Jump to content

Chris89

Members
  • Posts

    55
  • Joined

  • Last visited

 Content Type 

Downloads

Release Notes

IPS4 Guides

IPS4 Developer Documentation

Invision Community Blog

Development Blog

Deprecation Tracker

Providers Directory

Forums

Events

Store

Gallery

Everything posted by Chris89

  1. I'm assuming because nobody has replied to this IPS don't think this is an issue?
  2. I would have contacted support about this but because I no longer have an active license because the fees are way too high, apparently I can't report security concerns??? I've noticed that on my installation of IPS, when trying to use the URL encoded RTL Unicode character in the URL (%E2%80%AE) in the middle of params, it's still reversing the text direction and causing issues on the site. Not sure if this will work on the example below, but after the "do=" I added the above url encoded value and it reversed it on my forum and it broke the page. i.e. http://localhost/community/index.php?/topic/2-test/&do=‮getLastComment
  3. Thank you so much guys! I cannot believe I didn't think of this, it's so obvious to clear the original cookies... This is exactly what it was. And as a P.S. it's also fixed my original issue too, which is awesome 🙂
  4. So first off I'm still running 4.4.10. I don't really like the direction the software has gone since then to be honest and I feel pretty disillusioned with it, despite recognising that there are some good features that have been added since (which is a shame). It's also too difficult to keep upgrading the forum all the time and keeping compatibility with my existing themes, plugins and applications (some of which haven't even been upgraded for the newest versions now) among more and my own SSO setup. It's just not possible for me to keep making these large changes at the scale you're making them and keep my site actually running, unfortunately. I would have contacted support about the issue I'm going to post below, but my license has expired and I've just found out when I tried to renew it IPS have now increased the cost from $25 to $40 per 6 months just to get: support (which mostly although very quick is pretty terrible and you don't really want to know IMO) ability to post in virtually any forum here (which is helpful because support doesn't help you, but not worth $40) upgrades (which I've already said I'm not bothered about) spam monitoring (which is nice, but not worth $40 on its own) I have no idea why this change has been made and it's never been communicated to me as a Client, and I don't want this topic to turn into another "bash IPS" one as I can see that a few customers seem to be complaining about other things too. But I do feel I need to state that this change is pretty disgusting. That cost is more than 25% of the cost I actually paid for the software.. and you want me to continue forking out $40 every 6 months just to get access to the above? $25 is justifiable IMO, just. But what this is, is basically taking advantage of clients. Regardless of that now onto what I actually wanted to say. So my Suite sits on a 'forums' subdirectory of my main domain, and I want the cookies set by IPS to be present over my whole site too. When I check the HTTP headers for cookies I can see that one of them is presently residing in only the /forums/ directory. Obviously this is possible with the cookie options, so I've tried modifying my constants.php file with this: <?php define( 'COOKIE_PATH', '/' ); It seems to work fine, but then for some bizarre reason, when I log out and log back in again, it's locking me straight out of my account on the first attempt even though my username and password are 100% correct. I'm using LastPass so I'm not even typing them. They autofill. Every time I make this change, the software is bugging for some reason, and locks me out of my account on the first sign in attempt (claiming I tried 3 times?), I even get an email saying I've been locked out. When I try to sign in again, it repeats this and says to try again in 14 minutes. When I try again after that time, it's also locking me out again. This pattern basically continues until I remove or rename the constants.php file and clear my browser cache. I've even tried in different browsers. Just wondering whether anyone else has had these issues or whwther they might have any ideas why this might be occuring for me? Thank you.
  5. Can anyone help let me know what tables or queries I would need to run in order to update this manually via the database? Support aren't helping at all, just throwing up a block and just pointing me to this forum.
  6. Hi @Makoto just hoping you can let me know that query if you aren't too busy 🙂
  7. Thanks for your advice. Yeah I am permanently redirecting the domain and I intend at this point to keep it in perpetuity but obviously need the old domain to redirect properly so that users don't get the landing page extra redirect. I wouldn't mind trying this myself if you could let me know an example query to follow. I'd be so grateful if you couldprovide that for me 🙂
  8. Hi guys, I recently migrated my community to another domain and I'm a bit unsure how to move forward with all the posts that contain references to my old domain (outside of the IPS suite). I do have redirect forwarding on so the links do forward correctly to my new domain, but obviously, I need to update them. I've contacted support and they suggested maybe a manual SQL query, but this isn't really something they help with and I'm hoping that someone here has encountered some problem like this in the past and knows a potentially easier way. Won't I have to re-index all the posts as well once I've changed all this, via some kind of background task?
  9. To be honest it's mainly a styling reason why I don't want to upgrade to 4.5.... plus it would be hassle because I have lots of plugins and I don't know exactly what changes have been made as to how compatible things are now. But I don't really like a lot of the new changes that have been made style-wise and prefer the older 4.4 style. I think some of the new features are great (though not too keen about removing the Admin CP session from the URL) and I'd love to have them... it's just things like in topic where it states "X months later" and the way that some post actions etc are hidden to name a few things offhand.
  10. Has this been implemented yet? If so are you able to let me know where abouts in thev PHP this has been done? I've checked the latest version but the login cofde still seems the same... I'm trying to integrate it with my SSO.
  11. Does this work on regular topics as well as pages? And do you still have a 4.4 version to download?
  12. I'm not really sure where this question belongs to be honest, so this may well be the wrong forum. However, I'm interested in adding custom emoticons to my IPS board. Problem is, I don't have the graphical skills to create them myself and I'm not sure where to look for them (the x2 size thing really confuses me). Does anyone know where I can find a list or pack of emotions that are compatible with IPS anywhere? Thanks!
  13. Fantastic! What sort of timeframe are we looking at? Any way I could fix this now ready in advance of when it's released?
  14. So as part of my site integration that I've done, I've added a custom HTML form on my site which will submit login details to the login form on my IPS forum. This works fine, and the user is logged in great. Except when they get logged in, they get redirected back to the forum index, rather than the page they were previously on, on my main site. I've tried adding a base64 encoded 'ref' query string to the URL to provide a redirect URL (i.e. the URL they are on), but this isn't working. It's not so much that it's not working, but just rather by design from what I can gather. I understand why this security measure is in place, to prevent CSRF attacks etc and to prevent redirect to malicious websites. My question really, is, is there some way I can allow IPS to redirect back to my own domain from the login form & the page they were previously on, while keeping this protection in place? It isn't on a seperate subdomain or anything, both the forum and my site are running off the main domain. The only difference is that my forum is in a 'forums' subfolder, and it's redirecting back out of there that I can't currently do. Is this possible? I don't really want to have to modify the core IPS files, so an extension would be better if I have to do any development, but I'd appreciate any advice and guidance on this issue. Thanks guys
  15. Chris89

    MS IE warning

    You’re correct, I do use it for browsing privately. I like it personally, I never really understood what all the fuss was about. The simple fact is that I feel it resonates with me in a way that I just don’t with other browsers, I just don’t like them, particularly Chrome which I think is awful. I don’t mind Safari on my iPhone, I do kind of like that, but not on a desktop computer.
  16. Chris89

    MS IE warning

    As someone who uses IE 11 I can confirm that I noticed an immediate and massive degrade in my performance even just using the official IPS site as soon as they switched over to 4.5. I can virtually use nothing on this site now unless I use Firefox.. I can't even post topics, dismiss cookie banners or anything. Now I can handle it for one site if I actually need support on here, and occasionally having to switch over to Firefox, but if IPS have curbed support for IE 11 (that's what I'm assuming this means) then it means there's no way I can upgrade my own forum knowing these issues exist. If it wasn't for the sake that I needed to use this site already, I'd just avoid it altogether.
  17. Hmm thanks. Must have been that which I looked at then, but I genuinely thought it was 4.x. For those who are interested I managed to solve my problem by just using this simple class here, which does all of the work for you: Mobile Detect - lightweight PHP class for detecting mobile devices (including tablets
  18. Thanks for this. I'm not sure where I thought I'd seen that method then, but I genuinely could have sworn it was in IPS.
  19. I know there's a way to do this, because I distinctly remember seeing a method named something like IsMobile in one of the files while I was creating my site integration several months back. But I can't for the life of me remember where I saw it and I can't find it anywhere now having checked in the places you'd expect, such as Sessions, Members and Request. Does anyone know where the code for this is so I can look at it?
  20. I've tried to setup Facebook login for my IPS forum and honestly, I don't really know what to say other than imagine my shock, Facebook have made things incredibly complicated yet again for no apparent reason. All of the IPS end is configured correctly. I haven't really got a clue what I'm doing with the Facebook developer app end, what I'm really looking for and how to get this thing approved. I've followed the IPS tutorial guide and ALL I want is to have the login. No status updates, publishing posts or anything else. Literally just the login. I've tested this on my own account, and it appears to be working. But I don't know whether it works on any other account yet because I read somewhere that it will only work on your own account until approved. Does it work without approval if you just use the login??? I've tried searching for the "additional permissions" or whatever they are called, to try and submit an app review, but I don't want any of the additional permissions which are listed, and it won't let me go to app review unless I select additional permissions. I've also noticed that I need to verify my business or individual account before I get certain things. But again this is ambiguous as well and I'm still not really sure whether what it's telling me I need, is what I actually need. Will the simple login integration work without verifying either a business (which is impossible because it's just a simple community website that has no legal basis) or individual account? Any help is appreciated ....
  21. Thanks for you reply. Sadly, I actually tried it without the dot first- this wouldn't even allow me to login at all, even on the forums subdomain. It's only with the dot that I could login on the forum. Or totally blank.
  22. After some more debugging: These are two print_r() occurences of $_COOKIE. The first is from my forums subdomain, and the second is from the main domain. The cookies seem to be setting fine accross both parts of my site. I don't understand why it's not registering I'm logged in. Forums subdomain: Array ( [IPSSessionFront] => b52ab2e2beb6179bee5fc2932a01c720 [guestTime] => 1593960120 [ipsTimezone] => Europe/London [__cfduid] => ** [_ga] => ** [_gid] => ** [hasJS] => true [device_key] => 498c56281eb73e32f70f12b96b98d1e2 [member_id] => 2 [login_key] => 98a7496953476166f62f2636bb7de45c [loggedIn] => 1 [cpsession] => ** ) Main domain: Array ( [__cfduid] => ** [_ga] => GA1.3.211408320.1593959883 [_gid] => ** [_gat_gtag_UA_58106165_1] => * [hasJS] => true [device_key] => 498c56281eb73e32f70f12b96b98d1e2 [member_id] => 2 [login_key] => 98a7496953476166f62f2636bb7de45c [loggedIn] => 1 [IPSSessionFront] => b52ab2e2beb6179bee5fc2932a01c720 [guestTime] => 1593959947 [ipsTimezone] => Europe/London ) It seems to be an issue with $_SESSION. I've used print_r() on the SESSION variable on both the forums subdomain and my main domain using this code (amending the directory path for each location): <?php define('IPS_ROOT', __DIR__.'/include/subdomains/community/'); require IPS_ROOT.'init.php'; \IPS\Session\Front::i(); print_r($_SESSION); echo \IPS\Member::loggedIn()->name; The forums subdomain will display the data fine, but as soon as I go to the main domain it wipes the member name and starts displaying hashed again, as I was getting in this topic: https://invisioncommunity.com/forums/topic/457157-integrate-ips-with-my-own-website/ After I've visited the main domain page, I'm logged out of the forums entirely and have to log back out again. This is such a weird glitch ........
  23. Turns out the issue is due to cookie settings that I specified in constants.php to try and get the cookie accross the whole domain. IPS now won't assist me. If a mod is reading this topic, it's possibly a good idea to merge it with my other topic here:
  24. Thanks for your reply. I've just checked via phpinfo() and it is setting correctly. Unfortunately I'm on shared hosting so changing anything to do with Apache/nginx is totally out of my control on this one. Any other fixes you're aware of?
  25. I already have a ticket in with support about this but they don't get back until (I assume) Monday. Basically, I'm completely unable to login to my admin CP, even though my login username and password is correct. I've tried on multiple devices, multiple browsers and multiple accounts with varying levels of admin access. It just keeps redirecting me back to the login page (no errors) with a query string similar to this: ?adsess=86d50dcc930de1a89a8ecb0e2cf0d543&app=core&module=system&controller=login&error=NO_COOKIE&ref=Jg== It's always the same- the error query string is "NO_COOKIE". I have no idea why this is occuring, but it's now happened for me in three different environments. When I used a business class grade server on my old isntallation (a total clean install without plugins), it was happening on there all of a sudden out of the blue. I took it as maybe an error on the old version, as that one was running 4.3. But when I've recently tried 4.4 on my local installation, it was also happening on there. Support wouldn't assist me in that case because apparently IPS don't support test installations anymore. From some debugging I did myself on this local installation, I managed to prevent the error & login correctly if I commented out lines 80-83 in the file system\Session\Admin.php. This is obviously no good on a live server though, because it's less secure and doesn't verify the session correctly. From some other debugging I did at the same time, it seemed as if my Session ID was changing each time I loaded the page or was redirected back to the login page, which I assume was the cause of this error. I have no idea whether this is some specific server setting or what, but it was fixed when the session ID stopped changing by itself. I'm just wondering really whether any other members of the community have witnessed or experienced this problem themselves, and what the cause of it was for them if they had. The only thing I can think of is that it's just a PHP configuration error, but I find that hard to believe that IPS or more users wouldn't have found this when I've found it in three hosting environments, generally out of the box installations of PHP.
×
×
  • Create New...