Foswiki archived release

See Release Dates for the complete list of available releases. This is the Foswiki patch release 1.0.7 released on 20 Sep 2009. This release fixes some serious issues introduced by the CSRF fix and the redirect cache fix in 1.0.6. A major enhancement that also fixes many annoying editor bugs is the upgrade of the Tiny MCE editor to version 3.2.2.

• changes from 1.0.6
• list of tasks completed for 1.0.7

Upgrading to Foswiki 1.0.7 is highly recommended for those running earlier versions of Foswiki (1.0.X) as the upgrade is easy, seamless, and adds additional stability and security.

Download

GPG Signatures and MD5 checksums are provided for verifying the integrity of the files for the primary download packages.

File	GPG	MD5	Description
Foswiki-1.0.7.tgz	GPG	MD5	tar gz version of Foswiki
Foswiki-1.0.7.zip	GPG	MD5	zip version of Foswiki

Upgrade packages

If you already have an earlier version of Foswiki 1.0.X installed, you can extract an upgrade package on top of the installation. The major.minor part of the release should not be changed by an upgrade package.

Upgrade packages must not be used to upgrade older releases.

File	GPG	MD5	Description
Foswiki-upgrade-1.0.7.tgz	GPG	MD5	upgrade tar gz version of Foswiki
Foswiki-upgrade-1.0.7.zip	GPG	MD5	upgrade zip version of Foswiki

%STARTSECTION{"download-none"}%
<blockquote class="foswikiAlert"> *This release has not been built yet!*  This is a draft of the release announcement.  If you want an early start to testing, see Development.GitBasedInstall.</blockquote>
%ENDSECTION{"download-none"}%

%STARTSECTION{"download-topic"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="%PUBURLPATH%/%BASEWEB%/%BASETOPIC%"
  upgraded=""
  upgrade=""
}%
%ENDSECTION{"download-topic"}%

%STARTSECTION{"download-topic-upgrade"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="%PUBURLPATH%/%BASEWEB%/%BASETOPIC%"
  upgraded="upgrade-"
  upgrade="upgrade"
}%
%ENDSECTION{"download-topic-upgrade"}%

%STARTSECTION{"download-sourceforge"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="http://sourceforge.net/projects/foswiki/files/foswiki/%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  upgraded=""
  upgrade=""
}%
%ENDSECTION{"download-sourceforge"}%

%STARTSECTION{"download-sourceforge-upgrade"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="http://sourceforge.net/projects/foswiki/files/foswiki/%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  upgraded="upgrade-"
  upgrade="upgrade"
}%
%ENDSECTION{"download-sourceforge-upgrade"}%

%STARTSECTION{"download-github"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="https://github.com/foswiki/distro/releases/download/%FORMFIELD{"ReleaseTag" topic="%BASETOPIC%"}%"
  upgraded=""
  upgrade=""
}%
%ENDSECTION{"download-github"}%

%STARTSECTION{"download-github-upgrade"}%
%INCLUDE{"Download.FoswikiReleaseViewTemplate" section="download"
  release="%FORMFIELD{"Release" topic="%BASETOPIC%"}%"
  url="https://github.com/foswiki/distro/releases/download/%FORMFIELD{"ReleaseTag" topic="%BASETOPIC%"}%"
  upgraded="upgrade-"
  upgrade="upgrade"
}%
%ENDSECTION{"download-github-upgrade"}%

%STARTSECTION{"download"}%
%TABLE{sort="off"}%
| *File* | *GPG* | *MD5* | *Description* |
| [[%url%/Foswiki-%upgraded%%release%.tgz][%ICON{download}% Foswiki-%upgraded%%release%.tgz]] | [[%url%/Foswiki-%upgraded%%release%.tgz.asc][GPG]] | [[%url%/Foswiki-%release%.md5][MD5]] | %upgrade% tar gz version of Foswiki |
| [[%url%/Foswiki-%upgraded%%release%.zip][%ICON{download}% Foswiki-%upgraded%%release%.zip]] | [[%url%/Foswiki-%upgraded%%release%.zip.asc][GPG]] | [[%url%/Foswiki-%release%.md5][MD5]] | %upgrade% zip version of Foswiki |%IF{"'%upgraded%'='' and '%FORMFIELD{"VMImage" topic="%BASETOPIC%"}%'='1'" then="
| [[%url%/Foswiki-%release%-vmware.%FORMFIELD{"VMFormat" topic="%BASETOPIC%"}%][%ICON{download}% Foswiki-%release%-vmware.%FORMFIELD{"VMFormat" topic="%BASETOPIC%"}%]] | [[%url%/Foswiki-%release%-vmware.%FORMFIELD{"VMFormat" topic="%BASETOPIC%"}%.asc][GPG]] | [[%url%/Foswiki-%release%-vmware.md5][MD5]] | [[Support.VirtualMachineImages][VM Image (instructions)]] |"}%%ENDSECTION{"download"}%

%STARTSECTION{"upgrade-header"}%
---++ Upgrade packages

%IF{"'%BASETOPIC%'/UpgradeFrom=''" 
   else="These packages can be used to upgrade __Foswiki Release %FORMFIELD{"UpgradeFrom" topic="%BASETOPIC%"}% or newer__. See [[#Upgrade_Instructions]] for further information"
   then="If you already have an earlier version of Foswiki %FORMFIELD{"ReleaseMajor" topic="%BASETOPIC%"}%.%FORMFIELD{"ReleaseMinor" topic="%BASETOPIC%"}%.X installed, you can extract an upgrade package on top of the installation. The =major.minor= part of the release should not be changed by an upgrade package."}%

%X% Upgrade packages must not be used to upgrade older releases.

%ENDSECTION{"upgrade-header"}%

Other downloads/installers

Platform	Version	File	Description
Windows	1.0.6	Foswiki-1.0.6-0-strawberry.exe	Foswiki v1.0.6-0 Windows installer (auto-setup) including Strawberry Perl 5.10.0.6, Apache 2.2
Windows	1.0.7	Foswiki on a USB Stick	XAMPP and foswiki, no installation required (64MB v0.4)
Mac OS X 10.5	1.0.7	Foswiki-1.0.7-1.dmg (GPG)	Foswiki v1.0.7 Mac OS X 10.5 installer package (see FoswikiOnMacOSXLeopard)
Linux	1.0.7 (plugins follow the Extensions web uploads)	Unofficial Debian packages repository for Foswiki and extensions	Foswiki v.1.0.7 and 215 Extensions with dependencies - for instructions follow the link. Works for Debian and Ubuntu.

Other release packages (may not be current)

Platform	Version	File	Description
Raw VM	1.0.7	Virtual Machine image	An easy-to-setup software appliance for VMware or VirtualBox. Not recommended for professional installations.
Beginner VM	1.0.0 (plus some fixes from 1.0.2)	Virtual Machine image / software appliance for novices	An easy-to-setup software appliance for VMware or VirtualBox. Not recommended for professional installations.
-	latest SVN or any release	Subversion-based installs	Installs based on subversion: check out the latest version from the development trunk, or a specific release version

Getting help & providing feedback

Don't forget to use the upgrade or installation guides. If you need help, there are several options:

• The IRC channel
• foswiki-discuss mailing list
• Support forum
• Paid support

We want to hear from you! Especially if you have noticed a bug, have some ideas we could use, or just want to contribute:

• File a new task for bug reports
• Create, review or comment on feature proposals to help influence the future of Foswiki
• Chat with other users, developers, translators, and testers on our friendly IRC channel
• If E-mail is more your thing, try our foswiki-discuss mailing list

Installation

System requirements and general installation instructions - relevant for all platforms

Platform-specific installation instructions

Foswiki: Introduction

Foswiki is an enterprise collaboration and information sharing tool targeted for professional use in many types of companies—from small businesses to large organizations.

Foswiki is a wiki: a website with easily editable web pages. It looks like a normal web site but it encourages contributions, edits, updates, questions, and answers from its users. It's a powerful way of enabling a community to communicate asynchronously using intranet or public internet websites. Foswiki is simple to learn and use. It aims to provide a transparent way for you to publish and exchange your ideas with others over the web and eliminates the one-webmaster syndrome of outdated intranet content.

Foswiki supports storing structured data—name-value pairs—and provides advanced query tools that enable users without programming skills to build powerful yet simple applications to process information and support workflows. Developers can extend the functionality of Foswiki with plugins.

Foswiki is a fork from the TWiki project. Restrictions on the use of the TWiki brand resulted in many of its developers starting the Foswiki project. Foswiki is backwards compatible with all content from older TWiki installations.

Foswiki 1.1 ships with TWikiCompatibilityPlugin installed by default, thus if activated enables most extensions made for TWiki to work under Foswiki.

Foswiki is released under the GNU General Public License.

What's new - highlights:

• Foswiki 1.0 is built on a new platform called Foswiki Stand Alone which adds support for FastCGI and enables more optimized functionality in mod_perl and other similar runtime environments. Foswiki Stand Alone will also enable future features such as running Foswiki without a separate web server. You can ensure your applications and plugins will work properly on the new platform (and thus with any future capabilities dependent on the new architecture) by testing them out now with Foswiki 1.0.
• The PatternSkin has been given a facelift: The PatternSkin topic offers a choice of multiple themes, the sidebar can be placed either on the left or right, a frame can be added around the main content area, and a TWiki theme is available to make it easier for those upgrading from TWiki (dimensions such as the top bar size match the dimensions in the TWiki PatternSkin).
• The Advanced Search screen now supports a query-based search that can search meta data and field data associated with a topic.
• New section type "expandvariables" adds better control over macro expansion in topic templates. You can now create template topics with sections within which all macros are expanded.
• New "Copy topic" feature in the "More topic actions" tools.
• IF conditions has been expanded with new "isempty" test condition.
• viewfile script can be used as a webserver ErrorDocument enabling both more secure attachments and user focused error dialogs.

Security Updates

Foswiki has been hardened against malicious attacks:

• In Foswiki 1.0 the powerful, but highly vulnerable, URLPARAM macro is secured by default against cross site scripting (XSS) attacks. URLPARAM now encodes a short list of unsafe characters '"<>% which eliminates most XSS vectors.. This means that not only the distributed topics, but also your own topics are better protected against XSS.
• Functions QUERYPARAMS, ORIGURL (skin macro) are secured against XSS attacks. QUERYPARAMS, like URLPARAM, is now encoded with the new, safe encoding.
• Print preview link is no longer vulnerable to XSS attacks.
• You can no longer save any data with http GET method. All saving of data must now happen using the POST method which means that you cannot save data using <a... tags, <img... etc. Data must be posted using a real HTML form with method "post".
• Foswiki 1.0.6 introduces a major security enhancement, protecting against Cross-Site Request Forgery. The extra safe "double submit" algorithm, as recommended by the Open Web Application Security Project (OWASP) project has been used. This is the same algorithm used by several major banks and other security-conscious institutions, and requires that users have Javascript enabled. With 1.0.7 an enhancement has been made so attachments are also protected by this method.
• Additional security fixes have been made, based on a comprehensive security audit performed by the Foswiki team.

Development statistics

• Around 400 bugs have been fixed since we forked from TWiki 4.2.3 in late October 2008.
• 28 Enhancements have been added.
• More than 5000 checkins by the more than 30 developers working on Foswiki since the start of the project.

Upgrading from an earlier version of Foswiki 1.0.X

To upgrade from an earlier 1.0.X version:

• Download the Foswiki upgrade package.
• Unpack it in a temporary directory.
• Remove any files you know you do not want overwritten. The Foswiki upgrade package does not include any files with preference settings or other configuration information.
• Take a backup of your running Foswiki 1.0.X (just in case).
• Copy all the files from the upgrade directory on top of your existing Foswiki 1.0.X installation.
• Run a chown -R apache:apache (replace apache with the username your web server runs as) to make sure all files are owned by the web server user (or by whatever user is appropriate for your installation).
• The upgrade package does not include Main.SitePreferences to avoid overwriting your settings. If you upgrade from a version earlier than 1.0.4 you should however remove FOSWIKI_LAYOUT_URL, FOSWIKI_STYLE_URL, FOSWIKI_COLORS_URL from FINALPREFERENCES in Main.SitePreferences
• In your LocalSite.cfg, change the setting {AccessibleENV} from TWIKI_ACTION to FOSWIKI_ACTION
• Windows Installations! If you run Foswiki on a Windows server (or on a Unix system where your Perl executable is in a non-standard location) you should note that the upgrade package also renews all files in the bin directory. You will need to reapply the change in the first line (the shebang line) that points to the location of the perl binary.
• You should now run Foswiki 1.0.7.
• Note: You'll need to restart the web server if you're using mod_perl or FastCGI)

Upgrading from TWiki 4.2

Foswiki is compatible with content of TWiki releases up to and including 4.3.1, as part of its design.

As part of the creation of the Foswiki project, the Foswiki community is evaluating all of the hundreds of extensions that are available for TWiki. All those that work are being ported over to the Foswiki name space. As part of this process many of them are being enhanced through the removal of bugs and security vulnerabilities, resulting in better, more functional, quality assured extensions for Foswiki. The most popular extensions are already ported, and more are added every day.

If you are upgrading, please first read the version 1.0 release notes and follow the instructions in the UpgradeGuide. These two documents can also be found as HTML documents in the root of the distribution.

Resources

• Release notes
• UpgradeGuide
• Known issues
• Bug reports
• Support Requests
• SystemRequirements
• Foswiki consultants

GPG Signature

GPG signatures are provided to allow verifying the integrity of the downloaded files.

The Foswiki release packages are built by release manager KennethLavrsen who has signed the files using GPG signature. You can find the public key at http://www.lavrsen.dk/publickey.htm.

To verify GPG signature:

• Download the relevant GPG public key to your keyring
• gpg --verify <.asc> <.tgz|.zip>

In addition plain MD5 signatures are provided.

Installation

Please refer to the INSTALL.html which can be found the downloaded tgz/zip. It can be also found on Foswiki.org in the System.InstallationGuide

Upgrade Instructions

• See System.UpgradeGuide for details on upgrading from older versions of Foswiki
• See System.SystemRequirements for the latest System Requirements.
• Be sure to take a backup!
• The upgrade packages excludes files "commonly" modified, for example, WebHome, WebPreferences, AdminGroup, etc. If your installation has modified other topics, or template files, those updates will be lost!
• If you use tar, then you can extract the upgrade package on top of your installation by using: (Be sure to run this as your web server user to avoid changing file ownership.)

cd /var/www/foswiki
tar --strip-components=1 -zxf /path/to/Foswiki-upgrade-2.x.x.tgz
cd tools
./configure --save

• Similarly, if you are using the zip upgrade package, then

cd /var/www/foswiki
unzip -o /path/to/Foswiki-upgrade-2.x.x.zip
cd tools
./configure --save

• After upgrade, restart the web server, clear the foswiki page cache, clear your browser cache.
• If things are not fully working, verify file system permissions and ownership. See System.InstallationGuide#Step_2:_Confirm_file_and_directory_ownership_and_permissions

License

• This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
• This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
• See the GNU General Public License for more details, published at http://www.gnu.org/copyleft/gpl.html

Release Details

• Build date 2009-09-20
• Publish date 2009-09-21
• Built from http://svn.foswiki.org/branches/Release01x00 svn revision 5061