Журнал изменений

Introduce a self-contained demo HTML in the project docs folder that showcases candidate hover treatments for Bootstrap-Icons-based controls. The page is intended as a design reference, not as production code.

Core changes:

1. Demo page (docs/icon-hover-gradient-demo.html):

2. Standalone HTML with inline CSS that compares several icon-hover effects (gradients, glow, scale, shimmer)

3. Pulls the existing Bootstrap Icons stylesheet from templates/admin/assets/vendor so the icons render exactly as they do in the admin theme

4. No JavaScript dependencies; the page is fully static

Benefits: - Provides a visual reference when iterating on admin button or icon hover styles without spinning up the full admin shell - Lives under docs/ so it stays out of any production build pipeline

Technical notes: - Pure documentation asset; not linked from runtime templates - Safe to open directly from disk because all styles are inline and the vendor stylesheet uses a relative path - Can be retired later without affecting any shipped feature

Refresh the _meta.base_fingerprint snapshot stored in config/local.php so it reflects the new defaults bundled in config/global.php (refreshed admin logo and rotated site security key). The fingerprint is the local override layer’s view of the upstream default state and must move forward in lockstep.

Core changes:

1. Local configuration meta (config/local.php):

2. Replace _meta.base_fingerprint with the hash that matches the current config/global.php * Prevents the override layer from flagging the new defaults as

stale on first boot

Benefits: - Configuration loader recognises the new baseline immediately - No spurious "defaults changed" indication after pulling the release

Technical notes: - Pure metadata update; no behavior depends on the literal value - Always lands as the final commit in a config-defaults rotation so it reflects the fully-committed upstream state

Replace the bundled default sitekey with a fresh randomized value to keep the shipped baseline distinct from prior releases. The key seeds internal hashing helpers, so rotating the default is a routine hygiene step before tagging a new build.

Core changes:

1. Default configuration (config/global.php):

2. Update sitekey to a new 25-character random value * Replaces the previous default that had been in place across recent

builds

• Restricted to the _meta-style global default; existing

installations keep their own value because `config/local.php` overrides take precedence

Benefits: - Fresh shipped value reduces risk of accidental cross-environment fixture overlap - Keeps the bundled defaults aligned with the current release

Technical notes: - This change only touches the default in the repository; deployed systems retain whatever value they had configured via local overrides - No code or schema change accompanies the rotation - The matching configuration fingerprint update lands in the next commit so the local-override snapshot reflects the new defaults

Replace the previous logo set (256x73, 512x148, 1024x297) across all four shipped templates with the redrawn 256x79 / 512x157 / 1024x315 variants, point the configured admin logo to the new filename, and upgrade the logo-folder placeholder redirect to HTTPS.

Core changes:

1. Logo binaries (templates/{admin,default,lite,simple}/images/logos):

2. Remove old PNGs: slaed_logo_256x73, slaed_logo_512x148, slaed_logo_1024x297

3. Add new PNGs: slaed_logo_256x79, slaed_logo_512x157, slaed_logo_1024x315 * Updated artwork ships with adjusted vertical proportions (79/157/315

instead of 73/148/297) for cleaner header alignment

1. Configuration default (config/global.php):

2. Switch admin_logo default from slaed_logo_256x73.png to slaed_logo_256x79.png so fresh installs pick up the new asset

3. Folder placeholder (templates/{admin,default,lite,simple}/images/logos/index.html):

4. Update the meta-refresh redirect target from http://www.slaed.net to https://slaed.net * Aligns the placeholder with the live HTTPS canonical URL and

avoids an extra redirect hop

Benefits: - Consistent logo geometry across the four bundled themes - New installs render the refreshed logo without manual config edits - Placeholder pages no longer downgrade to plaintext HTTP

Technical notes: - Existing custom installs that pinned the old filename in their local config keep working because the old asset is no longer referenced; set admin_logo to a custom file as before if needed - No layout, CSS, or template structure changes were required to host the slightly taller artwork

Reduce vendor-prefix noise in the admin theme stylesheet and remove properties that no longer carry weight in modern browsers. Behavior is preserved; the change is purely a cleanup to keep the rule blocks tighter.

Core changes:

1. Stylesheet cleanup (templates/admin/assets/css/theme.css):

2. Drop -webkit-font-smoothing: antialiased/`-moz-osx-font-smoothing: grayscale` from the icon font and warn-icon rule blocks * Modern Chromium and Firefox already render the icon font

consistently without the hint, and Safari ignores the override

• Replace display: -webkit-box flexible-line-clamp shim on .sl-menu-grid-link span with display: block * Drops the corresponding -webkit-box-orient: vertical property * Layout in this rule does not rely on multi-line clamping

• Remove the experimental field-sizing: content from .sl-div-actions inputs and .sl-ratings-days * The property is not yet broadly supported and the explicit

width/min-width pair is sufficient

• Add -webkit-user-select: none next to user-select: none on the toggle button so older WebKit picks up the rule

Benefits: - Smaller, easier-to-scan rule blocks - Removes properties that introduced engine-specific edge cases - Keeps cross-browser parity for selection and icon rendering

Technical notes: - No selectors added or removed; only declaration-level changes - Visual output unchanged in current Chromium, Firefox, and WebKit - No compiled assets are vendored, so no rebuild step is required

Introduce an admin-footer toggle that hides or shows the runtime diagnostics block (queries, request variables, errors, system info) and relabel the section titles to read as a focused performance and request panel rather than generic analyzers.

Core changes:

1. Footer controls API (core/system.php):
2. Extend getFootControls() with a new $dbgtog flag

3. Inject a dbglink payload (icon bug, label _DEBUGPANEL) when diagnostics output is present

4. Replace the hard-coded class => sl-slaed-home with a semantic isslaed flag so templates own the CSS class mapping

5. Wire setFoot() to forward $debug !== '' as the toggle signal
6. Link fragment (templates/admin/fragments/link.html):

7. Recognize isdebug and isslaed flags * Map isdebug to sl-debugger-toggle plus

data-sl-toggle-control="sl_debugger" with slide effect (500ms)

• Map isslaed to sl-slaed-home

• Keep the existing class/href contract for all other call sites
• Footer partial (templates/admin/partials/foot-controls.html):
• Render dbglink between the brand link and the upper anchor
• Admin layout (templates/{admin,default,lite,simple}/layouts/admin.html):

• Wrap {{{ debug_html }}} in `<div id="sl_debugger" data-sl-toggle="sl_debugger" data-sl-toggle-default="open">` so the toggle target exists in all four shipped themes

• Render the wrapper only when debug_html is non-empty
• Footer styles (templates/admin/assets/css/theme.css):
• Position .sl-footer span a.sl-debugger-toggle at right: 102px
• Bind it to Bootstrap Icons glyph \f1dc (bug icon)
• Language constants (lang/de|en|fr|pl|ru|uk.php):

• Add new _DEBUGPANEL constant (Diagnostics panel / Панель диагностики and equivalents)

• Refresh four existing constants to clearer wording: * _AQUERY_DB -> Database queries * _AVARIABLES -> Request variables * _ERRLOG -> Errors and warnings * _SYSTEM_INFO -> System performance

Benefits: - One-click hide/show keeps the diagnostics block from crowding the admin canvas while remaining instantly recoverable - Cleaner labels match the actual content of each panel - Templates regain full ownership of the footer-link class mapping

Technical notes: - New parameter on getFootControls() is optional (default false), so existing callers stay source-compatible - Toggle relies on existing data-sl-toggle* runtime; no new JS module - All six bundled language files updated together to avoid mixed labels

Promote unified configuration loading to the same module that owns classes/editor and classes/logger so the boot order is explicit before core/security.php is included. Keeps security.php focused on request hardening and adds a defensive guard for direct/static analysis includes.

Core changes:

1. Configuration bootstrap (core/system.php):

2. Load $conf via getConfig() right after editor and logger are required * Apply admin theme override when ADMIN_FILE is defined * Place the bootstrap above the security.php include so the security

layer can rely on a fully merged $conf

1. Security entrypoint (core/security.php):

2. Replace the prior config bootstrap with a defensive guard * Only call getConfig() when $conf is missing or not an array * Avoids redundant work when system.php has already prepared $conf * Keeps the file safely includable in isolation

Benefits: - Clear ownership: system.php owns boot, security.php owns hardening - Predictable $conf availability for every downstream require - Safer behavior when security.php is analyzed or included directly

Technical notes: - No public API change; getConfig() and $conf shape are unchanged - Backward compatible for all callers that include core/system.php - Direct includes of core/security.php remain functional via the guard

Consolidates editor-insert functionality into slaed.js, improves PDO debug output via template, extends debug-stats across all themes with new lang constants, and migrates icon_name support to default/lite/simple link fragments.

Core changes:

1. Editor insert (plugins/system/):
2. Remove insert-code.js (413 lines); logic merged into slaed.js
3. Add getEditorInsertText() and syncEditorValue() helpers in slaed.js
4. Remove editor-action-insert.html fragments from all themes
5. PDO class (core/classes/pdo.php):
6. Use $tpl for SQL debug output; consolidate getSqlQuery() internals
7. Simplify error message format (remove bare <br> tag)
8. Language constants (lang/*.php — all 6 languages):
9. Add _ERRLOG, _PAGETIME, _MEMUSAGE, _DBQUERY, _DBQTIME
10. Debug stats templates (templates/*/fragments/debug-stats.html):
11. Use new lang constants instead of hardcoded strings
12. Theme templates (default/lite/simple):
13. link.html: icon_name support (mirrors admin link.html)
14. voting-view.html: minor adjustments
15. new.css: CSS updates
16. Admin info panel (admin/info/config, admin/info/template — all 5 langs):
17. Template and config HTML adjustments
18. Misc:
19. core/helpers.php, core/security.php, core/classes/template.php: minor fixes
20. modules/forum/index.php: minor fix
21. index.php: minor fix
22. config/global.php, config/local.php: fingerprint update
23. docs/TODO.md: removed

Benefits: - Single JS file for editor interactions; no separate insert-code.js loader - Debug stats use translatable constants across all themes - icon_name in link.html is now consistent across all 4 template themes

Technical notes: - editor-action-insert.html deleted from all 4 themes (admin/default/lite/simple) - Backward compatible: link.html callers without icon_name are unaffected

Unified spacing tokens (--sl-space-xs/sm/md/lg) across all sidebar blocks, replaced standalone icon columns with icons embedded inside <a> elements so the full row — icon and label — forms a single clickable target.

Core changes:

1. CSS tokens (base.css, theme.css):
2. Add --sl-space-xs/sm as canonical spacing tokens; remove --sl-space-xxs
3. Sidebar count-row: 3-col grid (icon|label|value) → 2-col (label|value)
4. Icons live inside <a>, styled via .sl-block-sidebar-count-label a
5. Blocks 3+4 warning color applied to <a> via :has() selector
6. Session summary lines: optional icon column (sl-session-line--icon)
7. Session rows: geo flag in 20 px icon slot (sl-session-row--icon)
8. Admin-block-link: icon inside link, remove separate .sl-admin-block-icon
9. Hover/border-radius unified for all block content types
10. Templates (link.html, session-row.html, session-summary.html):

11. link.html: {% if icon_name %}<i class="bi bi-{{ icon_name }}"></i>{% endif %} before label — zero impact on existing calls without icon_name

12. session-row.html: geo_html in icon slot, name_link in text column
13. session-summary.html: per-category icon_name vars, optional rendering
14. dashboard-panel.html: remove redundant sl-dashboard-panel-pad wrapper
15. monitor-tooltip-text.html: new fragment for tooltip with BI info icon
16. PHP (admin.php, system.php, monitor.php):
17. icon_name moved into link array at call site — no intermediate icon_html
18. Removed icon-bi.html fragment; icon rendered inline by link.html
19. adminblock(): icon_name in admin_link/logout_link arrays

20. getUserSessionAdminInfo(): geo flag drives 3-col layout; BI icons on summary category lines (shield-check/person-check/robot/eye/people)

21. monitor.php getTooltipText(): output via monitor-tooltip-text.html

Benefits: - Icon is semantically part of the link — clickable area covers icon+text - No zoo of micro-fragments; icon_name is a plain string, not rendered HTML - All block types share one hover/spacing rule set - Geo flag symmetrically aligned with category icons in sidebar

Technical notes: - link.html change is additive; callers without icon_name are unaffected - sl-session-row--icon applied only when geo_html is present - --sl-space-xxs removed; 3 px values replaced with --sl-space-xs (4 px)

A :root block with named CSS custom properties is added to base.css and every hardcoded colour, size, and shadow value across base.css, theme.css, and basic-monitor.html is replaced with the corresponding token. No visual changes are intended — this is a pure token-extraction refactor.

Core changes:

1. base.css — design token block (:root):

2. Colour palette: --sl-color-bg/-soft/-muted/-subtle, -border/-border-strong, -text/-text-soft, -muted, -primary (and -hover/-soft/-tint), -success (and -strong/-soft), -danger (and -strong/-soft), -warning (and -strong/-soft), -accent/-accent-soft, -info-soft

3. Size tokens: --sl-size-control (28px), -pager (30px), -head (32px), -icon (18px)
4. Radius tokens: --sl-radius-control (3px), -panel (4px), -soft (6px)
5. Spacing tokens: --sl-space-xs (4px), -sm (6px), -md (8px), -lg (12px)
6. Shadow tokens: --sl-shadow-soft, -control, -control-active, -hover-soft
7. Typography tokens: --sl-text-shadow-light, -text-shadow-dark
8. Focus token: --sl-focus-primary
9. base.css — all hardcoded values replaced:

10. html background gradient, legend, body font colour, h2/h5, links, hr, inputs, blockquote, focus ring, required input colours

11. theme.css — all hardcoded values replaced:

12. Buttons (sl-but-), callout blocks (sl-callout-) now use Bootstrap Icon via font-family bootstrap-icons on ::before; content codes updated to BI

13. Status icons, sort arrows, toggle controls, tips, div-grid rows
14. Block-sidebar, dashboard-panel, radio-switch, pager, alerts (sl-warn/sl-info)
15. Debug sections, preview blocks, menu grid, session summary
16. Table, tabs, voting widget, monitor, login shell — complete token migration
17. basic-monitor.html:

18. SVG linearGradient stop-color and path stroke attributes for chart lines (gUp/gDown/gCpu/gRam) replaced with CSS var() references

Benefits: - Single source of truth for all colour decisions; theme changes require only token updates in :root - Enables future dark-mode or white-label overrides via a single :root block - Removes ~300 scattered hex literals from stylesheets

Technical notes: - CSS var() in SVG stop-color is supported in all modern browsers - No Sass/PostCSS required; native CSS custom properties only - Callout ::before now uses BI icon codes (f430, f26a, f33a, f622) replacing Unicode symbols; font-family declaration ensures correct rendering