forked from GNUsocial/gnu-social
0841fa712e
Basic splitting/validation code submitted via http://status.net/wiki/XMPP/JID_validation -- Copyright 2009 Patrick Georgi <patrick@georgi-clan.de> Licensed under ISC-L, which is compatible with everything else that keeps the copyright notice intact. Added PEAR Net_IDNA package to extlib to handle IDN normalization (also used by Validate's email verifier if present). * added test suite, supplemented my own test cases with JID validation and normalization test cases from libpurple * follows XMPP rules for validation of name part * fixes for normalization with non-ASCII names * will do domain checks if $config['email']['check_domain'] is on, checking for an XMPP-server SRV record or any lookup. (We don't actually need to ping those direct though.) * some more obscure stringprep validation rules aren't quite followed yet, but we err on the side of permissiveness. * we still don't actually let you save your address with a resource on it, as we strip resources when looking up users who've sent us presence or message updates. I would recommend saving the outgoing resource as a separate field if/when we add that..? |
||
|---|---|---|
| .. | ||
| Auth | ||
| Console | ||
| DB | ||
| htmLawed | ||
| HTTP | ||
| libomb | ||
| MIME | ||
| Net | ||
| PEAR | ||
| php-gettext | ||
| Services | ||
| Stomp | ||
| System | ||
| XMPPHP | ||
| Apache2.0.txt | ||
| DB.php | ||
| get_temp_dir.php | ||
| gpl-2.0.txt | ||
| lgpl-2.1.txt | ||
| Mail.php | ||
| markdown.php | ||
| OAuth_LICENSE.txt | ||
| OAuth.php | ||
| PEAR.php | ||
| PHP_License_2_02.txt | ||
| PHP_License_3.01.txt | ||
| PHP_Markdown_License.text | ||
| README | ||
| Stomp.php | ||
| Validate.php | ||
DO NOT "FIX" CODE IN THIS DIRECTORY. ONLY UPSTREAM VERSIONS OF SOFTWARE GO IN THIS DIRECTORY. This directory is provided as a courtesy to our users who might be unable or unwilling to find and install libraries we depend on. If we "fix" software in this directory, we hamstring users who do the right thing and keep a single version of upstream libraries in a system-wide library. We introduce subtle and maddening bugs where our code is "accidentally" using the "wrong" library version. We may unwittingly interfere with other software that depends on the canonical release versions of those same libraries! Forking upstream software for trivial reasons makes us bad citizens in the Open Source community and adds unnecessary heartache for our users. Don't make us "that" project. FAQ: Q: What should we do when we find a bug in upstream software? A: First and foremost, REPORT THE BUG, and if possible send in a patch. Watch for a release of the upstream software and integrate with it when it's released. In the meantime, work around the bug, if at all possible. Usually, it's quite possible, if slightly harder or less efficient. Q: What if the bug can't be worked around? A: If the upstream developers have accepted a bug patch, it's undesirable but acceptable to apply that patch to the library in the extlib dir. Ideally, use a release version for upstream or a version control system snapshot. Note that this is a last resort. Q: What if upstream is unresponsive or won't accept a patch? A: Try again. Q: I tried again, and upstream is still unresponsive and nobody's checked on my patch. Now what? A: If the upstream project is moribund and there's a way to adopt it, propose having the StatusNet dev team adopt the project. Or, adopt it yourself. Q: What if there's no upstream authority and it can't be adopted? A: Then we fork it. Make a new name and a new version. Include it in lib/ instead of extlib/, and use the StatusNet_* prefix to change the namespace to avoid collisions. This is a last resort; consult with the rest of the dev group before taking this radical step.