What about a Serendipity bar camp?

Serendipity v1.1 has just been released, v1.2 is on it's way, and we meet almost every day (in the blog, board, wiki) to share our thoughts on new features and adding new tools... but we only do it "virtually". Isn't it about time we have a "real" meeting?

I'd like to get some feedback what you (the s9y community) think about having a s9y camp in the fall (Autumn) of 2007?

s9yCamp would be like a BarCamp (Link: http://en.wikipedia.org/wiki/Barcamp). In BarCamps, people meet and give "spontaneous" lectures, workshops, discussions, etc. Isn't that something?

There are a lot of topics the developers, template designers, and users of s9y could share. Exchanging ideas on new plugins, swapping code snippets, customizing themes, thoughts on usability and accessibility ... and along the way meeting the faces connected with board messages and blog entries. The latter might very well be the most interesting part of the meeting.

So, this is just a call for feedback. What do you think about it? Which topic would you be interested in? Would you like to join in?

The feedback determines if and what happens next.

Also important: choosing a place. There is an invitation to meet in Vienna, but other proposals for cities (and organizers) are welcome.

So, please share you thoughts on this. At this point, this is all about approval, things to consider, ideas, questions, etc. - but most of all, this is about finding out whether the community would be interested in an s9y camp at all.

You can comment below this posting or in the board (http://board.s9y.org/viewtopic.php?t=8264 (german language thread) http://board.s9y.org/viewtopic.php?t=8288 (english language thread)

The German lanaguage version of this entry follows: Continue reading "What about a Serendipity bar camp?"

Serendipity 1.1: Login/Session Cookie Bug in Windows IIS

Some users have reported on the forums that they had login problems to their Serendipity Admin suite since the upgrade to version 1.1.

Thanks to the help of Shadowin it was discovered that a problematic $_SERVER['HTTPS'] variable setting by the Windows IIS Server caused this. According to the PHP documentation, $_SERVER['HTTPS'] should only contain a non-empty value in case of enabled SSL/HTTPS connections, in which case Serendipity would issue a "secure" cookie.

To fix this odd behaviour in Serendipity 1.1 you need to open the file include/functions_config.inc.php and replace the line

$secure = !empty($_SERVER['HTTPS']) ? true : false;

with

$secure = (strtolower($_SERVER['HTTPS']) == 'on') ? true : false;. Also replace this line in the file serendipity_config.inc.php:

if ($_SERVER['HTTPS'])) {
  @ini_set('session.name', 'SSLSID');
  @ini_set('session.cookie_secure', '1');
}

with

if (strtolower($_SERVER['HTTPS']) == 'on') {
  @ini_set('session.name', 'SSLSID');
  @ini_set('session.cookie_secure', '1');
}

This will use a more stricter check. For people who are afraid to edit that file, simply download this file and replace it with your current include/functions_config.inc.php file. Also please download this file and replace it with the 'serendiptiy_config.inc.php' file.

A fully patched 1.1.1 version will be made available later, when we have made sure that there are no other bugs left. So far, the 1.1 version has been received very stable by the public! Thanks for improving Serendipity through your reports and help!