Releases: scpwiki/ozoneframework
2.0.0
The 2.0.0 release significantly breaks backwards compatibility with Wikidot as that package has been renamed to Wikijump, and this release follows in its conventions of using the WIKIJUMP_ROOT constant. The docblocks have been removed and replaced with a LICENSE file, Docblocks may be re-added in a future release.
1.1.0
This release, the first minor release increment, solves a number of issues:
- Uses new session keys to avoid an identified collision attack vector.
- Adds new functionality to create cookies that conform to the SameSite standard, allowing for successful session authentication on custom domains.
- Removes a potential vector for evading IP bans.
- Fixes a number of smaller bugs.
After you apply this update, your existing sessions may be invalidated and you will need to log in again. You may also wish to generate new values in your wikidot.ini file, though they are not strictly required:
secret_login_seed(string, [security]): Used to create hashes related to sessions. Defaults tosecret+"_login"cookie_name_ssl(string, [session]): Used to name the cookie delivered over SSL. Defaults tocookie_name+"_SECURE"
1.0.3
This version replaces the calls to smarty/smarty with calls to scpwiki/smarty as PHP5-style dereferencing is used throughout the templates and is not supported in smarty/smarty.
1.0.2
This release fixes some include paths that were still set to the legacy lib directory to go to vendor instead.
1.0.1
This version fixes a fatal as it requires a library that has been moved into a vendor package instead of the legacy location of lib/.
1.0.0
This release is to decouple third-party libs previously existing in the /lib directory in the Wikidot root to composer-compatible packages. There are significant changes made to this package from the stock version of ozone included in the wikidot.org version, primarily to make it run on PHP 7.4.