Stuart Silvester

That was my bad, I forgot to remove it.

When it's fixed, it'll be listed on the release notes.

We did have a fix going through testing for this, but it didn't pass. We'll be working on another approach for this issue in a future release.

This is the difference between 4.7.7 and 4.7.8. The amount of white space (as noted, defined by the author post information) is exactly the same. The post tools being in the exact same place regardless of the post length is a good change.

As @ThunderBlue noted, you will need to manually upgrade to work around this issue. You can continue to use the automatic update after this.

https://invisioncommunity.com/4guides/advanced-options/server-management/install-and-upgrade-r259/#manualupgrade

12 hours ago, Randy Calvert said:

Not many cases though where someone has locked themselves to TLS 1.3!

You would be surprised. I think people are the latest one on the list and decide to go for that.

On 3/14/2023 at 9:07 PM, Florent_ said:

Hi,

Like some other clients, I have an error when I try to "Sign in to Marketplace" :

I use nginx so no .htaccess, I don't block IP...I don't see any particular logs.

So, if you have an idea..

Thanks

Versions :
- Invision 4.7.7
- PHP : 8.1.16 (same issue with 8.0.X)

It looks like your SSL certificate/server may only allow TLS 1.3, also allowing TLS 1.2 will address this issue. Note that TLS 1.2 is still widely supported across the internet and still required for some services and older browsers.

https://developers.cloudflare.com/ssl/edge-certificates/additional-options/minimum-tls/

That would depend on your settings in AdminCP > System > Posting > Links & Email Addresses.

We made some large changes to payment gateway integrations (and Maxmind). If payments are important for your community, you might want to wait for a later beta or final release after testing has been finished. Beta's may contain problems than prevent you from being paid properly (although, we're not seeing any so far)

I can assure you that we do not have physical drives or servers.

vBulletin didn't use viewtopic.php, it used showthread.php

That's because it's legacy code (note it's in a method for dealing with legacy parameters).

Redirects are handled with a hook on the front dispatcher. If the request results in a 404, it'll check the Converter applications.

You should be set if you sign out and back in again.

Yes, that's right, alternative contacts can no longer submit Marketplace resources. Only primary account holders are able to do this.

I had a look at your primary account, I think the issue is that you have multiple accounts and you're not signing into the right one, or the incorrect one has been linked with the client area. Please try signing in with it now. If that doesn't work we'll move this to a ticket.

Yes, you can translate the language string. Search for "whosViewing" for the relevant strings.

I would encourage you to sign up to our status page, you'll get notified about incidents and ongoing status via email - https://status.invisioncommunity.com/

Quote

Early this morning, our launch configurations that have been in place for some time started failing. An internal utility at AWS that has been in place for years was no longer operating. A work around has been put in place and we are investigating with our AWS account representative as to the root cause of this failure. They do not yet know at this time.

Our sincerest apologies for this downtime event. We have monitoring, automatic scaling, and various systems in place to prevent just such an issue. However, with such a low level piece of the AWS systems failing without warning, we were unable to quickly recover.

At this time we have no further information but can promise we will work with AWS to determine root cause.

A 403 in your case is likely happening at the edge of the network -- the request never reaches the Community so it cannot be logged.

It's worth checking that you're sending a user-agent with the request, if this is missing it can cause some firewalls to block requests.

I wouldn't expect so, we don't have any plans right now to allow SVG upload on the front-end. If there was complete control over the hosting environment (which there isn't with the classic option) it wouldn't be so much of a security risk.

2 minutes ago, Colombia Humana said:

@Stuart Silvester 

Would that be related to the oauth error message I'm receiving?

Most likely, yes.

We're currently working on API access, I will let you know as soon as we have an update.

1 minute ago, Franck Poulain said:

I don't think so because currently all my API calls made in my software are returning '403' (Forbidden) error right now.

Here is what my software is logging with a "hello" request used to know the availability of the API at the start of the software:

"Failed to execute '/api/core/hello/' API request. HTTP response code is '403' (Forbidden)"

Thank you in advance for your work and good luck with the fix 🙂 

Ok thanks! we'll continue working with you on this via your ticket.

We experienced some connection issues with our licensing/remote services systems this morning. It is back up now and accessible.

I'm sorry for any inconvenience caused.

We experienced some connection issues with our licensing/remote services systems this morning. It is back up now and accessible.

I'm sorry for any inconvenience caused.

Hi @Franck Poulain @InfinityRazz

The REST API is available and functional. It's only the AdminCP configuration page that isn't loading right now. We're still working on that.

10 hours ago, Eduard Kripak said:

Hi, I have issue with login to marketplace.

Our Marketplace server received an unexpected response from your community. Please ensure your community is up to date and web accessible (localhost installations are not supported) and contact technical support if the issue persists. (server_error)

 

You have something called pro-managed protection blocking the requests we were sending to your server.

Error text:
Host: <host>
Request: /cookies.html?cdata=8ec7ab5fdd2ece6fb2053d0814614cb6&backurl=https://f<host>/index.php?app=core&module=system&controller=marketplace&pmtry=3
HTTPS: on
Protocol: HTTP/1.1
User IP: <ip>
Browser: InvisionCommunity/1.0
Referer: 
Timemark: 1679200791
ErrorCode: 405
ClusterNodeID: M-26

1 hour ago, tzrtim said:

Yeah, Down for me too - will put in a ticket

Your issue is something different that we're looking in to, we'll update your ticket when we have further information.

Hi,

I was wrong, the security issues only really come into play when you allow SVG uploads (I'm not sure where my mind was yesterday when I replied!).

The internal bug report is still open, but out of interest is it Firefox you're using to reproduce this issue? I wasn't able to reproduce it in Chromium based browsers, only Firefox.