Ryan M

That DB error only shows up in the logs when I try to access /admin/ but if I just go to the domain root I get Error 500 with just very little info.

That's what I thought at first, but my conf_globals.php is solid. I even changed the sql user's password and matched it just to make sure :(

I have a bit more info available. These are the tables that are showing as MyISAM (the rest are all InnoDB). Whenever I try to dump these tables, even as plaintext SQL (no compression), the output file ends up being far less than the original. The aforementioned migrated copy and copy on source server are showing the same number of rows for these tables but the size of the core_search_index table when I dump it is only 170.4 MiB. Table Rows Type Size in DB Size on Copied DB Size on Export to File core_search_index 175,492 MyISAM 293.6 MiB w/ 65.9 MiB overhead 170.3 MiB / no overhead 96.0 MB core_pfields_content 12,291 MyISAM 1.4 MiB 1.5 MiB 1.72 MB core_message_topics 9,589 MyISAM 1.0 MiB 1.0 MiB 979 KB core_message_posts 9,552 MyISAM 8.9 MiB 8.8 MiB 5.43 MB

I run a dedicated web server (Plesk Obsidian 18.0.67 Web Host Edition) on CentOS 7.9. I'm going to be re-imaging it soon since RHEL 7 has been at EOL for a while now :D. Normally when I reimage a server I use the Plesk migrator to migrate a copy of my hosted sites to another server and change the DNS until the re-imaged server is ready to go and then migrate it all back over. Works pretty well most of the time. Anyways, after doing this, I ran into a database error when I went to access my Invision Community. Fatal error: Uncaught IPS\Db\Exception: No such file or directory in /var/www/vhosts/swrebellion.net/httpdocs/system/Db/Db.php:269 Stack trace: #0 /var/www/vhosts/swrebellion.net/httpdocs/system/Db/Db.php(356): IPS\_Db->_establishConnection() #1 /var/www/vhosts/swrebellion.net/httpdocs/system/Db/Db.php(487): IPS\_Db->checkConnection() #2 /var/www/vhosts/swrebellion.net/httpdocs/system/Db/Db.php(972): IPS\_Db->preparedQuery() #3 /var/www/vhosts/swrebellion.net/httpdocs/system/Session/Admin.php(103): IPS\_Db->replace() #4 [internal function]: IPS\Session\_Admin->write() #5 [internal function]: session_write_close() #6 {main} thrown in /var/www/vhosts/swrebellion.net/httpdocs/system/Db/Db.php on line 269 I didn't see any errors in the migration logs but I did notice the database size is quite different (~800mb on the destination server and ~950mb on the source server). Any time I try to dump the database - even making a copy of it on the source server it has this database size discrepancy. The number of tables are the same, but there is a hiccup happening somewhere. This could be related, (though not sure what to do about it) - I saw a couple warnings on the Contact Support page in the ACP (from the working/source server): Compact table type: Non-InnoDB tables

Thank you

Edit: I checked the bucket - I am seeing some things in there - not sure if it has anything else to move though, I only chose "File Downloads" category.

Ah yes, sorry about that. So I upped the memory limit to 2G and then to 4G and I am still seeing similar or same errors. I verified the config with phpinfo. Since no files have moved, is there a way I can delete the move task somewhere in the db or a config file and then delete the S3 endpoint? There has got to be a way to stop it, otherwise all tasks won't run and be stuck because its holding it up, making the backend functions of the community stop working. Any chance of you guys connecting to take a look?

I did up the limit to 256M with no difference in results. Is there a specific higher limit I should try? I also want to mention this is a dedicated server, not a VPS or shared host.

Current memory limit is 128M. My largest file it should be trying to transfer is only 85MB. There are only 7 files of this type listed in the admin center, and the rest of them are under 2MB. I had the "run tasks manually" page up attempting to run for the last 4 hours and according to the dashboard, progress meters for everything are at 0. This will basically be a showstopper if none of the background tasks ever can run.,. What I also wonder about is why the background process manual run page gets stuck on "Starting ..." with a spinning "thinking" circle. If I recall correctly, it usually would have numbers like X processes of (total) completed and would frequently refresh that number. I can't even check the settings of the S3 storage to see if I notice anything wrong since it won't let me view it while it is attempting to move files, though I think I would have seen an error of some kind if it weren't connectiving at all.

So server options in the control panel don't allow me more than 16M for the upload_max_filesize but I manually edited php.ini so I think it is set for 100M now. So I started the manual run again and it just spins looking like this. We'll see what happens. My largest file is just under 90M At the moment less than 200M

So I recently tried changing my downloads file storage from the local server to S3. I set up a cron and even tried running the maintenance tasks manually, but nothing is moving over. I can't stop the change because it says no changes can be made while a move is in process (there should be a cancel option) . At first I got an error about the PHP upload size limit, which was 2M (I updated this to 16M), but now I am getting this error when I try to manually run the tasks: Fatal error: Allowed memory size of 2147483648 bytes exhausted (tried to allocate 1077367400 bytes) in /var/www/vhosts/swrebellion.net/httpdocs/system/Http/Request/Sockets.php on line 247 There has got to be a way to abort this process and remove the S3 storage option altogether.

Does this plugin store the birthdate or is it possible to make it only validate age on registration but then scrap the date of birth (especially if we aren't comfortable storing member's birthdays on our server)? This would be a request for future versions of this plugin if it isn't already part of the code.

A standard feature suggestion I would like to ask for is for Single Sign-on (SSO) integration, with at least SAML. Simple SAML can work with Azure AD, Okta, Auth0, JumpCloud, and many many others. (posting here to continue discussion from another forum but advised to post here by staff. While I applaud you for offering this add-on service for a fee ($850), I would like to see this as a regular integration feature for Oauth and SAML. At the moment we can integrate with Google and Microsoft but it is Microsoft personal accounts, not Microsoft 365. Thank you for your time. Yes, absolutely too pricey. I would like to see this added as a standard feature. We are paying ~$170 or so every 6 months, I would think that at least warrants the justification for this feature not being a "premium customization" service.

While I applaud you for offering this add-on service for a fee ($850), I would like to see this as a regular integration feature for Oauth and SAML. At the moment we can integrate with Google and Microsoft but it is Microsoft personal accounts, not Microsoft 365. Simple SAML can work with Azure AD, Okta, Auth0, JumpCloud, and many many others. Thank you for your time. Yes I absolutely agree. And with paying a fairly high rate to renew support/maintenance of my licenses I believe this should be an included feature.

While I applaud you for offering this add-on service for a fee ($850), I would like to see this as a regular integration feature for Oauth and SAML. At the moment we can integrate with Google and Microsoft but it is Microsoft personal accouns, not Microsoft 365. Simple SAML can work with Azure AD, Okta, Auth0, JumpCloud, and many many others. Thank you for your time. Yes I absolutely agree. And with paying a fairly high rate to renew support/maintenance of my licenses I believe this should be an included feature.

I disabled the CWAF rule which resolved the issue.

So I have a dedicated server that has a Plesk back-end. We do have WAF turned on. I did come across this on the error log but I am not sure how to white-list or unblock whatever is blocked. 2022-05-23 13:19:21 Error [REDACTED-IP] [client REDACTED-IP] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swrebellion.net"] [uri "/.env"] [unique_id "YovCGZMROG3CaKz60mq6UQAAAMw"] 2022-05-23 16:51:27 Error [REDACTED-IP] [client REDACTED-IP] ModSecurity: Access denied with code 403 (phase 2). Matched phrase ".profile" at ARGS:scope. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||swrebellion.net|F|2"] [data "Matched Data: .profile found within ARGS:scope: email profile https:/www.googleapis.com/auth/userinfo.profile https:/www.googleapis.com/auth/userinfo.email openid"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "swrebellion.net"] [uri "/oauth/callback/"] [unique_id "Yovzz5MROG3CaKz60mrBNgAAAMM"], referer: https://accounts.google.com/

@Daniel F can you move this topic to one of the official Help & Support forums? I want to open a ticket for this but I believe the support options have changed.

Thanks for your response. I just checked and they were 644, and after changing them to 755, I still get the same error.

So I setup various sign-in methods, such as Microsoft, Discord, Google, facebook. When I click on Sign in with Google, it lets me choose my google account, but when it goes to call the server again, I get a 403 Forbidden Error. https://swrebellion.net/oauth/callback/(plus-lots-of-stuff-here/) I checked the folder permissions for oauth and callback, as well as the index.php , they are 644. I tried changing it to 755 but still got that error. Any thoughts?

So I created a feature request, which could take a while to implement, that is if it is even approved. In the meantime, I ask the plugin developers out there to consider creating a plugin for this. Something similar to @Adriano Faria's Age Bracket Requirement, but without storing the birthday. I would like to be able to stay in compliance with COPPA to verify users are 13 years of age or older (or whatever age is determined) while also not storing birthdays to the member profile. There used to be a marketplace plugin that did this but now all the plugins simply enhance the age verification part but still store the birthday in the birthday field. I can disable birthdays so we can maintain privacy but I would like it to ask for birthday on registration, only to perform the check if they are 13 or older, then simply flag the account in a hidden field that has uses a COPPA status "Under 13 (if COPPA registration is enabled), 13-17, and possibly 18+" for forums that require that type of age requirement. Even some variation of this would be nice and useful for many communities wanting to preserve member privacy while ensuring age requirements are met at registration. (Obviously anyone can lie, but we'll have done our due diligence by asking).

I would like to be able to stay in compliance with COPPA to verify users are 13 years of age or older (or whatever age is determined) while also not storing birthdays to the member profile. There used to be a marketplace plugin that did this but now all the plugins simply enhance the age verification part but still store the birthday in the birthday field. I can disable birthdays so we can maintain privacy but I would like it to ask for birthday on registration, only to perform the check if they are 13 or older, then simply flag the account in a hidden field that has uses a COPPA status "Under 13 (if COPPA registration is enabled), 13-17, and possibly 18+" for forums that require that type of age requirement. Is this a possible feature that can be added to future versions, or some variation of this?

I have a custom profile field for "Discord Handle" that I require on forum registration, as our community is tied to our Discord. The field type is "Text", however when someone attempts to register, it says their entry is invalid. It is rejecting the use of the # sign inside the text field, which is needed, because, as you all know, all Discord usernames are in the format of their handle followed by four numbers with the # in-between. Any thoughts? Signup page: ACP > Member Profile Fields - (Note: The description fields and Regular Expression fields are empty.)

Thank you, Marc!

There used to be an ability to set moderators per forum or category by member group or specific members. I had a global moderator group and specific moderator groups for the different forums or categories that I want to have moderated seperately. I can't seem to find that feature or the ability to do that. With large communities, we have moderators to manage small categories or teams, etc. Its a feature of every phpBB version but it has been a longtime feature of IPS. Did it go away, or am I just not seeing it? If it did go away, where can I post a suggestion/feedback for the feature to be re-added?