On our 3.0.2.0 system, I went through the install of VQmod and crsf30 with no apparent errors.
Our install of 3.0.2.0 is very much standard, so I did NOT perform any edits of the csrf.xml; rather, I used it as supplied.
I am not sure it is "working" and unsure how to check. I have reviewed the first message of this forum and am not sure what type of result I should be looking for/at.
Could someone confirm a quick way for us to confirm if the install is working?
Thanks..
Code: Select all
<input type="hidden" name="__csrf" value="***">
Assistance would be appreciated.
The only requirement is to edit your XML file by targeting the right path and file of each TWIG files until you notice the __csrf key input.imager wrote: ↑Mon Jan 18, 2021 8:51 amI had a better look, and I see on my login to the Admin page, there is the necessary:
Should I also be protecting pages such as Change Password and Edit Account pages? I believe I should be, and confirmed that the hidden field is not showing up on those pages. What is involved in adding it to those pages (I am not even sure of OC 3.0.2.0 TWIG file names for those pages to have VQMod do the changes on).Code: Select all
<input type="hidden" name="__csrf" value="***">
Assistance would be appreciated.
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
This question has been asked for many times,straightlight wrote: ↑Mon Jan 18, 2021 1:32 pm
The only requirement is to edit your XML file by targeting the right path and file of each TWIG files until you notice the __csrf key input.
I think its time to put the default theme twig path in xml file to let people understand that what and which is need to be added.
Urgent Questions shoot here: khnaz35@gmail.com
Enjoy nature
By doing that, it would mislead the people downloading extension themes where the default theme folder is being overwritten and taking the lead to the original default theme folder even though we're informing the users on an everyday basis not to do that. In results, non-knowledgeable users would then believe that the extension might be the problem while the default folder could be replaced. In addition, using custom themes, as opposed to the default theme is of course the right course of action but, yet, to know how to deal with custom theme paths while using the default theme.khnaz35 wrote: ↑Mon Jan 18, 2021 11:00 pmThis question has been asked for many times,straightlight wrote: ↑Mon Jan 18, 2021 1:32 pm
The only requirement is to edit your XML file by targeting the right path and file of each TWIG files until you notice the __csrf key input.
I think its time to put the default theme twig path in xml file to let people understand that what and which is need to be added.
Based on these observations, I think time would need to be set to another time.
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
That's a good idea, since OC 4 is also on its way and OCMOD is remove from it.straightlight wrote: ↑Wed Jan 20, 2021 9:04 amMay be I should release Events version of this extension.
Urgent Questions shoot here: khnaz35@gmail.com
Enjoy nature
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Thanks Straightlight for your time and effort and trying to keep this OC safe as much as possible.straightlight wrote: ↑Wed Jan 20, 2021 1:23 pmAlright folks here it is: https://www.opencart.com/index.php?rout ... on_id=4773 . I have deprecated the previous releases. From now on, it's the Events version. Full instructions posted on the Marketplace starting from today's date (and from this post's date).
Urgent Questions shoot here: khnaz35@gmail.com
Enjoy nature
Regards,
Nightwing
Access to my Free Extensions: https://www.opencart.com/index.php?rout ... =nightwing
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
I found this module, but I have Opencart 1.5.6 running at the moment (yes, it will be updated soon).
Does this work for OC 1.5.6 or do you have an old fix that you can send me?
Regards, Micke
The v4.x releases supports OC v3.x releases only now with the exception of the Template Switcher extension which could probably be used with lower OC versions but above and equal to 2.2.0.0 release of OC. However, I do recommend to upgrade to OC v3.x releases still.micke6559 wrote: ↑Fri Jan 22, 2021 3:48 amI have had some troubles with a bot that is creating new customers.
I found this module, but I have Opencart 1.5.6 running at the moment (yes, it will be updated soon).
Does this work for OC 1.5.6 or do you have an old fix that you can send me?
Regards, Micke
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
OC 3.0.3.5 with default theme.
I have downloaded and install the latest csrf extension and upon installing i have run into the error. When click to install button and it just says "error".
Checking the developer console it shows 500 error code and these are errors codes in php error log.
Code: Select all
[23-Jan-2021 14:02:54 UTC] PHP Parse error: syntax error, unexpected '$this' (T_VARIABLE), expecting ')' in /home/asdfghbjk/public_html/xxx/test/admin/controller/extension/module/sl_csrf.php on line 2210
[23-Jan-2021 14:03:11 UTC] PHP Parse error: syntax error, unexpected '$this' (T_VARIABLE), expecting ')' in /home/asdfghbjk/public_html/xxx/test/admin/controller/extension/module/sl_csrf.php on line 2210
[23-Jan-2021 14:03:27 UTC] PHP Parse error: syntax error, unexpected '$this' (T_VARIABLE), expecting ')' in /home/asdfghbjk/public_html/xxx/test/admin/controller/extension/module/sl_csrf.php on line 2210
[23-Jan-2021 14:09:07 UTC] PHP Parse error: syntax error, unexpected '$this' (T_VARIABLE), expecting ')' in /home/asdfghbjk/public_html/xxx/test/admin/controller/extension/module/sl_csrf.php on line 2210
Attachments
Screenshot at Jan 23 22-12-12.png (189.62 KiB) Viewed 6034 times
Screenshot at Jan 23.png (267.04 KiB) Viewed 6034 times
Urgent Questions shoot here: khnaz35@gmail.com
Enjoy nature
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Code: Select all
$this->model_setting_event->deleteEventByCode('admin_sl_csrf_payment_payza');
Urgent Questions shoot here: khnaz35@gmail.com
Enjoy nature
By looking at that code, there doesn't seem to be anything wrong with it. See if any whitespace characters above or underneath it at the end of the lines.khnaz35 wrote: ↑Sun Jan 24, 2021 12:00 amCode: Select all
$this->model_setting_event->deleteEventByCode('admin_sl_csrf_payment_payza');
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Users browsing this forum: No registered users and 165 guests