vb.org Archive
Page 9 of 15 « First 78 9 1011 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.5 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=113)
-   -   User Integration: 4images Gallery 1.7.2 + vB 3.5.4 (https://vborg.vbsupport.ru/showthread.php?t=98640)

Paprika 04-23-2006 04:46 AM
I'm going to hate to have my gallery and foum have different user bases, but this bridge or whatever is having cookie problems for me, so bad I can't always log-in, and when i do it doesn't stay logged-in.

obmob 05-17-2006 02:32 AM
Well, hope this isn't a problem, i compared 1.7.1 hack with 1.7.2 files, this is the result, isn't the same as in 1.7.2 release by mtha, so make sure you save a copy in case you don't like how this works.

So far i don't have more complains about system kicking people out after a while. But i don't know, i think something is missing, and didn't attach login template cause i can't make it redirect to 4images.

Don't know why, but the new release by mtha isn't working for me. :(

vBFreak 05-29-2006 01:34 AM
*** Warning, important security hole fix ***

Since there's a sql injection security issue in sessions.php of 4images 1.7.1/1.7.2, V@no from 4images has also made an extra fix for the vBulletin users because they're also affected, even if the code to change on the 4images website seems to be not in the modified sessions.php the hole is in there in another line...

My gallery was affected and got sql injected by some spambots, so I think it's good for you to know that :)

Find:
Code:
  function get_session_id() {
    global $HTTP_GET_VARS, $HTTP_POST_VARS;
    if ($this->session_id = $this->read_cookie_data(COOKIE_PREFIX."sessionhash")) {
      $this->mode = "cookie";
    }
    else {
      if (isset($HTTP_GET_VARS[SESSION_NAME])) {
        $this->session_id = $HTTP_GET_VARS[SESSION_NAME];
      }
      elseif (isset($HTTP_POST_VARS[SESSION_NAME])) {
        $this->session_id = $HTTP_POST_VARS[SESSION_NAME];
      }
      else {
        $this->session_id = false;
      }
    }
  }
Replace it with:
Code:
  function get_session_id() {
    global $HTTP_GET_VARS, $HTTP_POST_VARS;
    if ($this->session_id = $this->read_cookie_data(COOKIE_PREFIX."sessionhash")) {
      $this->mode = "cookie";
    }
    else {
      if (isset($HTTP_GET_VARS[SESSION_NAME])) {
        $this->session_id = $HTTP_GET_VARS[SESSION_NAME];
      }
      elseif (isset($HTTP_POST_VARS[SESSION_NAME])) {
        $this->session_id = $HTTP_POST_VARS[SESSION_NAME];
      }
      else {
        $this->session_id = false;
      }
    }
    $this->session_id = preg_replace('/[^a-z0-9]+/i', '', $this->session_id);
  }
The original thread can be found here (my request for a vB fix is on page 2)

kai3k 06-02-2006 05:05 PM
Ok, thanks.

edited and works without any problems. :up:

redlabour 06-08-2006 05:46 PM
Does it works with vBulletin 3.6 BETA ?

xec 06-09-2006 08:11 AM
Hi, I am working with 4images 1.7.2 and vBulletin 3.5.4


One of the changes in sessions.php is

define('ALBUM_FOLDER','/album/'); //Your Album Folder WITH trailing slash

Does this mean the root of 4images gallery? I have installed 4images at the root (www.mydomain.com). So would I need to change that to(?):

define('ALBUM_FOLDER','http://www.mydomain.com/'); //Your Album Folder WITH trailing slash




Also, for constants.php it has

define('SCRIPT_URL', 'http://www.YOURWEBSITE.org/album'); //no trailing slash

So would I need to make that(?):

define('SCRIPT_URL', 'http://www.mydomain.com'); //no trailing slash

Since my 4images gallery is installed at www.mydomain.com

Thank you for your time.

Blackmana 06-16-2006 06:37 PM
Quote:
Originally Posted by Paprika
My problem actually still presists too..

At first after the upgrade I thought it was working correctly but a day or two later I go back to the gallery and see myself logged-out. Then I goto the forum and it has me logged-in.

So I go back to the gallery and logg-in but still it doesn't see me as being logged in.

Even logging-out completely and logging back in won't get me in...

WTF
yes :( this problem me too... somebody help me please? I can't logg-in control panel, because i cant see control panel button (vbulletin is ok).. screen:

obmob 06-19-2006 04:50 PM
u.u i gave up with 4images... i really love it, but it's not the best to work with vB.

vBFreak 07-27-2006 12:52 AM
Hrm, any tests available with vB 3.5 and 4images 1.7.3 or even vB 3.6 and 4images 1.7.3 yet?

Would like to know if it works before I update at least to 1.7.3 which is recommended by 4homepages because of the fixed security holes and bugs...

mtha 07-28-2006 01:19 AM
Dear all,

Even though that I like 4images alot (I like it much more than most other script), I need to move to a different album management, that fit better with our website (not because of the intergration).

Besides, I dont really have much time spending on this, so, if there is anyone who is inspired enough by this hack, and by 4images, can take care of the intergration, and give support, that would really be great.

I try the best of what I can do, but I cant promise much

Thank you very much for all of your supports by using the intergration.

mtha.

PS. If no one want to work on the matter, I promise I will clean up the code, and change the way the integration work, so that it might work better.


All times are GMT. The time now is 12:46 PM.
Page 9 of 15 « First 78 9 1011 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01096 seconds
  • Memory Usage 1,746KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_code_printable
  • (1)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete