[Sam Bauers]

Some people simply won’t be able to use 1.0 on shared hosts with several plugins. Their host will terminate their account for excessive resource use

WordPress is much more resource heavy than bbPress in this regard. This is the only place I think we might have a use for an output caching plugin like wp-super-cache.

[Marcomail]

What cookie plugin of wordpress do you have installed ? You could use only one login form like me, i’m using only the wordpress login form.

[smi1ey]

So was this issue supposed to have been resolved in the 1.0 final release? I just installed it and am having the exact issue. When I login to bbPress, it logs me out of WordPress. I have searched several posts, and ensured that the cookie AUTH keys are all the same in WP and bbPress config files. The home site URL is the same as well. I even installed the WP bbPress Integration plugin as recommended, and added their extra code to the wp-config file.

Anyone else still experiencing thing? I hate to bring up an old topic, so if it’s been resolved somehow, lemme know!

[vlovers]

can some1 help me with cookies integration between wordpress 2.8 and bbpress 1.0 ? user logged on forum is not logged on blog…. I correctly set SECURE_AUTH_KEY, LOGGED_IN_KEY, AUTH_KEY, auth_salt, logged_in_salt……. Only thing I could n’t set during integration is secure auth” cookie salt as I can’t find this anywhere neither in wp-config.php nor in options.php of wordpress settings…….. I have also used bbpress integration plugin for wordpress and copied the text suggested by this plugin in wp-config.php

[Detective]

http://bbshowcase.org/forums/?bbtheme=genealogias-bb

I’ll upload a new version in a few weeks if you’re interested. Right now I have it installed in http://foros.ryuuko.cl (but adapted for the Thesis theme in WordPress).

[Marcomail]

ok, i’ve installed the wp plugin and now seems working

[Marcomail]

but it’s necessary install a plugin in wordpress ?

[Marcomail]

i see i don’t have the cookie for forum/bb-admin

instead if i login on bbpress it’s all ok

[Marcomail]

If i login on wordpress i must log out and re-login in bbpress to access to control panel

[Jason Giedymin]

This is a good manual way of upgrading below.

– Create a new database, call it wordpress2 or 3 or whatever. Make sure it is different from the database in use.

– Choose Option A or B Below:

Option A

– Backup (because you’ll be overwriting the old files) your http folder the server points to.

– If your httpdocs folder is called: [httpdocs] then: mv [httpdocs] [httpdocs_backup]

Option B

– Create a new directory, with correct permissions.

– Tell your webserver to serve from this new location

– Install wordpress and bbpress and assign it to use the new wordpress database.

– Get all functionality working, like integration plug-ins etc…

– Once it all works, backup the httpdocs folder. [tar -cvjf httpdocs.bz2 httpdocs] This is a good step as you can now take these working configs and stick it into a new upgraded wordpress.

– Go back and restore the old wordpress because now you will upgrade.

– Install wordpress first. Install using the Old database name, when it asks you to upgrade the database, do so.

– Install bbpress, do the same as above.

– take your Config file from the test run above, and copy them into your upgrade.

Personally, I do a complete backup on a schedule and just manually run the script again for when I do an upgrade. This script will backup all my http/https folders, my server configs, and my database all in one shot. If anything gets messed up I just do a restore and It’s like starting from scratch. No matter how messed up things get. You might want to think about that. If there is enough demand I will gladly publish these helpful scripts.

[_ck_]

In theory yes.

If wordpress sets the cookies, the part where bbpress reads them is not stored in those two files.

[_ck_]

I actually said December, not November, at the soonest for my plugins to start supporting 1.0 officially.

I think 0.9 should have security releases indefinitely, at least for another year.

December 2010 would be a good retire date IMHO.

But I certainly don’t expect 0.9 to be given new features at this point.

Some people simply won’t be able to use 1.0 on shared hosts with several plugins. Their host will terminate their account for excessive resource use if there are bursts of activity at certain times of the day. So 0.9 will be their only option (or switching to lighter software).

ps. the 2.0 branch of WordPress was it’s best version

[Ryan Hellyer]

The shorter the better IMO. How about six months?

That should be enough time for people to sort out their plugins. _CK_ posted somewhere that their plugins will be updated in November (I think) and since a huge proportion of the most popular plugins are by them I’d be inclined to base the date on that.

You don’t want to end up in a similar rut to how WordPress ended up supporting the 2.0 branch for a stupidly long period of time despite nearly no one actually using it.

[Sam Bauers]

For those not using the XML-RPC functionality (95% of you) I strongly recommend you delete xmlrpc.php immediately after install. Several of WordPress’s security issues over the years have been through that API.

Doing that will also disable the ability to receive ping-backs.

[Marcomail]

i’ve installed a fresh version of bbpress 1.0 on wordpress wp 2.8 and seems work good, but it’s the first time i use bbpress, i’ve integrated users and cookie

[Marcomail]

i’d use only registration and login page of wordpress, so i can delete this two bbpress pages ?

[Marcomail]

this https://wordpress.org/extend/plugins/md5-password-hashes/

now it works good, but if i login on bbpress the user password it’s converted in phpass format, if i login on wordpress the password it’s converted on md5 format.

i’d delete the login on bbpress, so i think it’s not necessary install the bbpress plugin

[_ck_]

Gravatars should be done 100% via a plugin and not integrated into WordPress/bbPress in the first place. I never did understand why they were hardcoded in, except perhaps a push by Matt after they bought the service.

It should be done exactly like akismet and bozos.

[_ck_]

For those not using the XML-RPC functionality (95% of you) I strongly recommend you delete xmlrpc.php immediately after install. Several of WordPress’s security issues over the years have been through that API.

[johnhiler]

What plugin are you using on the WordPress side to convert your WordPress passwords?

[Marcomail]

Thanks, i’m using wordpress 2.8 and bbpress 1.0

[johnhiler]

This plugin allows you to use MD5 hashing in bbPress (not sure if it works in v 1.0 though):

https://bbpress.org/plugins/topic/md5-insecurity-for-bbpress/

What versions of WordPress and bbPress are you using?

[Marcomail]

I’m using a plugin to convert user password on wordpress to MD5, is it a problem if i integrate bbpress on wordpress ?

[Marcomail]

i’ve wordpress 2.8 and bbpress 1.0, i must create a new database for bbpress or i must use the wordpress database ? Thanks

[Billy Wilcosky]

This plug-in works great, I just wish users could register via OpenID. I think your plug-in does allow this now, however, I use wordpress for registrations because I’m able to make a custom registration e-mail and it’s simpler and more sleek than the bbpress registration.

If only there was a way to make a wordpress OpenID plugin that would play nice with your bbpress OpenID plugin. So, users could register with OpenID using the wordpress registration page, then login with either the wordpress login page or the bbpress login page using OpenID.

Because of my set up I always have weird requests since again, I use wordpress for registrations and bbpress for log ins. 8 |