xwiki-devs August 2009

xwiki-devs@xwiki.org

41 participants
141 discussions

[xwiki-devs] Fwd: [Fwd: XWiki: change summary is required for announcements [08aecb6d641]]

by Vincent Massol

Seems like we have to change how we publish releases on freshmeat. -Vincent Begin forwarded message: > From: Ludovic Dubost <ludovic(a)xwiki.com> > Date: August 14, 2009 12:58:44 PM CEDT > To: Vincent Massol <vincent(a)xwiki.com> > Subject: [Fwd: XWiki: change summary is required for announcements > [08aecb6d641]] > > > -- > Ludovic Dubost > Blog: http://blog.ludovic.org/ > XWiki: http://www.xwiki.com > Skype: ldubost GTalk: ldubost > > > From: "freshmeat.net ticketing" <tickets(a)freshmeat.net> > Date: August 14, 2009 11:47:49 AM CEDT > To: undisclosed-recipients:; > Subject: XWiki: change summary is required for announcements > [08aecb6d641] > > > // Add your reply above here > > = > = > = > = > = > = > = > = > = > = > ====================================================================== > > danielpearson created this ticket on 2009-08-14 09:47:49 UTC > > A message telling readers to read the release notes is not > acceptable input into > the "Changes" field of a release announcement. Such a statement > literally goes > without saying. This field must contain a summary of the changes > made in the > release. We cannot approve this release announcement until you reply > with such a > summary. > > = > = > = > = > = > = > = > = > = > = > ====================================================================== > > State: Open > Assigned to: danielpearson > Due: 2009-08-21 > View this ticket online: > http://freshmeat.net/projects/xwiki/tickets/08aecb6d641 > View the associated project: > http://freshmeat.net/projects/xwiki

15 years, 2 months

[xwiki-devs] [Proposal] XWiki 2.0 Skin Name

by Ecaterina Valica

Hi, The new XWiki 2.0 Skin must have a name, more specific a bird name ( http://dev.xwiki.org/xwiki/bin/view/Community/DevelopmentPractices#HUsingbi…). The current proposal of the skin can be found at http://incubator.myxwiki.org/xwiki/bin/view/Improvements/Skin20P1 The current skin names we have are: albatross, dodo, finch, toucan. There are already some proposals: dove, colibri, sparrow, etc. Help us vote and find a suitable name, Caty

15 years, 2 months

[xwiki-devs] [ANN] XWiki Enterprise 2.0 Milestone 3 released

by Thomas Mortagne

The XWiki development team is pleased to announce the release of XWiki Enterprise 2.0 Milestone 3. Go grab it at http://www.xwiki.org/xwiki/bin/view/Main/Download This is the third and last milestone for the 2.0 version. The main goal of 2.0 is to make XWiki fully XWiki 2.0 syntax. Main changes from 2.0 Milestone 2: * Lots of improvements and new features in the new WYSIWYG editor * Lots of improvements and bugfixes in the rendering engine and the syntax converter * Upgrade to SmartGWT 1.2 * New experimental network event distribution module * Several blog application improvements * Several tags application bug fixes * Translations updated for de, fr, lv, nl, ru For more information see the Release notes at: http://www.xwiki.org/xwiki/bin/view/Main/ReleaseNotesXWikiEnterprise20M3 Thanks -The XWiki dev team

15 years, 2 months

Re: [xwiki-devs] [curriki-devs] [Fwd: Introducing the equation rendering component and the equation macro]

by Paul Libbrecht

I hadn't seen the whole of this mail, sorry for the late reply, Le 12-août-09 à 09:30, Ludovic Dubost a écrit : > Q: Does anybody know of any security issues with running latex, > dvips or > convert? you may add a warning in the readme about usage of convert, I have seen very many "arbitrary code execution" exploits reported about image file formats (libpng and libjpeg among others): keep your libraries and imagemagick (convert is part of that) up-to-date. > Especially with the \openin and \openout commands? I am not sure I know the dangers there... it should certainly be advised to run all that as www daemon! > - one which uses MathTran as a remote service through HTTP requests. > It > gives results as good as the native one, enhanced with some metadata, > and depending on the configuration of the server, it might have better > performance than the native one. The disadvantage is that it relies > heavily on a remote server. Note that MathTran is free software, and > can > be installed locally on the same or a neighboring server. MathTran is, by far, much better performing. Moreover, the infrastructure used has proven to be able to solve the baseline stuffs, for this, one needs the pictures to be delivered from the same server so that the javascript reads the PNG headers(!). Note that the option of TeX compilation that MathTran needs seems shipped for everyone although J Fine said it was not. If you are caching, it would make the remote problem almost trivial. > Oh, another minor problem is that it uses a variant of the TeX > syntax, not LaTeX. that is the major issue probably. Note that people will request very soon their own set of macros (e.g AMStex) > > - one which uses SnuggleTeX and JEuclid to transform LaTeX into > MathML, > and then render it into images. The results are not as eye-pleasing as > those obtained from LaTeX, but it is a self-contained solution, with > no > external dependencies. > > SnuggleTeX uses the liberal 3-clause BSD license, JEuclid uses the > Apache v2 license, so both can be deployed. Together, they weight in > at > 730k, so it's not a big impact. The other two implementations are not > contaminated by the licenses of the underlying system, so there's no > license conflict. > > Q: Should either one be removed? > > Q: Do you know of any other (better) alternative? I would document how to implement another one. MathFlow of Design Science can do this (a subset called "webTeX", it is commercial but not too expensive. > > Q: Is this setup OK as the default one? (native by default, snuggletex > as fallback). and mathtran only optional? > The generated images are stored in a cache (using the cache > component), > for improved performance. This new cache might increase the memory > requirements, but fortunately it is easy to configure. is it not disk based? paul

15 years, 2 months

[xwiki-devs] Contributing to dutch translation

by Henk Schouten

Hello, I have a few questions about how to contribute to the dutch application_resource file. Yesterday I have added some translations to the dutch translation of the XE resources at the I10n.wiki.org site. Is there any documentation about this site? I am unsure about what some functions do and the effects they may have on others. For instance the link 'Import/reimport default language file', Admin actions like 'Import' and 'Prepare'. Also I noticed that when I get the dutch translation as a application resource file, it only has the resources filled in if a dutch translation exists. This seems logical, but as long as not all strings have a dutch translation, my xwiki contains lots of empty strings. Is there a way to build a resource file with dutch translations where available, and the default english strings when not? Another thing that is not clear to me is the functionality around reviewing and validation. If I find a translation that is incorrect of I thing there is a better one, can I just change it, or should I somehow make a review request to somebody authorized to accept or reject the change? Is there any way to know who is contributing to the same translation in order to achieve some common ideas about how to translate xwiki terms? Thanks, Henk -- == Henk F. Schouten, ICT-architect, Dienst ICT room: SL 2.32, phone (31) 70 4457611, email: H.F.Schouten(a)hhs.nl De Haagse Hogeschool, Johanna Westerdijkplein 75, 2521 EN the Hague (NL)

15 years, 2 months

Re: [xwiki-devs] [xwiki-users] Contributing to dutch translation

by Vincent Massol

On Aug 13, 2009, at 3:52 PM, Henk Schouten wrote: > > Hello, > > I have a few questions about how to contribute to the dutch > application_resource file. > Yesterday I have added some translations to the dutch translation of > the > XE resources > at the I10n.wiki.org site. Yes that's very cool thanks! :) We've already applied them and they'll be in today's release of XE 2.0M3 Thanks -Vincent > Is there any documentation about this site? I > am unsure about > what some functions do and the effects they may have on others. For > instance the link > 'Import/reimport default language file', Admin actions like 'Import' > and > 'Prepare'. Also > I noticed that when I get the dutch translation as a application > resource file, it only has > the resources filled in if a dutch translation exists. This seems > logical, but as long as not > all strings have a dutch translation, my xwiki contains lots of empty > strings. Is there a > way to build a resource file with dutch translations where available, > and the default > english strings when not? Another thing that is not clear to me is the > functionality around > reviewing and validation. If I find a translation that is incorrect > of I > thing there is a better > one, can I just change it, or should I somehow make a review request > to > somebody > authorized to accept or reject the change? Is there any way to know > who > is contributing > to the same translation in order to achieve some common ideas about > how > to translate > xwiki terms? > > Thanks, > Henk

15 years, 2 months

[xwiki-devs] [VOTE] Release XWiki Enterprise 2.0M3

by Thomas Mortagne

Hi devs, I would like to release XWiki Enterprise 2.0M3. It's the last milestone release for 2.0 before starting the RC process. 36 jira as been closed for this release. Among others things it introduce network event distribution system, footnote macro and light XHTML renderer. See http://www.xwiki.org/xwiki/bin/view/Main/ReleaseNotesXWikiEnterprise20M3 for more. Here is my +1 -- Thomas Mortagne

15 years, 2 months

[xwiki-devs] Feed Plugin Patch for the Blog

by Andreas Schaefer

Hi I attached a patch to this JIRA report that fixes various issues around the feed plugin when used within the Blog application: http://jira.xwiki.org/jira/browse/XWIKI-4158 It does not fix all the issues but the ones releated to the Blog application within the Feed plugin. Cheers Andreas Schaefer

15 years, 2 months

[xwiki-devs] totally groovy! (using groovy SSH script to securely launch unix processes out of Xwiki)

by Niels Mayer

This might be useful for those wanting to do server administration functions (start/stop tomcat, reboot, stats, etc) out of an Xwiki doc (make sure your doc is password protected or more, if it allows people to reboot your server!; Anything needing root or tomcat user would use /etc/sudoers to grant specfic permissions to specific programs needed by user tomcat-ssh-slave): Input: > ==== Use Groovy Script run server processes and display result ==== > See [[SshHelperClass?viewer=code]], [[ > http://blog.asyd.net/2008/12/xwiki-cest-decidemment-magique/]] > ==== Call parseGroovyFromPage("Groovy.SshHelperClass") ==== {{velocity}} #set( $sshHelper = $xwiki.parseGroovyFromPage("Groovy.SshHelperClass") ) $sshHelper.openSession("127.0.0.1", "22", "tomcat-ssh-slave", > "/usr/share/tomcat6/.ssh/id_dsa", "") {{/velocity}} > ==== Output from 'uname -a'==== ##{{velocity}}$sshHelper.runCommand("uname -a"){{/velocity}}## > ==== Output from 'free' ==== ##{{velocity}}$sshHelper.runCommand("free"){{/velocity}}## > ==== Output from 'ps -l U tomcat-ssh-slave U tomcat U apache' ==== ##{{velocity}}$sshHelper.runCommand("ps -l h U tomcat-ssh-slave U tomcat U > apache"){{/velocity}}## > ==== Output from 'df -H' ==== ##{{velocity}}$sshHelper.runCommand("df -H"){{/velocity}}## > ==== Output from 'top -b -n 1' ==== ##{{velocity}}$sshHelper.runCommand("top -b -n 1"){{/velocity}}## > ==== Close the connection and exit tomcat-ssh-slave shell ==== warning: if something breaks above, hopefully this will get called otherwise > we get a left-over sub-process tomcat-ssh-slave ##{{velocity}}$sshHelper.close(){{/velocity}}## Output: > Use Groovy Script run server processes and display result > > See SshHelperClass , >> http://blog.asyd.net/2008/12/xwiki-cest-decidemment-magique/ > > *Call parseGroovyFromPage("Groovy.SshHelperClass")* > > *Output from 'uname -a'* > > Linux ce 2.6.27.29-170.2.78.fc10.x86_64 #1 SMP Fri Jul 31 04:16:20 EDT >> 2009 x86_64 x86_64 x86_64 GNU/Linux > > *Output from 'free'* > > total used free shared buffers cached > > Mem: 1928992 1778932 150060 0 47272 532128 > > -/+ buffers/cache: 1199532 729460 > > Swap: 3866616 78776 3787840 > > *Output from 'ps -l U tomcat-ssh-slave U tomcat U apache'* > > 5 S 92 18792 18788 0 80 0 - 22060 select ? 0:00 sshd: >> tomcat-ssh-slave@notty > > 0 R 92 18879 18792 1 80 0 - 22453 - ? 0:00 ps -l h U tomcatssh-slave U >> tomcat U apache > > 0 S 91 31695 1 0 80 0 - 463955 futex_ ? 7:47 /usr/java/default/bin/java >> -server -Xms160m -Xmx1024m -XX:PermSize=160m -XX:MaxPermSize=320m ... > > *Output from 'df -H'* > > Filesystem Size Used Avail Use% Mounted on > > /dev/mapper/VolGroup00-LogVol00 242G 26G 204G 12% / > > /dev/sda1 200M 15M 175M 8% /boot > > tmpfs 988M 353k 988M 1% /dev/shm > > *Output from 'top -b -n 1'* > > top - 11:17:20 up 2 days, 16:21, 3 users, load average: 0.78, 0.68, 0.56 > > Tasks: 150 total, 2 running, 148 sleeping, 0 stopped, 0 zombie > > Cpu(s): 7.7%us, 1.7%sy, 0.0%ni, 90.2%id, 0.3%wa, 0.1%hi, 0.1%si, 0.0%st > > Mem: 1928992k total, 1794420k used, 134572k free, 47304k buffers > > Swap: 3866616k total, 78776k used, 3787840k free, 532356k cached > > ... > > Special Installation Instructions To make this run (Fedora Linux): 1. sudo yum install trilead-ssh2 trilead-ssh2-javadoc 2. sudo ln -s /usr/share/java/trilead-ssh2-213.jar /usr/share/java/tomcat6/trilead-ssh2.jar 3. Make sure "tomcat" user exists in /etc/passwd, and create an additional uid=92 gid=92 account "tomcat-ssh-slave": • tomcat:x:91:91:Apache Tomcat:/usr/share/tomcat6:/bin/sh ° "tomcat" user created as "disabled" by installing tomcat6-6.0.18-6.2.fc10 • tomcat-ssh-slave:x:92:92:User for SSH Subprocesses From Tomcat:/home/tomcat-ssh-slave:/bin/bash ° create this using fedora admin utility 'system-config-users' or by hand-editing /etc/passwd... 4. sudo passwd -u tomcat • unlock tomcat account temporarily 5. sudo passwd tomcat • set password for tomcat account 6. Login to "tomcat" account using SSH from current account terminal. 7. ssh-keygen -t dsa • Leave "empty for no passphrase" for decrypting the DSA-key produced by ssh-keygen, although it can be specified as last parameter for sshHelper.openSession("localhost", "22", "tomcat-ssh-slave", "/usr/share/tomcat6/.ssh/id_dsa", ""). 8. From the "tomcat" account, run "ssh tomcat-ssh-slave(a)127.0.0.1" • answer Yes: "Are you sure you want to continue connecting (yes/no)? yes" • enter password for tomcat-ssh-slave set above via system-config-users. • exit the connection. • The purpose of this step is to test the account, and init /usr/share/tomcat6/.ssh/known_hosts 9. sudo cp /usr/share/tomcat6/.ssh/id_dsa.pub tomcat-ssh-slave/.ssh/authorized_keys 10. From the "tomcat" account, do "ssh tomcat-ssh-slave(a)127.0.0.1" again • verify that login happens w/o password prompt, which is what happens when authorized_keys is set to the public key of the account accessing SSH. • exit from tomcat-ssh-slave account. It's now ready to run out of tomcat. 11. passwd -l tomcat • lock the tomcat account from further logins, now that it's been setup and the dsa public/private keys have been generated. 1. *TODO:* remove password from user tomcat-ssh-slave ('!!' in passwd field of /etc/shadow) password not needed for login 2. *TODO:* alternately, is there a local customization to ensure certs only used for login to the account? I know this can be done globally in /etc/ssh/sshd_config: "PasswordAuthentication no" and "PermitEmptyPasswords no" 3. *TODO:* for user tomcat-ssh-slave, integrate "limited command processing" by replacing /bin/sh as login shell with /usr/local/bin/tomcat-ssh-shell (or equiv): #!/bin/sh -noprofile ############################################################################### # # File: sshslave-shell # RCS: $Header: $ # Description: Shell to allow execution of remote commands from a tomcat server. # For security purposes, this "login" is limited in commands it can # perform, and runs as a separate user from the tomcat server, separating # the ability to directly modify tomcat state from the functionality provided # by user tomcat-ssh-slave. This shell is run as the "login shell" (via # /etc/passwd) for account tomcat-ssh-slave, which is accessed via SSH. # The account is preferably a nonprivileged user account with pid>500, Home # directory /home/tomcat-ssh-slave must exist, with correct permisssions. # /home/tomcat-ssh-slave contains scripts referred to via fully qualified # filenames in this script. The directory would also store the accounts' # .ssh settings, keys, etc. Secure, password-less access to the tomcat-ssh-slave # account can be achieved by having tomcat's SSH public identity /usr/share/tomcat6/.ssh/id_dsa.pub # installed as /home/tomcat-ssh-slave/.ssh/authorized_keys (and keeping id_dsa secret) # This would prevent use of tomcat-ssh-slave "account" from being used by anything # other than preauthorized accounts. # # Here's some example commands: # # ssh -x tomcat-ssh-slave(a)127.0.0.1 cleanlog # ssh -x tomcat-ssh-slave(a)127.0.0.1 getlog # ssh -x tomcat-ssh-slave(a)127.0.0.1 setdbglvl 'INFO' # ssh -x tomcat-ssh-slave(a)127.0.0.1 getdbglvl # ssh -x tomcat-ssh-slave(a)127.0.0.1 tomcat-restart # ssh -x tomcat-ssh-slave(a)127.0.0.1 apache-restart # ssh -x tomcat-ssh-slave(a)127.0.0.1 tomcat-start # ssh -x tomcat-ssh-slave(a)127.0.0.1 apache-start # ssh -x tomcat-ssh-slave(a)127.0.0.1 top # ssh -x tomcat-ssh-slave(a)127.0.0.1 ps # ssh -x tomcat-ssh-slave(a)127.0.0.1 df # ssh -x tomcat-ssh-slave(a)127.0.0.1 free # ssh -x tomcat-ssh-slave(a)127.0.0.1 reboot # Author: Niels P. Mayer # Created: Monday 8/10/2009 # Modified: # Language: Shell-script # Package: N/A # Status: Production # # (C) Copyright 2009, Niels Mayer, all rights reserved. # ############################################################################### # make sure nothing funny goes on PATH="/bin:/usr/bin" # make sure they rsh or ssh in with a single command if [ -z "$1" ] || [ "$1" != "-c" ] then echo You must use ssh -c to access this account exit 1 else shift SSHSLAVE_COMMAND="$@" fi # only let them run specific commands, eg. # ssh -x tomcat-ssh-slave(a)127.0.0.1 cleanlog # ssh -x tomcat-ssh-slave(a)127.0.0.1 getlog # ssh -x tomcat-ssh-slave(a)127.0.0.1 setdbglvl 'INFO' # ssh -x tomcat-ssh-slave(a)127.0.0.1 getdbglvl # ssh -x tomcat-ssh-slave(a)127.0.0.1 tomcat-restart # ssh -x tomcat-ssh-slave(a)127.0.0.1 apache-restart # ssh -x tomcat-ssh-slave(a)127.0.0.1 tomcat-start # ssh -x tomcat-ssh-slave(a)127.0.0.1 apache-start # ssh -x tomcat-ssh-slave(a)127.0.0.1 top # ssh -x tomcat-ssh-slave(a)127.0.0.1 ps # ssh -x tomcat-ssh-slave(a)127.0.0.1 df # ssh -x tomcat-ssh-slave(a)127.0.0.1 free # ssh -x tomcat-ssh-slave(a)127.0.0.1 reboot case ${SSHSLAVE_COMMAND} in cleanlog \ getlog \ getdbglvl \ tomcat-restart \ apache-restart \ tomcat-start \ apache-start \ top \ ps \ df \ free \ reboot \ ) #single argument commands -- exact match to SSHSLAVE_COMMAND exec "/home/tomcat-ssh-slave/${SSHSLAVE_COMMAND}" ;; setdbglvl* \ #e.g., setdbglvl 'INFO' ... multiple argument command. Beware command injection. ) exec `echo "/home/tomcat-ssh-slave/${SSHSLAVE_COMMAND}" | cut -f1 -d" "` `echo "${SSHSLAVE_COMMAND}" | cut -f2- -d" "` ;; * ) exec echo You are not authorized to do that. ;; esac Niels http://nielsmayer.com

15 years, 2 months

[xwiki-devs] Failed the start Generic Installer XWiki as of Today

by Andreas Schaefer

Hi I just checked out platform (core SVN revision: 22631) and enterprise, built it and installed the Generic installer XWiki. While starting it up I saw this exception: 2009-08-12 12:37:34.565::WARN: Failed startup of context org.mortbay.jetty.webapp.WebAppContext@4d88a387{/xwiki,/Users/schaefa/Development/xwiki/installations/xwiki.20090812/jetty/../webapps/xwiki} java.lang.NullPointerException at org.xwiki.observation.remote.internal.DefaultRemoteObservationManagerContext.isRemoteState(DefaultRemoteObservationManagerContext.java:36) at org.xwiki.observation.remote.internal.jgroups.JGroupsRemoteObservationManager.notify(JGroupsRemoteObservationManager.java:150) at org.xwiki.observation.remote.internal.LocalEventListener.onEvent(LocalEventListener.java:115) at org.xwiki.observation.internal.DefaultObservationManager.notify(DefaultObservationManager.java:248) at org.xwiki.observation.internal.DefaultObservationManager.notify(DefaultObservationManager.java:229) at org.xwiki.observation.internal.DefaultObservationManager.notify(DefaultObservationManager.java:264) at org.xwiki.container.servlet.XWikiServletContextListener.contextInitialized(XWikiServletContextListener.java:77) at org.mortbay.jetty.handler.ContextHandler.startContext(ContextHandler.java:548) at org.mortbay.jetty.servlet.Context.startContext(Context.java:136) at org.mortbay.jetty.webapp.WebAppContext.startContext(WebAppContext.java:1239) at org.mortbay.jetty.handler.ContextHandler.doStart(ContextHandler.java:517) at org.mortbay.jetty.webapp.WebAppContext.doStart(WebAppContext.java:466) at org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50) at org.mortbay.jetty.handler.HandlerCollection.doStart(HandlerCollection.java:152) at org.mortbay.jetty.handler.ContextHandlerCollection.doStart(ContextHandlerCollection.java:156) at org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50) at org.mortbay.jetty.handler.HandlerCollection.doStart(HandlerCollection.java:152) at org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50) at org.mortbay.jetty.handler.HandlerWrapper.doStart(HandlerWrapper.java:130) at org.mortbay.jetty.Server.doStart(Server.java:224) at org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50) at org.mortbay.xml.XmlConfiguration.main(XmlConfiguration.java:985) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.mortbay.start.Main.invokeMain(Main.java:194) at org.mortbay.start.Main.start(Main.java:523) at org.mortbay.start.Main.main(Main.java:119) Can't figure out what is wrong but it seems to be an issue with the Execution not be set on the DefaultRemoteObservationManagerContext or the Execution.getContext() returns null. Cheers Andreas Schaefer

15 years, 2 months

← Newer
1
...
6
7
8
9
10
11
12
...
15
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

xwiki-devs August 2009