[00:04] Bsfez joined #tikiwiki [00:07] montefuscolo joined #tikiwiki [00:48] Tiki-KGB 03chealer r61279 10trunk/lib/theme/themelib.php [00:48] Tiki-KGB [REF] get_theme_path(): Fix my question [00:48] Tiki-KGB Oops [00:58] Bsfez joined #tikiwiki [01:02] olinuxx joined #tikiwiki [01:52] Bsfez joined #tikiwiki [02:38] Caarrie joined #tikiwiki [02:47] Bsfez joined #tikiwiki [02:59] fabricius joined #tikiwiki [03:22] Tiki-KGB 03chealer r61280 10trunk/lib/core/Services/Utilities.php [03:22] Tiki-KGB [REF] Fix Id line [03:22] Tiki-KGB [REF] Fix typo "CSFR" in method descriptions [03:41] Bsfez joined #tikiwiki [04:18] nelsonko joined #tikiwiki [04:35] Bsfez joined #tikiwiki [05:29] Bsfez joined #tikiwiki [05:47] Bsfez joined #tikiwiki [06:24] Bsfez joined #tikiwiki [06:32] BOT_ joined #tikiwiki [06:32] BOT_ Hi [06:32] BOT_ Hii [06:32] BOT_ Hello? [06:33] BOT_ left #tikiwiki [07:09] Bsfez joined #tikiwiki [07:20] guest6636 joined #tikiwiki [08:38] Grugi joined #tikiwiki [08:38] Grugi Good Morning [08:42] Grugi i have a problem with my LDAP Configuration. I use a Active Directory. The Log Message: Connect Host: ldap://xx@xx.xx:389. Binddn: xx@xx.xx at line 225 in /var/www/tiki-16.2/lib/auth/ldap.php UserLib::validate_user_ldap() [09:38] joshuachen3333 joined #tikiwiki [09:39] joshuachen3333 Hello folks, I am new to tikiwiki (and this channel) [09:50] joshuachen3333 my tiki site was hacked, some phishing site was planted at /tiki/dump/amazon/sellercentral.amazon.co.uk [09:51] Bsfez Hello joshuachen3333 what version ? [10:01] joshuachen3333 thanks Bsfez [10:01] joshuachen3333 let me check [10:01] Bsfez We released several security fixe lately [10:02] joshuachen3333 it is 12.6 [10:02] Bsfez aoutch... [10:02] joshuachen3333 but my boss want me to identify the hole before re-opening it [10:02] joshuachen3333 anything interesting? [10:03] Bsfez The actual version of your Tiki is 12.11 I think. And the actual Tiki version (long term service) is 15.4 [10:03] joshuachen3333 any know cvs that caused the dump area upload [10:04] joshuachen3333 I saw the zip file named 12.6.zip [10:04] joshuachen3333 or where could I find the real version info, I am not the admin user but the linux root [10:04] Bsfez https://tiki.org/Download [10:05] joshuachen3333 tiki12.6.zip [10:05] joshuachen3333 thanks Bsfez [10:06] Bsfez oh on your system, sorry: README it should say what version was installed [10:07] Bsfez I work most of the time with svn version but README should do it [10:07] joshuachen3333 yes, it says 12.6 [10:07] Bsfez I suggest you put aside your Tiki and recreate a brand new one using https://tiki.org/Download. [10:08] joshuachen3333 if I download the lastest stable (16.2) version, and somehow try to copy the existing 12.6 hacked site onto the new 16.2 fresh site [10:08] joshuachen3333 does this make sense? following the upgrading procedures [10:08] Bsfez 12.6 to 16.2 is a big jump :) [10:09] Bsfez did you customize files in the tiki ? (themes, custom, ?) [10:09] joshuachen3333 if I jump several hops,,, [10:09] joshuachen3333 yes [10:09] Bsfez themes only ? [10:25] joshuachen3333 I will have to check it with the admin, my colleagues [10:26] joshuachen3333 very much customized [10:27] joshuachen3333 Could you tell me what else to replace (themes and ?), [10:27] Bsfez then you could stick with 12.x version (we implement the security patch in Tiki 12.11 : https://doc.tiki.org/Tiki12) as it is still supported [10:27] joshuachen3333 Do I have to check each file and find the replacing list? [10:28] joshuachen3333 I see, just jump from 12.6 to 12.11 [10:28] Bsfez No, but hard to tell like this... It depends how it was done [10:28] Bsfez yes [10:29] joshuachen3333 ok, let me do 12.6 -> 12.11 first [10:29] Bsfez but on a new breed, there are too many chances you will bring back a hacked file (and it is very hard to check them all) [10:29] Bsfez please, new directory and db duplication :) [10:30] joshuachen3333 yes, I am also afraid of this bring back hacked files [10:30] Bsfez If I'm not around and you need me, find me here : http://tiki.org/consultants [10:31] Bsfez good luck ! [10:31] joshuachen3333 Thanks Bsfez [10:32] Bsfez very welcome [11:01] Jyhem hi guys [11:02] Bsfez Hi jyhem [11:04] Jyhem joshuachen3333: Bsfez is right on all accounts. I just wanted to point out you are using an LTS version (12), so depending on your use case, the most up to date is either 16.x (latest), or 15.x (latest LTS) [11:05] Jyhem hi Bsfez :-) [11:06] joshuachen3333 ok, I am applying for the budget to solve this hacking problem [11:07] Bsfez (y) [11:07] Bsfez (irc don't know the thumbup sign) :D [11:07] joshuachen3333 My goal is to copy the customized things and DB as much as possible, providing the 12.6 hole is guaranteed gone and then build the new site on a new LTS version (as new as possible) [11:08] joshuachen3333 anybody guru expert could send me the quotation or further plan? [11:09] Bsfez There are several that can help you with that : http://tiki.org/consultants [11:10] Bsfez It is better you check there and contact the one that look up to the task, then check availability, etc. [11:11] joshuachen3333 do I have to contact them one by one, or is there a bulltin board I could post? [11:14] jonnyb polomonday [11:16] Bsfez If you want to do it by yourself, you can ask questions here or on our list : https://tiki.org/Community [11:16] olinuxx joined #tikiwiki [11:16] Bsfez If you want someone to do it for you, then I guess: http://tiki.org/consultants [11:16] Bsfez Hi Jonny [11:17] jonnyb Hi Bsfez [11:18] Bsfez (diving back into a Tiki15.2 upgrade) [11:37] Jyhem joshuachen3333: personal message [11:39] Grugi Hey Guys, i have a problem with my LDAP Configuration. I use a Active Directory. The Log Message: Connect Host: ldap://xx@xx.xx:389. Binddn: xx@xx.xx at line 225 in /var/www/tiki-16.2/lib/auth/ldap.php UserLib::validate_user_ldap() [11:40] Grugi I get a 500 HTTP Error by logon [11:45] Bsfez https://doc.tiki.org/LDAP+authentication ? [11:46] Bsfez (sorry I'm not very good with ldap) [11:56] RadoS Grugi, have you been here before today with that LDAP thing? Sounds familiar... [11:56] * RadoS ... o O ( deja vu ) [11:57] Galaxis Ah, some more activity than on sunday now :) [12:00] Galaxis So I'm trying to make SEF URLs work on lighttpd in a 15.4 installation. As I understand the apache .htaccess, a simple redirect for everything that's not actually a file to route.php should work. [12:01] Galaxis ...and it mostly does for all the major things, but some of the Javascript gets broken - I've noticed comments and wiki edit previews [12:02] Galaxis Is there something I have missed that needs to be done in addition to that redirect? [12:43] Bsfez joined #tikiwiki [12:49] fabricius joined #tikiwiki [12:57] RadoS Grugi, anyway, I posted my ldap setup here: https://tiki.org/UserPageRadoS , if you use the same and still have issues, then cross-check all your params regarding OU paths. I got stuck, too, because I specified wrong paths. [13:03] Grugi User DN? What does the DN stand for? [13:08] RadoS Forgot, something like distinctive name. [13:08] RadoS ? [13:34] Grugi And what is with User OC? [13:43] Grugi HTTP ERROR 500 still there [13:46] fabricius joined #tikiwiki [13:46] Grugi my ldap.conf File under /var/www/tiki/lib/auth/ldap.php does not change. Do i have to change there something? [13:54] RadoS Grugi, OC maybe object class. [13:55] RadoS Hmm, which version you play with? [13:55] RadoS Ah I see, 16.2 [13:55] RadoS Sorry, still sitting on 15.x [13:56] RadoS Grugi, AFAIK there is no ldap.conf, you configure everything in the ldap control panel. [13:58] Grugi Sorry i mean ldap.php [13:58] RadoS Have somebody cross-check your setup for you, maybe you typoed something. [13:58] Grugi My fault. [13:58] RadoS Either wrong user or pass word at some point. [14:00] RadoS Or AD path for user objects. [14:06] Grugi RadoS: LDAP USER User DN CN=where to finde my users right? [14:10] fabricius joined #tikiwiki [14:12] RadoS Grugi, yep. [14:13] RadoS erhm.. [14:13] RadoS Rephrase [14:33] Tiki|Log joined #tikiwiki [14:33] Topic for #tikiwikiis now Tiki - the one and only Free & Open Source Software wiki-based CMS with the most built-in features! Latest Tiki 16.2 version is out! For LTS get 15.4 or 12.11. Question? Just ask! We log the channel @ http://irc.tiki.org (start line with [off] to exclude your message from the log) [14:40] Bsfez joined #tikiwiki [14:44] fabricius . [14:51] Grugi That is my Base DN. DC=myservername,DC=mydomain,DC=de [14:51] Grugi Correct? [14:53] RadoS Grugi, sounds good. [14:53] RadoS Yet it depends in your AD structure. [14:53] Grugi no way [14:53] RadoS You might go deeper. [14:54] RadoS Your users might be not at top-level but somewhere down the road in nested OUs. [14:57] Grugi Do i have to activate the ldap addon via Webinterface? [14:57] RadoS Yes. [14:58] RadoS And you must provide the required php-libs. [15:07] Grugi how can i activate the addon? [15:08] Grugi The php-libs have i [15:09] Grugi Activate Addons under Admin panel ->funktion ->addons is empty [15:10] Tiki-KGB 03kroky6 r61283 10trunk/tiki-tracker_http_request.php [15:10] Tiki-KGB [FIX] DynamicItemsList field using ItemLink-to-ItemLink as connction was comparing value against id wrongly; it now compares the ids [15:10] Tiki-KGB 03kroky6 r61284 10branches/ 1016.x/tiki-tracker_http_request.php 1016.x [15:10] Tiki-KGB [bp/r61283] [FIX] DynamicItemsList field using ItemLink-to-ItemLink as connction was comparing value against id wrongly; it now compares the ids [15:14] Tiki-KGB 03kroky6 r61285 10branches/ 1015.x/tiki-tracker_http_request.php 1015.x [15:14] Tiki-KGB [bp/r61283] [FIX] DynamicItemsList field using ItemLink-to-ItemLink as connction was comparing value against id wrongly; it now compares the ids [15:21] Grugi where can i download the ldap addon? [15:21] redflo joined #tikiwiki [15:29] RadoS Grugi, in the "Login" section set type to "ldap". [15:30] RadoS But ... you did that already, since you have the error msg. :) [15:32] RadoS I suspect you have the same problem I had back then: wrong AD paths for base, user, group config; _AND/OR_ wrong user+pw for the "admin user". [15:33] Grugi If i have misstake in the paths then i get a HTTP Error 500? [15:34] Bsfez joined #tikiwiki [15:35] nelsonko joined #tikiwiki [15:35] RadoS Grugi, the 500 error is .. what? [15:36] RadoS Grugi, yes, I think so. [15:36] Grugi Mhhm. Okay. I will check the paths [15:37] Grugi AGAIN :-) [15:38] RadoS Grugi, since you work with 16.x and my experience is only with 15.x, not all what I say might apply to you. Do you use AD groups, too? [15:39] Grugi yes i use [15:51] jonnyb joined #tikiwiki [15:54] Bsfez joined #tikiwiki [15:54] Bsfez joined #tikiwiki [15:59] RadoS Grugi, in 15.x I had to change some php-file, because it was broken, not sure wether this still applies to you with 16.2, see https://dev.tiki.org/item5657 [16:00] RadoS After you "repair" that, use "clear all caches" in admin menu. [16:24] Grugi the admin login doesn't go too right now [16:33] RadoS Heh, then you are now where I was! :) [16:35] RadoS _I_ only could repairs this brokeness by changing the database value for the login method back to "tiki-only". Then 1st repair the group code in the php from the ticket, then clear caches, then change back to tiki+ldap. [16:38] jonnybradley joined #tikiwiki [17:03] nelsonko joined #tikiwiki [18:12] Tiki-KGB 03chealer r61286 10trim/scripts/backup.php * [REF] Reformat [18:32] Tiki-KGB 03chealer r61287 10trim/src/instancelib.php * [REF] Reformat [18:46] montefuscolo joined #tikiwiki [18:57] Telesight joined #tikiwiki [19:04] Tiki-KGB 03jonnybradley r61288 10trunk/ 10templates/admin/include_login.tpl 10lib/captcha/captchalib.php 10admin/include_login.php [19:04] Tiki-KGB [FIX] captcha: Show a useful error instead of WSoD on registration if the server doesn't have PHP7 or RandomLib, and add a warning box on admin/login (thanks marclaporte) TODO RandomLib [19:10] Tiki-KGB 03jonnybradley r61289 10branches/ 10(5 files in 5 dirs) [19:10] Tiki-KGB [bp/r61288][FIX] captcha: Show a useful error instead of WSoD on registration if the server doesn't have PHP7 or RandomLib, and add a warning box on admin/login (thanks marclaporte) TODO RandomLib [19:41] guest6636 joined #tikiwiki [19:42] Tiki-KGB 03jonnybradley r61290 10trunk/tiki-check.php * [FIX] check: Warn on \Zend\Math\Rand not being available [20:12] Tiki-KGB 03jonnybradley r61291 10trunk/tiki-check.php [20:12] Tiki-KGB [FIX] check: Zend\Math\Rand is only there to test if not standalone (thanks again marclaporte) [20:30] montefuscolo How can I add a feature to admin? [20:31] montefuscolo I'm reading bigbluebutton as example, but I couldn't figure out how to place new options in Admin panel [20:40] Tiki-KGB 03jonnybradley r61292 10trunk/composer.lock * [UPD] Rebuild composer.lock to remove Sam152 checksum error (and maybe more) [20:40] jonnybradley hi montefuscolo [20:40] montefuscolo hello jonnybradley [20:40] montefuscolo polom :D [20:40] jonnybradley you added it in a setup/prefs file so far? [20:41] jonnybradley next is to add it to one of the include_***.tpl templates, that makes it show up in the panel [20:41] montefuscolo jonnybradley, as I saw in bigbluebutton, I created file prefs/conversejs.php [20:41] jonnybradley you use a {preference name=xxx} syntax [20:41] luciash pom pom [20:42] jonnybradley moq moq [20:42] luciash :) [20:44] marclaporte joined #tikiwiki [20:44] jonnybradley montefuscolo: maybe call it something more generic? like prefs/xmpp.php? [20:44] jonnybradley just in case one day we change the lib [20:45] montefuscolo jonnybradley, ok! [20:45] jonnybradley and are you going to make a new admin panel, i think we discussed calling it rtc for real time collaboration? [20:45] luciash montefuscolo: https://dev.tiki.org/Hello+World#To_introduce_a_new_feature_or_a_new_preference [20:46] jonnybradley so you need files include_rtc.php and include_rtc.tpl (in the fright places, plus icons etc ;) ) [20:46] jonnybradley right not fright :) [20:46] marclaporte tiki-admin.php?page=rtc will be nice [20:46] montefuscolo luciash, thank you very much! [20:47] marclaporte The dreaded task is to find an icon! [20:47] luciash aye :) [20:47] jonnybradley oh yes, and of course there are doc pages on dev! thanks luciash :) [20:47] montefuscolo jonnybradley, so .. feature is xmpp.php and templates are include_rtc.tpl ? [20:48] marclaporte https://sourceforge.net/p/tikiwiki/code/HEAD/tree/trunk/lib/prefs/ [20:48] luciash there is smarty plugin iirc [20:48] jonnybradley well, the prefs file would be lib/setup/prefs/xmpp.php [20:48] luciash https://dev.tiki.org/Code+Howto%3A+Add+a+preference+to+an+admin+panel [20:49] jonnybradley but the feature would be... mmmm, xmpp_enable? [20:49] jonnybradley we try not to add more stuff in feature.php as it's really overloaded [20:49] luciash ah, feature, sorry, this is just for prefs [20:50] jonnybradley so they all start xmpp_ like xmpp_host and xmpp_port etc [20:51] montefuscolo ok! [20:52] montefuscolo marclaporte, Can I assume that our feature rely on OpenFire ? [20:52] jonnybradley this one's a failry good one to use as an exmaple lib/prefs/memcache.php (thanks marclaporte) [20:52] montefuscolo nice!! ... bigbluebutton is too big to be an example [20:53] marclaporte montefuscolo: it should work with any XMPP server [20:53] jonnybradley hmm, memcache has even more stuff, bbb is probably pretty good actually :P [20:54] marclaporte Openfire is our reference implementation so we make sure it works there. But in theory, it should work with any XMPP server as long as we follow the standards [20:55] montefuscolo marclaporte, I'll check if converse.js create rooms programatically, but I saw this feature only in OpenFire [20:58] jonnybradley plus montefuscolo, you get to choose the new admin panel icon, pick from http://fontawesome.io/icons - something we're not using so far that looks chatty (and awesome ;) ) [21:02] marclaporte montefuscolo: For more specific things for Openfire, we may want to use https://packagist.org/packages/gidkom/php-openfire-restapi [21:04] marclaporte montefuscolo: this needs to be retired but just FYI: https://sourceforge.net/p/tikiwiki/code/HEAD/tree/trunk/lib/wiki-plugins/wikiplugin_jabber.php [21:05] montefuscolo cool! [21:05] marclaporte montefuscolo: Here is something similar to get ideas: https://sourceforge.net/p/tikiwiki/code/HEAD/tree/trunk/lib/wiki-plugins/wikiplugin_bigbluebutton.php [21:07] marclaporte but it's a bit of a different paradigm. BigBlueButton is a group conference, whereas ConverseJS starts with the 1 on 1 chat (group chat is with https://github.com/jcbrand/inverse.js ) [21:08] marclaporte you can see in action here: https://tiki.org/live [21:10] marclaporte food time. good luck! [21:19] Bsfez joined #tikiwiki [21:34] montefuscolo Bon apetit [22:09] roerkan joined #tikiwiki [22:57] Void__ joined #tikiwiki [23:08] Bsfez joined #tikiwiki [23:08] jonnyb joined #tikiwiki [23:14] fabricius joined #tikiwiki