDIT_PROFILE can edit account info for any other non-admin user
• We no longer echo ERROR_SQL except when in debug mode
• Tree shows all files, instead of certain files for non-admin users
• The keyword avanced_search shows filesize::numeric sql errors
• foreach errors in the array_function.inc.php file are now fixed.

0.53 Changelog

Features

• Saved searches feature implemented.
• Ajax based collection browsing
• Ajax based collection tree
• Redesigned advanced search page
• Account and collection filters on advanced search page
• Ajax based import browser
• Thumbnail view available for search results
• Webdav backend updated to use latest PEAR release
• Object name restriction now implemented to keep in sync with webdav specs. No object can have the same name as any other object in that collection level
• Keyword setup using xml layout. allows for text or dropdown keyword availability
• The ability to start a workflow after creating the steps without having to click "Begin"
• Added "The DHTML / JavaScript Calendar" app for date selection

Bugfixes

• Non-file objects' properties (name, summary) are now indexed during creation for tsearch2 users.
• Anonymous email options not displayed when selected
• email sending functions updated for better compatibility with mail viewers
• Fixed object sorting in the collection tree, and in search results. Also you can now sort by "Size" & "Rank" (tsearch2 only)
• Redid the module.png image to remove the transparency problem in I.E.
• Fixed problem with files not being promoted if latest revision was removed (Thanks to Nacho Barrientos)
• Fixed various hard coded language bugs
• Antiword options modified to handle utf8 properly
• Deleting the first level state in workflow no longer deletes the second level as well.
• Created new tsearch2.sql file to work with 8.0.3 and later
• Make select all box unselect as well in the object lists
• You can no longer set a collection as its own parent
• Included createcache.php into the scripts directory
• Dashboard now shows all files checked out by the user, not just files owned by the user under Checked Out Files
• Discussion link problem in konqueror fixed
• docmgr-autoimport errors fixed
• In the discussion forum, pressing enter now submits the form correctly.
• Required fields are now checked when creating a new collection, url, or saved search
• Files are no longer duplicated in the Recently Added Files list on the dashboard for non-adminstrators

Version 0.52.1 Changelog

• Fixed an xml parsing error related to handling file extensions. Users upgrading from 0.52 can simple replace the config/extensions.xml file with the file from this release.
• Fixed xml function error for command line scripts in scripts directory.
• Fixed a display error in file properties when one keyword field is enabled.
• Updated webdav to use simplexml if available.

• config/extensions.xml
• scripts/docmgr-cronindex
• scripts/docmgr-autoimport
• scripts/reindex.php
• scripts/createthumbs.php
• modules/center/file/fileproperties/display.php
• webdav/HTTP/WebDAV/Server/Filesystem.php

Version 0.52 Changelog

• PHP simplexml functions now used for xml processing if available
• "prevent_index" tag now supported in extensions.xml. Putting this tag in an extension record will prevent that extension from being indexed.
• "BYPASS_MD5CHECK" config option added. This gives the ability to view a file even if it generates a md5sum warning. This is option is disabled by default. (Thanks to Sean)
• "OBJPERM_LEVEL" Config option added for more strict object security. If set, users who do not own a file will not be able to view it unless explicitly set by the file's owner. (Thanks to Suretec)

• Security Fix: Users can no longer upload to a directory if they have View permissions for that directory. They must at least have Edit rights set.
• Deleting a file with a workflow instance that has been created but not started now deletes properly without generating an error.
• New groups may now be created on a fresh installation without a sequence warning error from postgresql.
• Pressing the "enter" key now submits the new group form properly
• Email generation cleanup so the headers are created properly. (Thanks to Sean for pointing this out)
• Fixed reduceArray errors in docmgr-autoimport
• Write permissions are check in the files directories on startup and at upload
• Upgrade script tries several methods to delete the foreign key from 0.50 to current
• Files which cannot be read due to permissions are no longer attempted to be imported by the import module or the autoimport script.
• Added Internet Explorer header workaround to file views. This should fix file viewing errors experienced by some I.E. users.

Version 0.51 Changelog

• ClamAV file scanning support at upload/import
• Checksum verification for files on all database viewing
• Anonymous email support (emailing to non-docmgr users).
• Restricted delete option added - only admins can remove files if set (Thanks to kristov)
• Iconv encoding conversion support for openoffice/oasis. Currently used by openoffice/oasis files (Thanks to kristov)
• Can place a limit on number of saved revisions for a file
• Ability to remove past revisions of a file
• Antiword integration. This allows for cleaner indexing of MS Word files, along with the ability to create thumbnails.
• workflow - can add multiple recipients at once now
• workflow - Added link to force-complete a pending workflow item
• Prevent logs from being deleted at file deletion
• Make from address field read-only for sending emails
• Changed Recent Files to open properties instead of file
• Added docmgr-autoimport script for importing files in a directory from a cron job
• There is now a simple log view filter under file logs

• Fixed a bug where collections with view-only did not show up for a user in the browse tree (Thanks to vikrant for doing the leg work and finding the cause of this one)
• fixed a bug where only admins or file owners could view past revisions of a file (Thanks to kristov)
• workflow - handle rejects properly
• Fixed a tsearch2 searching problem where searching for the string "my file" would not return a file named "my file.ext". Tsearch2 users must reindex to implement the fix.
• Fixed thumbnails not being created during import process if file has "'" in name Handle workflow rejects properly
• Display proper error when removing a file that has a pending route
• Collection name did not index when uploading thru webdav with tsearch2
• Change login to use _DO_LOGIN
• Fixed translation for Create New Account
• Fixed import foreach error when importing from a folder with no files
• Fixed translation errors under email module
• Fixed incorrect imap_8bit() usage when sending email via sendmail
• Button alignment in group manager
• Updated 0.44-0.49.x to 0.50 upgrade script
• Fixed addslashes bug in webdav for files uploaded with an "'" in the name
• Added sanity checking to file retrieval in webdav

Version 0.50.1 Changelog

• Fixed permissions error when non-admin checks in a file they had previously checked out.
• Fixed permissions for non-admin users when file browsing. A non-admin user that was not an object owner was able to move/delete an object which they did not own if that object did not have any permissions set on it.
• Fixed missing reduceArray function, called during image OCR and encapsulated PDF Indexing.
• Removed url subscribe icon. It wasn't supposed to be there yet.
• Thanks to everyone who found and reported these bugs!
• Affected Files:
  • include/app_postauth.inc.php
  • include/array_function.inc.php
  • modules/common/search_function.inc.php
  • modules/common/file_process.inc.php

Version 0.50 Changelog

• New database layout which allows an "everything as an object" approach to managing collections, files, and new object types.
• Addition of the URL object type. This is an indexable redirect or shortcut to a web address
• DocMGR is now built on the latest revision of its development platform. This allows for easy addition/removal of modules in the system, better security, and more flexibility. In addition to module-level security, object-level security can now occur at the module level. I plan to begin encouraging outside module contribution.
• Redesigned interface in many sections. I reworked the interface to allow for easier use, and to allow for easy expansion as new modules and object types are added. Plus, I think the look is a little more contemporary.
• New language file loading. Site Administrators can download desired language files from the main DocMGR website and drop them as needed into the lang/ directory.
• Collections can now have multiple parents. But, this feature is not turned on as I have not figured a way to make the quick browse collection tree work properly.
• Searches can now return matching collections, as well as files and urls.
• Search queries are more restrictive by default. If no boolean operator is specified, multiple words are joined with "AND" instead of "OR" by default. For example, "My Files" is now searched for as "my AND files". The assumption here is the user is searching for both terms and wants a file returned that has both.
• It is now possible to assign up to 6 keywords to an object. The keywords are set such that the administrator can designate field names in the config file (Customer Number, Invoice Number, etc), and the user can populate these at upload and search by them later.
• Subscription to files for notification when a file is checked out/in.
• "Zip and download" option for collections.
• The ability to bookmark collections for quick access.
• Dashboard-style home page to track bookmarks, file subscription alerts, workflow tasks, checked out files, and recently added documents.
• The DocMGR data and thumbnail directories (now under "files") can be moved to a different location by simplying moving the "files" directory and changing the path in the config file.
• Wworkflow for files. You can currently assign users to perform tasks on a file (approval, view, and edit). This is still in early development. I'm happy with the database layout of this, but not very happy with the workflow user interface. It still needs work, but I'm releasing it as-is to get user feedback. With the new development platform, it's easy for admins to disable the module altogether if they don't want users to access workflow.
• Reworked webdav server. It works well in Windows XP, Netdrive/Webdrive, Cadaever, and Konqueror. With the exception of file overwriting (files are not updated with a new revision, but completely overwritten) it also works well with Gnome's Webdav implementation. This is out of my hands, as it's a "feature" in gnome-vfs. We're finally moving closer to a stable WebDAV implementation.
• Experimental ldap support. You'd better be familiar with ldap before playing with this one.

Version 0.49.3 Changelog (February 28, 2005)

• Address security issue where users could view or checkout a file by pasting a url into the address bar. An additional security check is now done before the file can be viewed or checked out.
• Modified scripts/docmgr-tsearch2.sql to address view error with the dm_view_file_perm view.
• Backported 0.50 import module to 0.49.3 to address several import problems addressed by users.
• Added Brazilian translation.

Version 0.49.2 Changelog (January 21, 2005)

• Update now show's for a non-admin user on their own uploaded file
• Some checkin/checkout alterations. Only the person who checked out the file can check it back in. The file owner or admin has the ability to clear the checked-out status from within the File's Properties.
• A group member can alter/delete a file owned by another member of a group. This has also been applied to categories.
• A user's email address now shows as the From address if it is in their profile when emailing a file
• Creating a new user after viewing your profile no longer generates an error for user admins.

Version 0.49.1 Changelog (November 29, 2004)

• Can now search for filenames when using tsearch2
• Fix Internet Explorer view problems (related to css) in various parts of the site
• Fix file email not working if register_globals is disabled
• In file properties, update link is not displayed if a user does not have permissions to update a file's properties.
• Reworked next/previous in document search results
• Direct links to a file for a non-logged in user now work. The user is prompted to log in before being redirected to the file.
• In import, we now check to see if the files have the right permissions before trying to delete them
• DocMGR now reports better error messages for file importing/uploading
• Fixed in_array error when moving some documents

Version 0.49 Changelog (November 11, 2004)

• DocMGR is now PHP 5 Compatible.
• Created a config option to view files as thumbnails by default in the file browser.
• Updated external app detection. It is also now possible for a user to have PDF Support without OCR Support.
• More details in the External App section of the Database Administrator.
• A non-file owner can now checkout/update a file without having to set "View/Edit" specifically first if that user has "Insert Files" permissions set in their profile. This allows users to checkout files without the owner having to specify they may do so. The file owner may prevent checkout by setting "View Only" on the file.
• A non-file owner cannot delete or move the file even if "View/Edit" is set. This prevents someone with "View/Edit" rights from moving or deleting a file, something only the file owner or an admin should be able to do.
• Category Tree folder icons are now links also.
• Fixed javascript errors on the form versions of the category tree.
• Modified the login utility to help prevent sql injection during login.
• Modified the useradmin utility to disallow invalid characters in the login name.
• You can no longer select a category as its own parent in the Move utility.
• Prevent DocMGR from crashing if a category is somehow owned by itself.
• Cleaned up PHP notices during indexing. There are still some left.
• DocMGR now displays correct character sets for the different language files in the HTML header.
• Fixed some serious user permissions errors in the user and group admin. One bug allowed a user to specify another user in the url. Another allowed a user with "Manage Users" permissions to create a group with Administrative properties, and then assign themself to it. The user could also assign Administrative rights to a non-admin user.
• Images smaller than thumbnails are not enlarged. Also, thumbnails of very wide and short images now display correctly.
• Checkin and Checkout options now display correctly for non-administrative users.
• Rights are correctly assigned to a category if the category is created by a non-administrative user during a mass file import.
• Index entries are now removed when a file is deleted.
• Fixed creation/editing errors if a ' is in the Category names
• In File Properties, "Checked Out By" now correctly shows the login of the user that checked out the file.
• New topics in the discussion would error if there was a ' in the topic name
• Unchecking a group in a user's properties now removes the group like it's supposed to.
• Break returns now removed from indexed content
• Fixed many of the php notices occuring during indexing
• Fixed a problem causing errors to be displayed in an account with the same login already exists.
• Fixed files not being indexed or thumbnailed when added to the system via WebDAV.
• It is no longer possible to create two groups with the same name.
• Uploaded files and new categories now inherit their parent category's permissions by default.
• Fix a query error when a user logs off
• Login form is now translated.
• Administrative text options in the User Admin are now translated.
• Fixed an error copying files into DocMGR via WebDAV.
• Fixed Categories not getting a date when created from an import.
• Fixed thumbnails not being created during an import.
• Fixed a view creation error in the upgrade.php script.
• Fixed undefined errors for SITE_DOMAIN, SITE_PATH, and UPLOAD_MAX. The first two are defines used for the developement platform, and are not needed by the DocMGR app. The latter is leftover from 0.47.
• The Upload Files tab now does not appear in the top level category. Files are not allowed to be uploaded here, and are placed in the Unassigned Category if it is attempted. Removal of the tab here should help with some confusion.

Version 0.48a Changelog (10-28-2004)

• Just one change. This fixes the sql error when viewing previous revisions of a file in the file history. Anyone who is upgrading from 0.48 can simply copy the modules/file/history/process.php file from the new release to the same directory in their 0.48 release. Thanks to "bonip" for pointing this out.

Version 0.48 Changelog (10-22-2004)

• Added boolean searching capability for files. Tsearch2 users have nested boolean query capability, while non-tsearch2 users have basic boolean capability. Currently, the terms "AND", "OR", and "NOT" are suported. This will probably need some more fine tuning as we go.
• Added support for Text File thumbnails via the enscript utility. The presence of this program is auto-detected by DocMGR
• Fixed a problem with Logouts not working
• Fixed a problem with php's imap capability not being properly detected
• Fixed duplicate categories showing in a tree when multiple groups are assigned to a category, and a non-adminstrative user has multiple groups assigned to them as well. Thanks to Robert Schouwenburg for pointing this out and providing a fix in the forums.
• Removed the UPLOAD_MAX parameter from the config.inc.php file. After more research, I realized ini_set does not affect post_max_size and upload_max_size parameters. These need to be set in the php.ini file. Oops...
• Improved thumbnail creation for images for better quality thumbnails

Version 0.47 Changelog (09-13-2004)

• Support for OCRing multiple pages simultaneously within a PDF or MTIFF
• Added ability to change language on the fly
• Removed database module language translation requirement
• Fixed a tsearch2 word length problem when an indexed file contains more than 2k of consecutive blank spaces
• Added a thumbnail view with support for pictures and pdf files (more coming)
• Rewrote the file browsing tree to use less javascript code
• Reorganized the file indexing functions
• Rewrote webdav module to utilize Pear WEBDAV Backend. Now striving for litmus compatibility (not there yet, but close)
• Added automatic docmgr configuration for external applications. DocMGR will now automatically determine what files it can index, if it can produce thumbnails, and if it can email files based on the availibility of external binaries and compile-time php options
• Encapsulated PDFs may now be indexed
• Recognized file formats are stored in extensions.xml for easier editing
• The date format may now be changed (supports dd/mm/yyyy)
• Other various code cleanups and bugfixes that I can't remember at the moment

Version 0.46 Changelog

Problems Resolved/Features Added

Fixed non-tsearch2 searches for non-admin users

Added regexp option back to config file so non-tsearch2 users can decide what type of content can be indexed.

Fixed a spacing issue on the category browse tree

Fixed a timeout issue for file imports

Changing a category's permissions now defaults to changing the permissions of all child objects on that category. This can still be prevented by unchecking the corresponding checkbox.

Fixed page not returning to post list after starting a new discussion thread for a file

Imported categories now have a modified date assigned to them

Fixed a date range problem for searches where files created on the last date of a period search were not being returned in the results.

Files Altered:
modules/common/file_process.inc.php		added use of REGEXP_OPTION on line 18
include/config.inc.php		added REGEXP_OPTION with "[:alpha:]" as default
modules/common/cat_function.inc.php		took out one "nbsp;" on line 136 to fix browse tree spacing issue.
modules/common/search_function.inc.php		Several search-related fixes
modules/common/import_process.inc.php		moved the ini_set function for php processing timeouts. It wasn't doing any good at it's original location
modules/admin/catadmin/display.php		Changed default "Reset Permissions on child objects" to checked.
modules/file/discussion/display.php & process.php		set pageAction to "list" after creating a post, and display accordingly
include/file_function.inc.php		added current time to category insert statement in recursiveDirCreate function

Version 0.45 Changelog

Problems Resolved/Features Added

Added multiple language support.

Added Tsearch2 fulltext indexing support.

Removed register_globals dependency.

Reworked docmgr indexing system for non-tsearch2 users for faster searches.

Indexing may now be performed periodically via a script, instead of during file import/upload.

Added wildcards/partial matches to searches.

Improved search result navigational toolbar.

Style sheets are now linked instead of directly included in the code for faster page rendering.

Fixed file import utility issues.

Removed mod_rewrite dependency for webdav.

Resolved tab character indexing problem

Numerous other bugfixes and code cleanups I ran into along the way.

Files Altered

All Of Them!!!

Version 0.44 Changelog

Problems Resolved

Resolved Microsoft Word Document indexing problem.

Added status bars to all newly opened windows to allow for more easier file upload process tracking.

Fixed upload links using javascript, which in turns fixed window refresh problems

Files Altered
modules/browse/display.php		all new windows open with status bar
modules/browse/process.php		changed javascript in file function links (upload, etc)
modules/find/display.php		all new windows open with status bar
modules/find/process.php		changed javascript in file function links (upload, etc)
modules/file/update/display.php		removed all lines that contain MAX_UPLOAD
modules/left_column/search/display.php		fixed space that shows up under form in IE
		removed ":" from title
modules/left_column/messages/display.php		removed ":" from title
theme/default.inc.php		set left column and section headers to bold font
modules/common/file_process.inc.php		changed file indexer to use tr instead of sed when pulling
		initial text from file. Should fix .doc indexing problems
include/config.inc.php		changed default keepIndex variable to use [:alnum:] to work with TR
modules/admin/display.php		set database statistics to display by default when page is opened

Version 0.43 - 11-25-2003

Fixed several issues with discussions

Fixed problem browsing categories if default page is set to "search"

Simplified PDF indexing function

Set option for max upload file size in config file

Version 0.42a - 11-20-2003

Fixes two bugs with file checkin and checkout which were pointed out to me. Thanks for your help, Peter.

Fix for the wrong access permissions for the import and upload module. Thanks for pointing this out Steffen.

Version 0.42 - 11-17-2003

New look for DocMGR. Should allow for more intuitive file manipulation (uploading,altering,etc).

Modified search functions and file information indexing to allow for more accurate search results. Now all information is stored in the dm_wordlink table. The more times a word is found (like in the filename, summary, or content) the higher on the return list the result is placed.

Uploading now takes place from the file browser.

Category creation/alteration takes place in the file browser.

File and category functions (Properties, Check In/Out, Email, etc) now take place in the file browser.

You may email files to any valid email address.

User permissions fixes/modifications.

Too many other changes to list. The above are the major ones.

Version .41 Final - 08-05-2003

Fixed an account creation problem. Those upgrading will need to run the update.php script.

Modified/fixed the search feature. Search Results are now grouped into pages.

Added the ability to email a file to an email address.

Added recursive directory import. You can now import an entire directory into the system from the import tool.

From the Find tool, you may now perform certain functions such as "Move Category" and "File Delete" from the Find tool.

WebDAV support. This is at alpha-level functionality. It doesn't work wonderfully, and is included more as something for the users to play with. It does work with Microsoft's Web Folders client. Some known issues are as follows: 1) It pretty much only works with Microsoft Web Folders (that's the one that I've tried, and I know it doesn't work with the linux webdav client). 2) You can drag files into and out of the folder, but you can't open a file directly in the folder and save from the application. 3) File locking does not work, but dragging a file into the folder will cause a new version to be created if the file already exists.

Various other permissions fixes and random bugfixes that I ran into.

Version .40 Final - 05-10-2003

You can now enter comments for a file without getting the "user_id" error.

Some people were having to set Administrative priveledges for users to be able to access any files. That has been fixed.

The correct default password is now in the docmgr.pgsql file