blynx

Members
  • Content count

    169
  • Joined

  • Last visited

  • Days Won

    2

blynx last won the day on July 4 2017

blynx had the most liked content!

Community Reputation

222 Excellent

1 Follower

About blynx

  • Rank
    Sr. Member

Contact Methods

  • Website URL
    http://www.steffenhenschel.com

Profile Information

  • Gender
    Not Telling
  • Location
    Germany

Recent Profile Visitors

2,246 profile views
  1. Yep, stumbled upon gitkraken, too. I don't know - If I have the choice I prefer native applications / applications with a more native looking UI. That's also why I don't use GitHub desktop. 🤷‍♂️
  2. +1 for Tower! Switched away from Sourcetree because it requires an account now. For now, Tower/Sourcetree/... are easier for me to handle all kinds of git-things apart from simple commit/push/pull like for example: rebase, stash, squash, ... and it is visually nice. I also use vs code. It is still nice to browse diffs in it or just to have a convenient second place to commit/push.
  3. if($flip) { echo "H" } You are exactly right, I think you just miss a thought: The condition relates to the value of $flip. The value is either 0 or 1. And in PHP, 1 in a condition is “like” true, and 0 is “like” false. So $flip may be 1. In that case PHP will coerce it to true and finally print H because the condition is met. If $flip is 0, PHP will coerce that to false and print T because the condition for the if() was not met. So the else block is executed. Hope that helps?
  4. Hm, if you view a WordPress frontend with populated data and copy/paste the source you have more or less an HTML theme? Apart from that, there will still be manual work.
  5. Yeah, that was my idea first, too. Then I remembered the token field. But you can force login a user with the other approach. I think in this case the token is not really useful since you have to authenticate manually on every request anyway. The token is a prevention of CSRF attacks: https://de.wikipedia.org/wiki/Cross-Site-Request-Forgery. As I understand it correctly, it ensures that any potentially harmful request to the server is really made by you, the person using the website/app, and not someone else who might have tricked you to send a bad request. Any request is only executed if it includes the correct tokens. @monchu Mh, then it depends. I would not recommend this approach, because you would have to put the credentials into the script, since you cannot (don't want to) ask for name and password every time. I guess putting plain text passwords into scripts is not so cool. ;P But yes, it is “possible”. Otherwise, a simpler way would be to use a “supersecret-obfuscated-url”—while keeping in mind that this is just security by obscurity and in fact the url will be public. It might be just fine if the content is not “classified”-secret but just “it just should not be so easy to find”-secret. Make sure to exclude the pages from any sitemaps, etc. ... If you have some admin/ssh access to the server you could use scp (scp?, download file with scp) - using ssh authentication. Or any kind of secure command thing. sftp? Maybe even curl. Not sure ... I think it depends on what you want to achieve. Btw. I would like to put a little disclaimer here, that I am by no means a security expert - these are just pieces of my humble knowledge and please regard all of it just as hints for further own research! Anyone with profound knowledge is invited to complement and/or correct
  6. Hi, Regarding the shell script, I assume you are talking about curl and the like? I don't know exactly - haven't tried specifically this, yet, but I think this could be roughly the right direction. (Just some thoughts about how I would probably approach this taking the script direction) That page/template which handles the document could be an endpoint for a custom login-like GET request. In your shell script, promt for unsername and password and send them in the url parameters to that url via curl (using https these are encrypted). An additional parameter like “cli-document-request=1” could be handy to distinguish the different requests in your template. (web browser vs. curl). See if the login succeeds and deliver the contents of the file. You have to look up the exact curl command by yourself, I don't use it that often Random helpful stuff for inspiration: download with curl: http://osxdaily.com/2014/02/13/download-with-curl/ curl: https://curl.haxx.se/docs/manpage.html prompt for password, without echoing password: https://stackoverflow.com/questions/3980668/how-to-get-a-password-from-a-shell-script-without-echoing#3980904 https://askubuntu.com/questions/299870/http-post-and-get-using-curl-in-linux (aha, you can also “log in” with curl → I am sure there are even more advanced techniques using curl for a more proper authentication, but the above might be just fine.) hope that was helpful (If you have any more specific questions don't hesitate to ask) best wishes Steffen
  7. Let me be nitpicky here ... „no“ ... I would describe it like this: Responsiveness is a characteristic of the resulting website or app. It is achieved through technologies like CSS grid, media queries, Javascript, etc. etc. ... but indeed, CSS grids can make it extremely easy in certain situations to create responsive websites. The question regarding „bootstrap vs. css grid“ is not if any of them is responsive, but wether you want to do some work by hand and learn the underlying tech (no bootstrap) or you rather want to build a website relatively quickly with ready-made pieces of code (yay bootstrap).
  8. CSS grid is „just“ new CSS technology which bootstrap will most certainly adopt in the future - just like the newer frontend frameworks are using flexbox now. It allows some pretty neat and clever layouting. CSS grid, just like all other CSS (flexbox, float, etc, etc ...) is the underlying technology the frameworks rely on. It is roughly a matter of „will readymade feature X / Y / Z of bootstrap easen the development of the project“ and „which browser versions do I need to support at reasonable effort“ to decide on using frontend frameworks. https://gridbyexample.com/examples/ https://css-tricks.com/snippets/css/complete-guide-grid/ cheers
  9. Nice! But I wonder if the JWT are really necessary here—or why the implementation? Doesn't the server session / processwire handle that already?
  10. Hi! I am not an expert there, yet, but here is a nice general talk about writing modes. Maybe it helps - "generally". cheers The
  11. ah yep, noticed that the captions were missing the other day. Will look into it!
  12. Hm! This is weird - but it looks like a permissions problem on your side? I guess you can fix this by setting the file/folder permissions. I couldn't find anything wrong here at my place - is the folder name of the module correct? How did you install it? Sorry for the trouble - will have a closer look later the week Maybe try a fresh installation of the module for now -
  13. Although I don't believe this is would be coming any time soon, I'd just like to leave a note here that I would really really really enjoy sqlite for processwire very much. It would be so much easier to handle and synchronise smaller sites just by version controlling the files of the project. *sigh* ... could the FileCompiler offer a new approach on creating a universal compatibility especially for 3rd party modules?