Randy Calvert

There is no sort of workflow management outside of simply selecting Going, Maybe, or Decline (at least that I can find after using it awhile). It would require some sort of customization to add the described functionality.

When you opened the topic did you go to the last page (or the one with the newest posts)?

This specifically is for cloud hosted customers. And no, the times cannot be adjusted up or down for cloud hosted customers as it’s managed at the IPS infrastructure layer.

Actually it's a great way to promote conversions/signups. "Want to see real-time conversations? Signup now for free and join in on the discussion!" Every post is not delayed by 15 minutes... it means the oldest the content for that specific page could potentially be is 15 minutes old. A page inside might have a version only 3 minutes old. Another page might be a "live" page that had not been served from cache at all. It depends on the specific edge server the end user connected to and if someone else in the last 15 minutes requested that same exact page as well. Think of it as a "worst case" scenario. Also... my community has around 400 people online at a time. (Around 500 right now.) There are not THAT many new posts in 15 minutes that it will make a tremendous difference honestly. But given this is the way the system is designed, it's not a bug. The official answer would be to make a suggestion to change this by posting in the feedback forum.

The link appears to embed correctly when I paste the URL into my own site. It's possible Reddit is blocking your server's IP for some reason or there is some sort of firewall preventing your server from reaching Reddit's oembed endpoint. I would start by making sure you don't have any sort firewall rules blocking you. If nothing is blocking you, try disabling all 3rd party resources and try again. It could also just be something on Reddit's side. For example: They might be blocking your server or something similar.

900 seconds...AKA 15 minutes. 🙂

If it is stopping working randomly and starting back again, it’s less likely to do with the code and more to do with the communication between your community and the SSO itself. Either a firewall issue, rate limiting, or something similar. IPB obviously is not changing anything (they can’t in the case of being self hosted) so something else would have to be occurring outside of the software stack for it to randomly start/stop working.

Google has its own cdn. You’re not really going to speed it up much. Can it help with other things that IPS does not have an integration for? Possibly! I’m simply cautioning about making things more complex than they need to be. For GA specifically, I did not see any sort of huge speed difference and I doubt others will. And unless there is some value in doing this in Zaraz vs the simple checkbox area of the ACP… I don’t know why someone would add an additional layer to manage with their site. My recommendation would be to use it if you can’t already do it through the tools you have available to you.

Typically Zaraz is used by those who have problems adding stuff to their website themselves. For example a marketing team who does not want to get the IT or website coding team to add the Google code for them. What are you looking for Zaraz to specifically do for you that can’t be done through using the ACP application to insert GA code? I personally would not suggest using it and just use the native method to do it just to keep things simple and not have to remember it down the road. In addition if you ever have to bypass CF for whatever reason, having it integrated there will cause an analytics gap since the code would stop being injected. Personally I just don’t see any value that it would bring that you can’t already get today.

Check out: It has some example code there for this. 🙂

Question 1… are you using LDAP authentication? Based on your post history, it looks like you are running some sort of automated scanning service against your site. A lot of the things you are describing/reporting sound like false positives. In order for IPS to help however, it needs a LOT more info. “CMS” is a rather large application. Simply saying there is a vulnerability somewhere in it is like saying someone is sick somewhere in the city of New York or London. What specific file? Does it reference what code is problematic? Under what circumstances can the exploit be triggered? I’m almost willing to bet what it is thinking is a vulnerability is actually not an issue and is either the scanner not understanding it or it is detecting a server configuration issue itself.

Personally I would not want this as a user. I use my phone, tablet and laptop all at the same time. There is no sort of built in functionality to prevent this behavior. There have been some third party resources that are designed to try and prevent account sharing but that is outside of the core software.

Jim, If that post was edited to remove the violation would they see the original version that was problematic? What would happen if that post was hidden or moved to a forum the user does not have access to?

That looks like an Akamai error code. It means their edge server was able to reach the origin server but the origin server itself responded back with a file that had no contents (a zero byte object). As noted, that would be a server issue. 🙂

There are various third party resource providers who can assist with troubleshooting custom themes. Take a look at: https://invisioncommunity.com/third-party/providers-directory/

Does this happen on a default/unmodified theme? This looks to be an issue with your specific theme and would be something you would need to work with the author regarding if it does not happen on a default theme.

Those are server configurations and not software settings. You would need to talk to your hosting provider about that.

You can add a link to it in your menu manager if you like. 🙂

domain.com/guidelines

If it’s in the sitemap and it’s not disallowed in your robots.txt… that would be a question to pose to Google. IPB can’t force Google to do anything. They can only list it, which they’re doing if it’s in the sitemap.

Turning off the site to guests does not stop an attack. It still takes resources to generate that site offline message etc. You don’t mitigate TRUE DDoS attacks on the server itself. It’s mitigated higher up in the stack such as at a firewall or with something that has capacity to handle them. If you try to mitigate a DDoS in software, I promise you will lose if it’s any sort of real attack. Even things like mod_dosevasive don’t really mitigate any recent modern attack. Ideally you want to fight the attack as far away from your site/server as possible. This reduces the chance of potential collateral damage.

There is nothing simple or straight forward with SES. It’s a great platform but those two words don’t come close to describing it. The plugin allows you to send email via API commands to AWS SES/SNS to handle. It allows you to also process bounces that AWS receives to automatically have IPB handle it (disable mail for the user, block user, etc). The plugin does not do all of the AWS setup (either SES or SNS). It does not get AWS to approve you exiting the sandbox. It’s a fantastic tool and the author has great support. Just realize SES itself is not for the faint of heart.

“Modern”? Uhhhh…. Not quite sure you’re going to find that elsewhere. But you’re better off not asking that here. Most folks (including me) will as you might imagine be a bit shall we say biased? Either way good luck with your search and I hope you find the right tool for you.

So it sounds like it was indeed a Twitter issue. I suppose that’s what happens when you lose like 90% of the staff. 😞

If you know the license is valid, what happens if you click “check again”. If it does not update, it’s possible your server is not able to reach IPS’ license server. You would want to have your host check your server is able to make outbound connections to remoteservices.invisionpower.com. You would also want to make sure your host makes outbound requests over TLS1.2 or higher. (If it is trying over TLS1.1 it will fail.) In all of the cases I’ve seen, if you can’t update the license… it’s because something is blocking your server from reaching IPS. (There are a few situations where it was an IPS license problem but if that was the case multiple people would be reporting it.)