[adeboy]

I just had a similar event. Using IE & FF that i had previously logged in to bbpress/wordpress and then logged out, i couldn’t get the registration form to work. But when i close the browser and reopen then the form works. This is with the alpha bbpress and 2.7 WP

Not sure if this is really a problem, as it stops someone repeatedly registering in the same session, but worth knowing. Thanks

[merlin214365]

For those that are interested I found this.

Just edit it to exclude whatever forum numbers you want and add it to the plug-ins folder.

<?php

/*

Plugin Name: exclude

*/

function filter_front_page_topics($where){

$exclude_forums=array (“13″,”19”); // enable this to manually specify specific forums by id #

// $forums = get_forums(); foreach ($forums as $forum) {if ($forum->forum_parent) {$exclude_forums[]=$forum->forum_id;}} // exclude ALL sub-forums

if ( is_front() ) {foreach($exclude_forums as $forum) { $where.=” AND forum_id != “.$forum.” “; }}

return $where;

}

add_filter( ‘get_latest_topics_where’, ‘filter_front_page_topics’);

add_filter( ‘get_latest_posts_where’, ‘filter_front_page_topics’);

?>

[johnhiler]

Two things:

* Have you upgraded to the latest version of Human Test? It has new protections over earlier versions.

* There’s an alpha version of a plugin that identifies spammers who have never posted, and lets you delete them.

https://bbpress.org/plugins/topic/mass-delete-users/

Good luck!

[chrisgoat]

Not sure if this has been brought up before but I am getting a huge amount of .ru and .gmail registrations,these are not being activated but are loading up my database.

Not allot of them, on average 20 to 30 every 5 or 6 days.

I have Akismet and Human Test for bbPress enabled, It is really not a big deal just annoying having to go in and delete them.

Anyone have any ideal how I can fight this.

Thanks

Chris

[319]

Hi, I just installed WP MU 2.7 and am trying to merge it with the latest bbpress install but have some major confusion with the config file secret keys. In new 2.7+ versions of WordPress and WPMU there is no mention of SECRET_KEY or SECRET_SALT, the config instead lists the following 7 keys:

define(‘AUTH_KEY’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘SECURE_AUTH_KEY’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘LOGGED_IN_KEY’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘NONCE_KEY’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘AUTH_SALT’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘LOGGED_IN_SALT’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

define(‘SECURE_AUTH_SALT’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

While the BBPRESS config only lists one key:

define(‘BB_SECRET_KEY’, ‘XXXXXXXXXXXXXXXXXXXXXX’);

Which key in WPMU 2.7+ is equivalent to BB_SECRET_KEY?

Or, do i now need to define all 7 of the WordPress secret keys in bbpress as well? Eg. BB_AUTH_KEY, BB_SECURE_AUTH_KEY, BB_LOGGED_IN_KEY, etc…

Any help clearing up this config confusion would be great. Thanks!

[merlin214365]

Sorry im still confused where did you insert

$topics = get_latest_topics(‘forum=-3’);

in functions.bb-topics.php

or front-page.php

[swaymedia]

Im using the latest alpha version, My wordpress is on root, and my forum is on a folder called /community.

I put this on wp-config.php :-

require_once('/community/bb-load.php');

im getting this error:-

Warning: require_once(/community/bb-load.php) [function.require-once]: failed to open stream: No such file or directory in /home/eraxeco1/public_html/massbase.com/wp-config.php on line 2



Fatal error: require_once() [function.require]: Failed opening required '/community/bb-load.php' (include_path='.:/usr/lib/php') in /home/eraxeco1/public_html/massbase.com/wp-config.php on line 2

[_ck_]

Human Test requires sessions to be working correctly on your server.

It’s possible sessions have been broken somehow.

If they upgraded PHP incorrectly that might happen among other reasons.

[spinus]

First: Thanks to all developers and coders for coding and working on bbpress and specially to ck for great plugins.

So, I have installed bbpress 0.9.0.2 installed (http://spinus.info/forum) and Topic Icons plugin 0.0.5

Trouble: sticky topics are displayed only on front page in “latest discussions” field. If I try to open a sub-forum, where sticky topic is situated in separate window, a topic is not visible.

So, there is a sticky topic: http://spinus.info/forum/topic.php?id=102&replies=1

You can see it in a latest discussions field as sticky.

But if you would open its parent forum http://spinus.info/forum/forum.php?id=30

Sticky topic is not shown what’s a matter? Please, HELP!!!

[danbbpress]

I just did a test registration on my forums and the Human test is no longer working (although I enter the wright answer I keep getting the “Humans only please” message). It used to work fine until 2 days ago. Any advice appreciated.

Thanks.

Dan

[_ck_]

Just install my bbpress theme switcher plugin, disable the dropdown.

Then replace function bb_ts_get_theme() {

with something like this (untested, will need some editing)

function bb_ts_get_theme() {

$theme="kakumei";  // default fallback

$domain=strtolower($_SERVER['HTTP_HOST']);

if (strpos($domain,"first-domain.com")!==false) {$theme="1st-theme";}

if (strpos($domain,"second-domain.com")!==false) {$theme="2nd-theme";}

return $theme;

}

[DTI]

I have two problems after I have installed bbpress 0.90.4 .

1, when I registered new user in server for testing, it can’t sent a email, so I can’t get a password.

2, the forum only run in my server computer, user’s computer got 404 error after registered and click the button. Why doesn’t run in user computer?

How to fix these problems?

[adeboy]

Well i didn’t get the 0.9 WP integration to work so couldn’t stop myself using the alpha with the help of the screencast and it seems to work fine with just the Akismet and Human Test plugins.

There was one bug i found when deleting the only topic in a forum but that has been resolved in the trunk so i was able to copy that fix.

[citizenkeith]

That seems to work. We’re still testing it out but I think we’re in the clear.

That said, I also added Anne’s notification hack, and we’re not getting any notifications.

[merlin214365]

Is there a way remove a specific forum category from the latest discussion list?

I have tried editing in functions.bb-topics.php

From

function get_latest_topics( $args = null ) {

$defaults = array( ‘forum’ => false, ‘page’ => 1, ‘exclude’ => false, ‘number’ => false );

to

function get_latest_topics( $args = null ) {

$defaults = array( ‘forum’ => false, ‘page’ => 1, ‘exclude’ => 13, ‘number’ => false );

13 being the category number I wish to remove. This does work in removing forum 13 from latest discussion unfortunately it also removes forum 13 completely lol

[_ck_]

It’s possible because I was testing it on 1.0 that 1.0 automatically escapes the mysql values passed and that 0.9 does not. I can’t remember.

Try adding this before the $bbdb->query

$pmtitle=mysql_real_escape_string($pmtitle);

$message=mysql_real_escape_string($message);

and see if it helps or if it just add slashes to your text instead and breaks it.

It may also be a quote problem but I thought the bbpress pre/post text filters should encode quote or any other problematic characters.

[_ck_]

I guess it would be a good alternative to akismet (or even in addition to).

Your code can be cleaned up and condensed considerably.

It also could benefit from some security checks on the $_POST data being injected into the url.

Here is an untested, condensed version with some mild security checks on the $_POST

http://pastebin.com/f7a50d82a

(there is also an alternative to curl in there for the 50% that don’t have it on their server)

I took out some of the extended manipulation of the returned data that you didn’t need.

[antonio_pt]

Thanks. I’ll give it a try on a test installation.

did it work?

[pierrottorreip]

Bluehost – the latest for everything – tested on Firefox 3 and Safari – all on a Mac.

Hope that helps!

[_ck_]

Tell me more about your server – OS, PHP version – and what browser you are using to test

[rank2]

Hey Guys,

I get hundreds of fake forum users who register on my forums here: http://reviewtrip.com/traveltalk

Even though I use the plugin Human Test, I still get these spam users. So I decided to create a plugin that hooks into StopForumSpam API to stop these guys.

You can download and find the instructions here:

http://reviewtrip.com/blog/stop-forum-spam-api-plugin-for-bbpress

Let me know what you guys think!

[wpitn2shape]

I only visited the forum URL which leads to install page. I couldn’t get further.

I just downloaded the latest version. Didn’t set any language or upload language folders (I read that was optional.)

I’m not sure how to compare on my server versus the one on my computer, which is default. Well I think I might know how, but I’m really tired right now, I’ll attempt that soon.

I don’t have secret keys. Did I miss that in the install instructions?

The whole error message is:

Parse error: syntax error, unexpected T_STRING in /home/.ufo/elladesigner/new.pursedlips.net/forum/bb-includes/functions.php on line 2256

Thanks, I’ll look into it more when I’m able.

[Avaz]

I’m displaying latest forum posts using RSS:

<?php require_once(ABSPATH . WPINC . '/rss.php');

wp_widget_rss_output('http://localhost/bbpress/rss.php', array('items' => 5, 'show_author' => 1, 'show_date' => 1));

?>

and the code above displays as follows:

admin on “Test topic” 13/03/2009 admin

Now, how can I exclude “admin on” part from the title?

[Billy S]

Hey all. After much help from reading these forums and tinkering endlessly, I have gotten cross site logins working between WP2.6 and bbpress 0.9 . I don’t know if you’d call it ‘integration’, but it allows a user to log in once and gain access to all appropriate site resources. Although probably not the best solution, what I did is create my own cookie login, which is caught before wordpress or bbpress load, and creates a new user object which is universal to WP and BBPress (and any other webapps you use). It does take a little…alteration…of core WP and BBPress files. I strongly encourage you to make backups before doing this, and proceed at your own risk. It worked for me, but I cannot guarantee that it will fork for you. Also, it took a bit of hacking before I came up with this solution, so it may contain minor errors or accidental omissions as I am having to backtrack to recall what exactly I did.

okay, here goes…

First, we have to configure bbpress to use the wp_users table. That is done in the admin area of bbpress (settings->wordpress integration). Check ‘Show Advanced Database Settings’ and enter your database information for the wordpress install. Also, enter the wordpress database secret code near the top of the settings page.

Next, I created a file in the document root called ‘cookie_login.php’:

<?php

if($_SERVER['REQUEST_URI'] == '/cookie_login.php'){die('Cannot access directly');}



//Initial Setup of Variables

$SECRET_KEY = 'SECRET_KEY_DEFINED_IN_BBPRESS_AND_WP';//use a real secret key

$site_user = false;



//Do the DB thing

$the_db= mysql_connect('SERVER','USER','PASS');

mysql_select_db('DATABASE',$the_db);



//Start Session!

session_set_cookie_params(1800,'/','.SITE.com'); //30 minute session

session_start();

if (isset($_COOKIE['site_cookie'])){ //cookie has been set, proceed to get user info!

$tmp = explode(':',$_COOKIE['site_cookie']); //this will make sense later

$tmpusr = $tmp[0];

$wpid = $tmp[1];

$tmphash = $tmp[2];

$hashShouldBe = md5($tmpusr . $SECRET_KEY . $wpid); //what the hash should be - prevent tampering!

if ($tmphash == $hashShouldBe){

if (isset($_SESSION['user'])){

$site_user = $_SESSION['user'];

}else{

$qry = "SELECT * from wp_users WHERE ID = ".mysql_real_escape_string($wpid,$the_db) . " LIMIT 1";

$result = mysql_query($qry,$the_db);

$site_user = mysql_fetch_assoc($result);

$qry = "SELECT meta_key, meta_value from wp_usermeta where user_id = ".mysql_real_escape_string($wpid,$the_db);//get additional data, just for fun

$resulta = mysql_query($qry,$the_db);

$temp_arr = array();

while ($row = mysql_fetch_assoc($resulta)){

$tmp_value = unserialize($row['meta_value']) ? unserialize($row['meta_value']) : $row['meta_value'];//if it a serialized array, unserialize it.  otherwise, dont.

$temp_arr[$row['meta_key']] = $tmp_value;

}

$site_user = $temp_arr + $site_user;

$_SESSION['user'] = (object)$site_user;//Object just out of preference, but doesn't have to be

}



}else{//tsk tsk, bad hash

$_SESSION['user'] = array();

setcookie('site_cookie',$_COOKIE['site_cookie'],time()-9600,'/','.SITE.com');

setcookie('PHPSESSID',$_COOKIE['PHPSESSID'],time()-9600,'/','.SITE.com');

setcookie(session_name(), session_id(), time()-9600, '/');//may be unnecessary...not sure...but can't hurt! (famous last words)

session_destroy();

}

}

if (!isset($_COOKIE['site_cookie']) && isset($_SESSION['user'])){//attempt to gain access?

$_SESSION['user'] = array();

setcookie('site_cookie',$_COOKIE['site_cookie'],time()-9600,'/','.SITE.com');

setcookie('PHPSESSID',$_COOKIE['PHPSESSID'],time()-9600,'/','.SITE.com');

setcookie(session_name(), session_id(), time()-9600, '/');//may be unnecessary...not sure...but can't hurt! (famous last words)

session_destroy();

}

session_write_close();

unset($SECRET_KEY,$hashShouldBe,$tmp,$wpid,$tmphash,$tmpusr,$result,$_SESSION['user'],$resulta,$temp_arr);//burn the evidence!

include ('site_functions.php'); //optional, can hook another file with functions (universal to all sites) to deal with this new user object

?>

After I finished the cookie_login.php, I rolled up my sleeves and dove into the WordPress and BBPress core to allow my login to occur.

in the /wp-config.php file, define the cookie domain:

define('COOKIE_DOMAIN', '.SITE.com');

Also, that secret key you used earlier in cookie_login…define it here as well

define('SECRET_KEY', 'Same Key from Earlier. IMPORTANT to make sure it's identical');

Next, I hooked in my cookie_login file to wordpress and bbpress by adding an include to the top of BOTH bb-config.php AND wp-config.php

include $_SERVER['DOCUMENT_ROOT'] . '/cookie_login.php';

To set up the ‘site_cookie’ properly, open up /wp-includes/user.php and find wp_signon function (was the first one for me). At the bottom of the function, after

if ( is_wp_error($user) )

return $user;

Add the following:

$hashValue = $credentials['user_login'] . SECRET_KEY . $user->data->ID;

$crossCookieValue = $credentials['user_login'] . ':' . $user->data->ID . ':' . md5($hashValue);



setcookie('site_cookie',$crossCookieValue,0,'/','.SITE.com');

wp_set_auth_cookie($user->ID, $credentials['remember'], $secure_cookie);

do_action('wp_login', $credentials['user_login']);//this may have already been there, don't remember

Remember how I mentioned the site_functions.php which can be included at the bottom of cookie_login.php? That is a perfect place to put the next function, for bbpress login, but it can just as well go inside cookie_login.php itself. The function overwrites the bbpress native wp_validate_auth_cookie function, found in /bb-includes/pluggable.php, with one of our own, which is as follows:

function wp_validate_auth_cookie($cookie = '') {

global $site_user;

if (!isset($site_user->ID)){

return false;

}else{

return $site_user->ID;

}

}

This is used internally by bbpress to allow the login to proceed.

Next, open /wp-login.php and find the case: logout section, and add the following right after it:

setcookie('site_cookie',$_COOKIE['site_cookie'],time()-9600,'/','.SITE.com');

setcookie('PHPSESSID',$_COOKIE['PHPSESSID'],time()-9600,'/','.SITE.com');'



Finally, and this may be only applicable for subdomain usage, open /wp-includes/pluggable.php and find the function wp_safe_redirect. Add subdomains you want redirects to in the $allowed_hosts array, for example:

$allowed_hosts[]=”bbpress.SITE.com”;

$allowed_hosts[]=”test_wordpres.SITE.com”;`

etc…

That’s all (I think) that I had to do. This is probably not ideal, as there are now two copies of a user when hey login, one defined in our new system and one in the wordpress/bbpress systems; however I found this necessary to have happen since I didn’t want to go through all the core code and edit out mention of $user.

Let me know if this works for you, I hope it was coherant enough. I may have accidentally omitted sections since, as I said before, this is the result of a few weeks of on-and-off tweaks and changes. I can always dig into code and find things I missed if I know what problems are occurring. Also, if anyone is interested, I altered a private messenging system I found which was a little outdated (http://www.pixel2life.com/publish/tutorials/608/simple_private_messaging_system/) to work with this model as well. Users can PM one another from within the wordpress dashboard, and message indicators are noted in the header throughout their visit (in wordpress, bbpress, and other subsites).

[Null]

Hi,

Thanks for the reply, I’ll try your suggested “untested theoretical plugin”. But what does the 999 stand for? Just learning