CoffeeCake

Are you using gd or imagemagick?

You should enable logging for PHP and see what errors you get from whichever extension you're using.

2 hours ago, Charles said:

I encourage you to participate in the beta releases.

We absolutely will! I'd encourage anyone here to install 4.6 on their test sites and doing a high degree of testing prior to upgrading their community when 4.6 is eventually released.

2 hours ago, Charles said:

We release several betas until we are no longer receiving any bug reports then do the full release. It is perfectly normal that the full release is quickly followed by maintenance updates. I cannot think of a single bit of software I use that is not followed by maintenance releases soon after the full release.

This is to be expected and natural. What are the blockers for releasing a beta? The sooner we start to be involved in testing, the earlier feedback your team gets, and the sooner those who won't test (despite all my warnings to the contrary) get a release.

11 minutes ago, Charles said:

We always release betas for big releases. Have been doing so for years 🙂 

Things look a bit different this time around. With 4.5, there was the "alpha" domain hosted site, then there was a series of beta releases, followed by full releases that may as well have been beta releases. It didn't go as smoothly as maybe would be ideal.

So I'm wondering if we take our lessons learned, and have adjusted things perhaps, what the plan this time is for 4.6.

Yes, find reputable and recognized places for knowledge, just as you'd search for any other product or service online. 🙂

Depending on your learning style, seek out paid or free training/courses from reputable providers (consider looking into MOOCs) or go straight to the source for documentation:

• PHP: https://www.php.net/docs.php
• MySQL: https://dev.mysql.com/doc/
• Javascript: https://developer.mozilla.org/en-US/docs/Web/JavaScript
• HTML/CSS: https://www.w3.org/standards/webdesign/htmlcss

22 minutes ago, Pjo said:

 

Offer with hide IP starts at $89,95/m. That's a lot for now.

That just means you'll have a dedicated IP address for outbound mail, not that your server's sending IP will be revealed.

We use the regular version with no issues. Make sure you setup SPF & DKIM.

Have you looked at the providers that are built into IPS? In particular, SendGrid?

1 hour ago, Jordan Invision said:

It'll be available for all in the coming weeks, but for now you can get a taste of it here in our own community. 

If the bug tracker is any indication, you need client testing before it will be ready for production.

What's the plan for releasing alpha/beta releases for testing purposes to self-hosted clients?

We're not particularly interested in achievements and will likely not activate them in our community, however speaking from a 4.6 release as a whole the changes look like they would benefit from testing code revisions and third-party integrations.

I would urge caution at using w3schools. I have found that they frequently show bad practice behaviors in their examples.

Invision (broadly) uses five languages:

Front End - things that run in the context of a user's browser:

1. JavaScript (often in the form of reusable libraries)
2. CSS (Cascading Style Sheets)
3. HTML (HyperText Markup Language) - all web sites use this, and

Backend - things that run on a server:

1. PHP -- what actually runs on the server
2. In addition, SQL is used through extraction layers in PHP via MySQL (or its swap in, MariaDB).

You will also find some use of JSON and XML. And you will find interactions with other technologies via PHP such as elasticsearch and Redis.

Your ability to establish working proficiency in any of these and then to develop an understanding of the existing codebase is an exercise we can only speculate about. I'd recommend looking for open, free courses that touch on the basics of PHP and front-end web development and see for yourself your ability to pick things up. Many of us have no formal education on these things and have largely taught ourselves. Many of us have formal education in one or more of these areas.

If you have the desire and drive, you're most of the way there.

On 3/22/2021 at 9:09 PM, MEVi said:

Allowing google to track members in non-public sections is problematic because I then have robots that generate errors "HTTP Errors 40x" and make it difficult to read the logs, to identify possible intrusion attempts.

...

5 hours ago, MEVi said:

This does not work because users or robots exclude the Piwik script. What to do?

Analytics solutions aren't intrusion detection systems. If you need something that's looking for suspicious behavior, that solution should be ingesting your web server's logs or, more ideally, sit in front of your web server via something like a firewall and use things like inspection.

Matomo and Google Analytics are simply tools that help you understand your audience. You can only control the software running on your services and cannot force any user or robot to run software client side.

Looks like the same behavior happens here. You should encourage whoever administers that site to consider a hyphen instead of an underscore. In other words, dev-tc instead of dev_tc.

The hostname of the link you posted contains an underscore. Underscores are not supposed to be used in hostnames and violate the RFCs for valid hostnames. My guess would be that CKEditor is doing something with this link.

Posting it here as a test. Test link

2 hours ago, breatheheavy said:

Happy 420 😜

Are you sure this is not a mechanism brought on by the settings of your PayPal account? Are you using a PayPal business account? Have you look into alternative payment processors?

https://developer.paypal.com/docs/admin/checkout-settings/

18 minutes ago, Gauravk said:

Appreciate to hear those multitude of factors so that I can invest time to understand what works best in our case.

Practically every allocated resource and configuration on your server(s), your community's usage of various features, resources allocated/consumed by the various services and tools powering your community, your community's guest to member ratio, and the design and architecture of your server(s) setup.

These are decisions that require a technical understanding and cannot be realistically answered within the scope of a post here. Depending on a multitude of factors, the best choice may vary and IPS gives flexibility in that regard.

If you don't understand something, don't use it until you do.

If you do not have the personal time or skillset to seek out and obtain an understanding of these things, then consider hiring someone who does:

https://invisioncommunity.com/third-party/providers/

This is a very limited use case and would likely not be used by most other IPS communities to make it worthwhile adding to the core software.

Consider creating an extension to add this functionality or finding a developer who can do it for you from here:

https://invisioncommunity.com/third-party/providers/

You can alternatively protect the contents of e-mails being available in an unencrypted form by not including the text of the message in the e-mail templates. This way, your members need to view their messages through your encrypted site.

SMS is an insecure method to perform password resets.

On 4/9/2021 at 2:20 PM, CoffeeCake said:

You simply need to override the value for --responsive-header--height.

You probably want to prevent traffic from this misbehaving spider entirely then by creating rules at your CDN/web server/firewall prior to IPS having to serve out the request. I'm not sure what you are referring to by "Hot Link Protect" yet it's probably better to stop this traffic before IPS has to do any work on the PHP/MySQL side of things.

You do not need to move the file to require http authentication. Simply create a Files rule within your IPS directory that the file requires authentication.

Assuming Apache and that you're not a CIC customer, something like the following should work:

<Directory /var/www/html>
  <Files sitemap.php>
    AuthType basic
    AuthName "Protected Super Secret SiteMap"
    AuthUserFile /path/to/.htpasswd
    Require valid-user
  </Files>
  
  <!-- Include everything else you had in here -->
</Directory>

1 hour ago, Claudia999 said:

But the right-side "Table of contents" is obviously a company secret of IPS 😉

Pages is all about templates. It's not a secret--you can simply view the source and create a similar template yourself. It's just a nav box with links to anchors and some CSS:

<nav class="sGuidesMenu">
  <h2 class="ipsType_reset">In This Guide:</h2>
  <ul class="sGuidesMenu__list">
    <li class="sGuidesMenu__item sGuidesMenu__item--H2"><a href="#generalterms">
		General Terms
	</a></li>
    <li class="sGuidesMenu__item sGuidesMenu__item--H2"><a href="#apps">
		Applications
	</a></li>
  </ul>
</nav>

Here's a link to dbfiddle that shows the output:

https://dbfiddle.uk/?rdbms=mysql_8.0&fiddle=0238af66d4e90f4553c5769a13e0f2b9

29 minutes ago, Maxxius said:

Its  5.5.62 @CoffeeCake

Ahhh... The sample I provided is for 8.x+. It may be worth upgrading your MySQL server version. You'd otherwise need to create a user-defined function to create a similar tool to do it.

6 hours ago, Maxxius said:

Thanks for the efforts @CoffeeCake but all I'm getting is ERROR 1582 (42000): Incorrect parameter count in the call to native function 'REGEXP_REPLACE'

What version of MySQL are you running?

15 hours ago, Maxxius said:

I finally got around to doing this task and I noticed that replacing the URL via

UPDATE forums_posts SET post = REPLACE(post, 'olddomain.com', 'newdomain.com');

will not entirely solve my problem since I also have updated the URL structure of members:

The original structure

https://www.website.com/profile/22355-username/

My modified structure

https://www.website.com/p22355/username/

Therefore I should run a more complex command which would also shorten the word profile to letter p, when remove slash and replace - symbol into / after the number. I can't even begin to think how to google that. Would there be an expert who could provide a command which would replace:

https://www.website.com/profile/22355-username/ into https://www.website.com/p22355/username/

@CoffeeCake @bfarber

You could use REGEX_REPLACE():

SELECT REGEXP_REPLACE('This is some text with a url in it like https://www.example.com/profile/34251-username/ and https://www.exAMPLE.com/profile/95823-another-guy and such.','www\.example\.com\/profile\/([0-9]+)-','www.example.com/p$1/',1,0,'i');