CodeIgniter 1.7.1

CodeIgniter is a free and powerful PHP framework with a very small footprint, created for PHP coders who need a simple and elegant toolkit to create full-featured web applications.
CodeIgniter is right for you if:
- You want a framework with a small footprint.
- You need exceptional performance.
- You need broad compatibility with standard hosting accounts that run a variety of PHP versions and configurations.
- You want a framework that requires nearly zero configuration.
- You want a framework that does not require you to use the command line.
- You want a framework that does not require you to adhere to restrictive coding rules.
- You are not interested in large-scale monolithic libraries like PEAR.
- You do not want to be forced to learn a templating language (although a template parser is optionally available if you desire one).
- You eschew complexity, favoring simple solutions.
- You need clear, thorough documentation.

Enhancements
- Libraries
- Fixed an arbitrary script execution security flaw (#6068) in the Form Validation library (thanks to hkk)
- Changed default current page indicator in the Pagination library to use instead of
- A "HTTP/1.1 400 Bad Request" header is now sent when disallowed characters are encountered.
- Added , , , and to the Typography parsers inline elements.
- Added more accurate error reporting for the Email library when using sendmail.
- Removed a strict type check from the rotate() function of the Image Manipulation Class.
- Added enhanced error checking in file saving in the Image library when using the GD lib.
- Added an additional newline between multipart email headers and the MIME message text for better compatibility with a variety of MUAs.
- Made modest improvements to efficiency and accuracy of explode_name() in the Image lib.
- Database
- Added where_in to the list of expected arguments received by delete().
- Helpers
- Added the ability to have optgroups in form_dropdown() within the form helper.
- Added a doctype() function to the HTML helper.
- Added ability to force lowercase for url_title() in the URL helper.
- Changed the default "type" of form_button() to "button" from "submit" in the form helper.
- Changed redirect() in the URL helper to allow redirections to URLs outside of the CI site.
- Updated get_cookie() to try to fetch the cookie using the global cookie prefix if the requested cookie name doesnt exist.
- Other Changes
- Improved security in xss_clean() to help prevent attacks targeting Internet Explorer.
- Added application/msexcel to config/mimes.php for .xls files.
- Added proxy_ips config item to whitelist reverse proxy servers from which to trust the HTTP_X_FORWARDED_FOR header to to determine the visitors IP address.
- Improved accuracy of Upload:is_allowed_filetype() for images (#6715)
Bug fixes for 1.7.1:
- Database
- Fixed a bug when doing random on order_by() (#5706).
- Fixed a bug where adding a primary key through Forge could fail (#5731).
- Fixed a bug when using DB cache on multiple databases (#5737).
- Fixed a bug where TRUNCATE was not considered a "write" query (#6619).
- Fixed a bug where csv_from_result() was checking for a nonexistent method.
- Fixed a bug _protect_identifiers() where it was improperly removing all pipe symbols from items
- Fixed assorted user guide typos or examples (#5998, #6093, #6259, #6339, #6432, #6521).
- Fixed a bug in the MySQLi driver when no port is specified
- Fixed a bug (#5702), in which the field label was not being fetched properly, when "matching" one field to another.
- Fixed a bug in which identifers were not being escaped properly when reserved characters were used.
- Fixed a bug with the regular expression used to protect submitted paragraph tags in auto typography.
- Fixed a bug where double dashes within tag attributes were being converted to em dash entities.
- Fixed a bug where double spaces within tag attributes were being converted to non-breaking space entities.
- Fixed some accuracy issues with curly quotes in Typography:format_characters()
- Changed a few docblock comments to reflect actual return values.
- Fixed a bug with high ascii characters in subject and from email headers.
- Fixed a bug in xss_clean() where whitespace following a validated character entity would not be preserved.
- Fixed a bug where HTML comments and tags were being parsed in Typography:auto_typography().
- Fixed a bug with non-breaking space cleanup in Typography:auto_typography().
- Fixed a bug in database escaping where a compound statement (ie: SUM()) wasnt handled correctly with database prefixes.
- Fixed a bug when an opening quote is preceded by a paragraph tag and immediately followed by another tag.
- Fixed a bug in the Text Helper affecting some locales where word_censor() would not work on words beginning or ending with an accented character.
- Fixed a bug in the Text Helper character limiter where the provided limit intersects the last word of the string.
- Fixed a bug (#6342) with plural() in the Inflection helper with words ending in "y".
- Fixed bug (#6517) where Routed URI segments returned by URI:rsegment() method were incorrect for the default controller.
- Fixed a bug (#6706) in the Security Helper where xss_clean() was using a deprecated second argument.
- Fixed a bug in the URL helper url_title() function where trailing periods were allowed at the end of a URL.
- Fixed a bug (#6669) in the Email class when CRLFs are used for the newline character with headers when used with the "mail" protocol.
- Fixed a bug (#6500) where URI:A_filter_uri() was exit()ing an error instead of using show_error().
- Fixed a bug (#6592) in the File Helper where get_dir_file_info() where recursion was not occurring properly.
- Tweaked Typography:auto_typography() for some edge-cases.