All Activity

Huh? I'm not using any third party here for this. 1. I upload them as webp to a gallery. 2. I use the "existing attachment" method to insert the images into my article. 3. Profit. This has "just worked" like this for a while. The only thing that has changed here is where those images are stored on the back end. I agree that this only seems to happen with webp images, however, the articles were fine until the S3 move and no third party was involved.

These images are .webp extensions. Our software, by default, does not support these as embedded images in content. They appear as downloaded files. If you're using a third-party service/application to convert these, you would need to work with them to assist you here.

Here's a better example. https://www.cheersandgears.com/articles/news/infiniti/the-2025-infiniti-qx80-starts-the-brands-product-renaissance-r6683/ I manually fixed the last image in the article. The other three have not gotten the updated URL. However, if I edit the article, all of the images are attached at the bottom, and I just need to reinsert them into the article.

I understand all of that. However, it did this with Amazon S3 as well. It's not S3's fault that the URL the script puts in there is wrong when the file exists as intended in the correct location. As I mentioned, if you open the article for editing, the attachment is there, and you just need to double-click it to reinsert it.* Whoops, that last sentence seems wrong for this article specifically. I will look at others. However, the desired graphic does exist at the correct location and the URL is pointing only to the top of the album URL. This seems to happen exclusively with files inserted using the "insert existing attachment" method. Files manually uploaded to the article continue to render fine. I use the existing attachment method often in order to cut down on duplicate uploads between gallery and articles. See this article for a comparison. - https://www.cheersandgears.com/articles/news/ford/ford-ev-access-to-tesla-supercharging-opens-r6671/ The graphic at the bottom was uploaded directly to the article and renders fine while the graphic in the original example was inserted via the existing attachment method. Both are on S3. That and the graphic URL being incorrect are why I don't think it's an S3 issue. I didn't expect you to be in today. 😹 I was doing some file moves that had the server pegged. It's back now.

Keep in mind that we only support Amazon S3. Using another service's S3 may not work completely as intended as their API may be just slightly different and cause different results/issues. If you use any CDN or other server caching services, you will also want to clear these after doing a move of this magnitude. The current page is rendering a 500 Internal Server Error so I cannot access it currently.

I offloaded most of my site to Wasabi-S3. I have many articles that use the "Insert Existing Attachment -> Gallery Image" function. Now that the move is complete, those embedded images do not render properly in the article. If you hover the link, it just shows a link to the top level of the album rather than the image. However, if you edit the article, you can see the proper attachment at the bottom of the article in the attachments bar, and it easily reinserts itself into the article. You can see an example of this at https://www.cheersandgears.com/articles/news/acura/a-minor-refresh-makes-a-big-difference-for-the-2025-acura-mdx-r6692/ The system tries to blame it on my template, but it happens on the default IPS template as well. This happened in the past with Amazon S3 before I moved back to local storage. Is there a way to programmatically fix this for all of my articles? My access info in my client area is up to date.

You can make a test installation of your community for you and your staff to test by appending -TESTINSTALL to the end of your license key. You can read more about it here:

Thank you. I have reported what you mentioned here to our developers. However, I am unable to reproduce the exact error which has been originally reported. Therefore, we cannot guarantee this will resolve the OPs issue without access to their instance.

If a way to make a test site / forum and make there the test ?

As a matter of principle, PHP 8.2 should be supported officially for v4 in the next months. PHP 8.1 is already in security-only support and that expires on 25 Nov 2024.

To be honest, it's quite easy to reproduce. See this: Someone or something is attempting to "hack" or something on the board. In the code, you may try to find it at applications\calendar\modules\front\calendar\view.php: /* Pagination */ $offset = isset( \IPS\Request::i()->offset ) ? min( array( \IPS\Request::i()->offset, \count( $events ) ) ) : 0; As you can see, there is no check to ensure that the offset value is an integer. Please try changing it to: /* Pagination */ $offset = isset( \IPS\Request::i()->offset ) ? \intval( \IPS\Request::i()->offset ) : 0; $offset = $offset ? min( array( $offset, \count( $events ) ) ) : 0; Should help.

not using the theme...

Sure. First, create an image attachment in the editor by choosing the file from your hard drive. then click on it, so the image is added to the post content. Then double-click on the image. In the dialog box, replace the content of the URL field with your target URL.

Many thanks for answer . And what i can I do if i cant reach the creator of theme ?

I've been trying to post an image that readers can click and go to another site. I've tried several different ways and either the link doesn't work, or the image doesn't appear. First, can clickable images be posted on Invision sites and second, if they can be posted, HOW!? Keep in mind, I have absolutely NO idea what I'm doing and, if anyone chooses to help, I need it explained in the simplest way possible - LITERALLY the simplest, step-by-step instructions that even a small primate with a cognitive defect AND a traumatic brain injury would understand. ANY help will be greatly appreciated.

ACP > Members > Force password reset

Thanks for the suggestion. it would help to solve this issue. Where can I find this option in IPS ACP? (logout all users at once and request all of them to reset their PW)

Keep in mind that the biggest hole in any authentication/identity system is the human using it. Odds are that if that user setup several accounts around the internet with the same credentials, their email is more than likely also to be one of those. Your solution may solve the issue in some cases but odds are likely not in its favor. As the attacker, likely has access to their email as well. Which is why using a non-email source, like a Two Factor Authentication code generation with a cell phone app, is generally more secure. As an attacker obtaining access to that 2FA source is harder. The best case, would have been requiring it from the start of any community. That’s not always possible but the good news, you can require 2FA starting today and any new members or members who login will have it implemented. You can also use the logout all members and change password requirements to ensure that users need to reset their password prior to logging in again. In conjunction with requirements around password difficulty, this will help hopefully change passwords for your users. However, if you feel strongly about the code generating link to an email to login, you’re more than welcome to suggest that in our Feedback forum for further evaluation.

Regarding this, They demanded money to avoid leaking my website's ID and password information. To test their capabilities, I asked if they could obtain the ID and password for three other random IPS-based websites. Within 10 minutes, they sent me the credentials for these sites, involving thousands of accounts for each. What's most alarming is that these ID and password combinations were indeed functional on other IPS websites. Even though it's not IPS's fault, there needs to be better login protection. The current 2FA system is insufficient for securing all accounts. Currently, members must manually register 2FA after logging into our website. Implementing email code verification at login would be a more effective method to protect all accounts.

Yes, I am aware that ID and passwords are not stored as plaintext in the database but are encrypted. It's possible that the hacker found various IPS sites using a different ID/PW saving tool and organized this information to send to me. However, there is a major flaw in the IPS login system. I know that 2-Factor Authentication (2FA) is available and can be enforced, but this is useless for people who have already left the website. A hacker could log in using the leaked ID and password and then register their own 2FA key. Like many other websites, why doesn't IPS require email-based code verification when logging in? If this were possible, it could securely protect all accounts, including those of people who no longer use the website.

Okay, thanks @Marc Stridgen. That's what I thought. Cheers.

I don't have anything to add for tech help except to agree with the sentiment of the title. I moved my attachments folder overnight, too. It finished completely and I see no errors... ...... only it left behind a lot of files on my server, didn't move them to S3, and then updated the image URLs anyway. This was the second attempt at a move because the first attempt didn't respect the folder inside of the bucket in the URL, but did move the files to the proper folder in the bucket. The file move process has always been a huge headache with IPS4, I hope IPS5 can be better.

@TDBF, if you like, you can upload your free files to invisionify.com. Reach out to me, if this is an option for you. 😉

A while back, we created a notifications area in for ACP items like this. You will want to check your configuration in ACP -> Notification bell -> Notification Settings. Please note that these settings are independent for each administrator so everyone will need to configure them how they would like.

My forum is set up so that it requires manual approval of all new registrations. I think I used to get an email when somebody registered but I'm I'm. not getting them now. If I don't check in the admin panel very regularly, I miss them. I have looked and I[m sure it's there somewhere but can't find where to turn it on.