Jump to content

netcarver

PW-Moderators
  • Content Count

    1,696
  • Joined

  • Last visited

  • Days Won

    32

Everything posted by netcarver

  1. @Sergio Thanks for posting those links! Anyone else?
  2. @wbmnfktr Thank you, gleaned a lead from that old thread. Everyone; Still interested in seeing live PW sites running on Nginx, so please post if you know of any.
  3. Can anyone point me to some PW sites that are live and use Nginx as part of the stack? A pointer to the forum member responsible would also be great.
  4. Sorry, I have no regular script for this but mysqldump is good for creating a db.sql file that you can then store under git. You may be able to use something like a pre-commit git hook to automate the dump as part of your git workflow. https://github.com/DavidJRobertson/ProcessWire-ScheduleCloudBackups might be useful for live site backups - I've not used it myself. Wasabi is S3 compatible and much cheaper.
  5. @OrganizedFellow Do think about backing up your drive now. If it's starting to fail, this could be an early warning for you.
  6. Did you push this repo anywhere? Github, gitlab, bitbucket, co-worker's machine etc? If so, you can pull the state back from the remote. Edited to add, if there's corruption on your local drive, you might want to think about immediately backing up your data. Try running git fsck.
  7. Do you have it in a backup you can compare it with? Or is it in a local git repo - if so, you can see what changed using git diff.
  8. Great find Sergio, thanks for posting it. Seems like I'm going to have to stop using smear/smudge on images with fields that I want to stay private. Will now have to totally overwrite said info with a block of solid colour. Just in case it gets that good 🙂 Edited to add: Very impressed with the output. This service works great!
  9. What about, in principle, having an install-time option of making all non-standard files inaccessable unless whitelisted in the .htaccess file? If chosen, the installer could use a version of .htaccess file with rules that whitelist .css, .js, .htm(l) and perhaps .json extensions by default, along with the usual image file extensions. I'm suggesting this as I have, in the past, come across client sites with .pem certificate files in the site root directory and nothing in the .htaccess file to prevent their download. I think this would allow ProCache to work, as it compiles things down to these kinds files. Am I missing something with the idea?
  10. Well, it's only day 2 of this module's use with folks other than yourself (as far as I can tell), so I wouldn't worry too much about it being "hacky" (from a code pov) at the moment. There are a few UX issues that did get me confused though, and these might be worth your consideration. Firstly, as you mentioned, the key registration process on the user account page is not intuitive. On most other websites where I have registered keys, you are allowed to name the keys and manage them individually. Whilst not being able to name/manage them is fine, I think the wording/flow of key registration could possibly be improved. Perhaps a pop-up when a key registration is successful? I ended up having to turn on the developer tools to look at the debug messages in the console to see when a registration went through OK. Secondly, could the two buttons ("Use Security Key" and "Submit") on the 2nd factor page be removed/hidden, as far as I can tell, neither of them needs to be visible - at least not for a Yubikey - as activating the key submits the page. Do these buttons need to be visible for other U2F key types?
  11. @Adam Success! Version 1.0.1 works for me. Registered 3 keys (a Yubico Security Key, a NEO and a Yubikey 4) and can log in with any of them. Thank you for the module!
  12. @Adam Not sure if this will help, but have you tried setting the maximum length for text fields to "0" in the InputfieldJsonNativeFields config page?
  13. Would using a single json-fieldtype for packing config values for multiple keys help? There are a couple I know of, but bitpoet's is probably the most up-to-date.
  14. @Adam Whilst it may be more difficult to allow multiple Yubikey's on an account, I'd definitely support a move to a Yubikey-specific module that permitted multiple key registrations. I would not want to be without a backup key registered on any accounts - potential lock-out is too risky (for me) should a lone key be lost/stolen or fail, that I still favour TOTP (on a client like Authy) over a single Yubikey on an account.
  15. @Adam Ok, I am on localhost, but not using SSL. Will try (another day now) on a test site with an SSL certificate installed. Thanks for your help so far!
  16. @Adam Thanks for the speedy update - the zip under the releases tab does now work for me and I can install the module. I'm now hitting a problem trying to activate it on the user's page. I choose U2F as the TFA method and submit the page and am then asked to click the on-screen "Add Security Key" button to enable U2F - but nothing happens when this is clicked but an error does show up in the js console in Chrome... "u2f-api-polyfill.js:545 Failed to execute 'postMessage' on 'DOMWindow': The target origin provided ('chrome-extension://kmendfapggjehodndflmmgagdbamhnfd') does not match the recipient window's origin ('null')."
  17. Ok, I missed that. Thank's Teppo.
  18. Hmm, Trying to install this via the modules installation page and getting: "Session: Error reported by web service: That module is not currently tracked by the modules directory" despite the module being present in the directory. Odd. Trying to install via the Install from zip method leads to "Compile Error: require(): Failed opening required 'php-u2flib-server/src/u2flib_server/U2F.php' (include_path='.:/usr/share/php') (line 17 of /var/www/pwgeeks.local/public_html/site/modules/TfaU2F/TfaU2F.module)" on all pages of my test site.
  19. Yes! Fantastic! This module is currently top of my list of modules to develop for Processwire - thanks so much for doing it for us! Will test with Yubikeys as soon as possible, and shorten my to-do list.
  20. Paginated forms: Looking > Forward > To > This > Alot. Thank-you!
  21. Yes, Linux here, either Mint or plain Arch depending on which machine I'm using. All my VPSs are running Ubuntu at present.
  22. @J_Szwarga Thanks for the post. If you only need to output in 12 hour format, you can probably do it like this within your template files (untested)... # Pull the values from our page's time field... $timeparts = FieldtypeTime::getTimeParts($page->timefield); # Adjust name of field as needed. # Adjust the sign $sign = (empty($timeparts['sign']) ? '+' : '-'; # Create a time, based on the start of today, with the offset hours, mins and seconds from the timeparts. # See: https://www.php.net/manual/en/function.strtotime.php $time = strtotime("today $sign {$timeparts['hours']} hours {$timeparts['mins']} mins {$timeparts['secs']} secs"); # Format it for output as needed, in this case as 12hours with lowercase am/pm marker. # See: https://www.php.net/manual/en/function.date.php echo date("ga", $time);
×
×
  • Create New...