NewsFeaturesDownloadsDevelopmentSupportAbout Us

Lifetype 1.2.3 released

Lifetype 1.2.3 is the third maintenance release from the 1.2 branch and in addition to bringing in even more new features, it also provides fixes for a cross-site scripting vulnerability detected in summary.php as well as other stability related issues. Please read on for the download links and information about issues addressed in this release, and report any issues or bugs via our bug tracking system and the project's support forums.

From now on, release notes can also be found in the wiki in the Release Notes section. The release notes of Lifetype 1.2.3 can be found here.

< !-- ADS -->


These are the links to the full LifeType 1.2.3 packages:

LifeType 1.2.3 (.tar.bz2)

LifeType 1.2.3 (.tar.gz)

LifeType 1.2.3 (.zip)

If upgrading from Lifetype 1.2.2, there are packages available which only include new or modified files and will allow you to upgrade to LifeType 1.2.2 only. These packages can not be used to upgrade from 1.1.x or 1.2 to 1.2.2:

LifeType upgrade package from 1.2.2 (.tar.gz)

LifeType upgrade package from 1.2.2 (.zip)

New features

The following features have been introduced in Lifetype 1.2.3:

Improvements to the Flash player

The Flash player introduced in Lifetype 1.2.2 is now being used even more:

  • When uploading Flash videos (in FLV format), it is possible to get them easily embedded via the Flash player that was introduced in Lifetype 1.2.2 in posts. The size of the video will be calculated based on the information extracted form it so all that is needed is to click the "Insert video" link that will appear in the resources pop-up window.
  • A new plugin for the TinyMCE editor allows to leverage the Flash player to play MP3 files stored in other servers, in addition to embedding MP3 files from our own resources.

Javascript in posts

  • A new global configuration parameter has been added to allow to embed Javascript code in our posts. The parameter is called allow_javascript_blocks_in_posts, can be found under Administration->Settings->Security, and is disabled by default.

File integrity checks

  • Administrator users will now have access to a new functionality called "Versions" in the "Administration" area. This feature will first of all report the current version of Lifetype installed (available from version.php) but more interestingly, it will perform an integrity check on the core Lifetype files installed in the system to make sure that the current available version matches the expected version. The expected version of the files is claculated based on the contents of the file install/ and is automatically provided by the development team in each new release. For users who have made customizations to the core code this will of course return differences (which can also be used to track down which files have been modified) but for the rest of users will be useful to know if all files were uploaded correctly (which was a cause of many issues in the support forums)

Other improvements

  • Dailymotion is now available in the TinyMCE plugin that allows to insert videos from sources such as YouTube and Google Video.

Issues fixed

Extracted from the project's bug tracking system, this is the full list of issues fixed in this release:

1324: EVENT_POST_PREVIEW is now correctly thrown when generating post previews.
1318: CSS class error in TinyMCE insertresource plugin.
1322: Font error after install hotfix for XSS.
1323: mms:// URLs are filtered.
1279: Add dailymotion in the video plugin.
1314: XSS in user registration page.
1316: Link to blog from blog list panel.
1312: Error posting comments if mail notification is active.
1311: MP3 player doesn't appear on IE.
1310: can't load class.smtp.php in 1.2.2.
1309: French adin local changes.
1307: getModificationTimestamp method not working as expected.
1303: Allowing Javascript in posts.

  1. Comment No Subject

    is there any problem with the upgrade files? I can't download them. Can you check please? (It might be a problem with sourceforge)

    Posted by Julien 09 Jun 2007, 08:31
  2. Comment Fixed

    Thank you, the download links to the upgrade packages have been fixed.

    Posted by oscar 10 Jun 2007, 06:18