|
|
Thanks for the heads up on this thread.
A full review of WordPress v3.5 running together with s2Member and s2Member Pro has been underway and will be completed sometime within the next few days. Required updates will be made available in the next maintenance release of our software. I’m not aware at this time of any major concerns, but there are some minor issues like the bug reported in this thread that we’re taking a closer look at before the next maintenance release.
Regarding /wp-login.php
Until the next maintenance release, you can resolve this issue by downloading the attached ZIP file. Please unzip and upload mms-patches.inc.php to your existing installation. Allowing the patched copy to override your existing copy of: /s2member/includes/classes/mms-patches.inc.php
Now, go to your Dashboard and re-run the Multisite patches provided by s2Member.
Download PATCH file: http://d1v41qemfjie0l.cloudfront.net/s2member/uploads/mms-patches.inc_.php_.zip
OR, if you don’t like patches, another option is to follow the manual instructions provided in this section of your Dashboard, which are still accurate enough to work with WordPress v3.5. Please see: Dashboard -› s2Member® -› Multisite (Config) -› Patches -› Do It Yourself
|
|
|
Thanks for the follow-up Ross.
That’s interesting to me. s2Member runs that routine (for Role configuration) automatically upon reactivation of the plugin update of s2Member itself. So when you say that clicking that button to reconfigure Roles fixed you up, it interests me. I’ve just taken a closer look, but I’ve been unable to reproduce this yet.
You mentioned earlier that you had installed the User Role Editor plugin and attempted to manipulate those bbPress roles? If so, this could be the underlying issue on your installation. I mentioned in an earlier post that attempting to edit “dynamic” Roles created by the bbPress plugin can actually cause some minor database corruption in my experimentation, because those Roles are not supposed to exist in the database. When you attempt to edit these “dynamic” Roles with the User Role Editor plugin, that’s exactly what can happen. That’s one reason why I don’t care for the approach that bbPress took in using dynamic Roles. It creates some confusion for site owners. Those dynamic Roles don’t actually exist in the database, they only exist at runtime.
s2Member’s role configuration button that you clicked on, only deals with the recreation of s2Member roles, and it modifies existing WordPress roles in subtle ways to achieve compatibility with s2Member. It does not reset your entire WordPress role configuration (i.e. the default roles shipped with WordPress), nor does it reset dynamic Roles introduced by bbPress. I suspect that you have had some mild database corruption that somehow worked itself out maybe. I suppose it’s possible that WordPress achieved this in response to calls made by s2Member to update other Roles (i.e. s2Member’s own Roles).
If you’d like to truly reset Roles on your site, this plugin comes with a feature that accomplishes that for you.
Capability Manager Enhanced:
http://wordpress.org/extend/plugins/capability-manager-enhanced/
After resetting your Roles back to the defaults, you will need to re-install bbPress.
Then, please go to:
Dashboard -› s2Member® -› General Options -› Membership Levels/Labels
Click the button at the bottom of that section to reinstall your s2Member roles as well.
NOTE: Always a good idea to backup your database and file system first :-)
|
|
|
Thanks for the heads up on this thread.
Regarding what you said here…
The stylesheet https://mysite.com/wp-content/plugins/s2member/s2member-o.php was not loaded because its MIME type, “text/html”, is not “text/css”.
MORE – Of course it seems to be a theme issue, as activating the default theme returns the Paypal Pro form to ‘normal’ – however, this theme conflict was not present prior to the upgrade of s2Member. Is there some information you can perhaps give me so that I can let the theme developers know and troubleshoot on their end as well as yours?
This indicates to me that s2Member’s dynamic CSS, which is loaded via the /s2member-o.php file, is causing a fatal error in PHP, resulting in an incorrect MIME type, and the loss of any valid CSS being produced by this file, as it normally would be.
Since disabling the theme you’re using corrects the issue, I suspect a conflict between s2Member and your theme of choice. We’ll be happy to help you identify the conflict. Please check your PHP error logs where the file /s2member-o.php is mentioned. If you can post the PHP error that is occurring, that will give us some insight, and should lead to a resolution for you.
|
|
|
The patch discussed previously was added to the official release of s2Member Pro v121201+. No need to continue to apply that patch file with the most recent versions of s2Member Pro.
|
|
|
Thank you for the follow-ups.
I just investigated this issue on your installation and also made an attempt to reproduce it in our lab.
I was unable to reproduce this in a clean installation of WordPress running the latest version of s2Member and s2Member Pro in our lab. However, I did find a few things on your installation which are likely causing the problems that you’ve reported thus far.
Here are some recommendations for you.
1. Please disable object caching. Object caching is known to cause problems with s2Member, as it is implemented by the W3 Total Cache plugin. It’s fine to leave Page Caching on, but I recommend disabling object and database caching for increased reliability. You can search the forums here and find others having issues with object caching in the past. It can DEFINITELY lead to the type of issues that you’ve reported.
NOTE: I see that you’ve actually NOT enabled object caching from W3 Total Cache. However, it appears that it was once enabled at some point, and that the file was never deleted from your /wp-content/ directory. See: /wp-content/object-cache.php. See also: Dashboard -> Plugins -> Drop-ins.
For good measure, I would also recommend that you add the following line to your W3 Total Cache configuration.
See: W3 Total Cache -> Page Caching -> Never cache the following pages
*\?s2member_*
If you have any trouble with W3 Total Cache, we recommend Quick Cache (developed by us).
http://wordpress.org/extend/plugins/quick-cache/
2. The hack that you mentioned is DEFINITELY a problem in this case. That hack is known to cause almost exactly the symptoms that you’ve reported. I would ditch that hack all together, because it interrupts post-processing being handled by s2Member Pro Forms. s2Member Pro will function properly without this hack. If running properly, s2Member Pro Forms DO display a login link after a successful checkout.
If you need to customize this process further, I would suggest the use of the success="" Shortcode Attribute provided by s2Member Pro Forms, instead of using that hack. So for instance, instead of implementing a hack that interrupts s2Member, you can redirect the customer to a page of your choosing after success. Then, on that custom page (which might actually just be a redirection if you like), you can do pretty much anything you like.
See: Dashboard -› s2Member® -› PayPal® Pro Forms -› Custom Return URLs Upon Success
See: Dashboard -› s2Member® -› PayPal® Pro Forms -› Shortcode Attributes (Explained)
3. Please upgrade to the latest version of s2Member & s2Member Pro so that we’re all on the same page with this bug report. The latest version at this time is v121204.
4. I would suggest that you make an attempt to reproduce this bug on a clean installation of WordPress so that both you/we will have a better chance of identifying the underlying cause of this issue. If all else fails and you ARE able to reproduce this on a clean installation of WordPress running only s2Member and the default WP theme; then we’ll take a look at that installation for you, hopefully with a more immediate resolution for you too.
Regarding the PayerID. That value would only be reflected in s2Member’s own logging routines (and only if you’ve enabled s2Member’s logging routines). It’s something that’s used behind-the-scene only. In fact, it only appears in the URL because PayPal passes that back to s2Member to identify what happened during Express Checkout, nothing more.
A PayerID will NEVER be reflected in your Dashboard, and it’s not tied to any of your customer accounts within WordPress. That’s a temporary ID that PayPal and s2Member use to communicate during the flow of checkout. It’s correct for that NOT to match up with a transaction or subscription ID.
Please let us know if problems persist.
|
|
|
Thank you for the heads up on this.
Yes, the patch discussed previously was added to the official release of s2Member Pro v121201+. No need to continue to apply that patch file with the most recent versions of s2Member Pro. Unfortunately, we left this out of the changelog by mistake. I’m having the changelog updated now. Thank you!
|
|
|
Thanks for the follow-up.
Yes, we VERY much appreciate it when you come back and update on us things. That helps us, and it helps others. Thank you very much for that. I’m glad to hear you got that sorted out.
|
|
|
|
|
|
|
Investigation Results
Thanks for reporting this important issue.
The account was successfully created, but nothing else. So I’m wondering is there some sort of “race condition” that’s going on where authorize’s “Silent Post URL” is reporting too late that ends up erasing s2member’s user role upgrade?
I’m not aware of any race conditions with Authorize.Net integration. The Silent Post URL only handles incoming notifications regarding successfull payments, and NOT for failed payments. Failed payments are handled via the Authorize.Net ARB system, which is a different API all together. In either case though, the communication between s2Member and Authorize.Net is dependent upon the current Paid Subscr. ID value being a match to the data provided in communications from Authorize.Net. Thus, I’m not aware of a way for that to happen.
I then thought of something else. I have s2member send “s2Member® API / Notifications” for “signup”, “registration”, and “payment”. The “signup” and “registration” Notifications URL’s were alerted to this checkout, but it doesn’t look like the “payment” notification was ever fired. So if it wasn’t fired for me, perhaps it was never fired within s2member’s own internal routines?
Yes, this coupled with what you mentioned before, would indicate that post-processing of the transaction is failing on your installation. s2Member and s2Member Pro both work internally with an underlying set of core PayPal processors, which set the standard for s2Member’s post-processing of a transaction. The best way to debug this issue in s2Member, is to enable logging under: Authorize.Net Account Details in your Dashboard, and then look at both of these log files.
See: Dashboard -› s2Member® -› Authorize.Net® Options -› Account Details -› Logging
After a test transaction, please check these log files to assist you in debugging:
authnet-api.log This will indicate all details related to s2Member’s direct communication with Authorize.Net.
paypal-ipn.log Once s2Member’s Authorize.Net-specific routines have finished, s2Member will ultimately use it’s core PayPal processor to handle post-processing of a transaction, so some errors may exist here that will shed light on things for you. This log will be generated even with an Authorize.Net integration. Please feel free to submit log entries from these files, and we’ll review them with you here.
If problems persist, please submit a Dashboard login for us privately. We’ll run diagnostics on your installation. If it comes to that, please use this form: s2Member® » Private Contact Form
|
|
|
JW Player v6 code samples were added into the release of s2Member v121204.
http://www.s2member.com/changelog/
|
|
|
Thanks for the heads up on this thread.
#1
On my install S2Member appears to behave differently when I restrict access to a page by setting a specific level from the post editing screen (through the metabox) or through s2member>restrictions options>page access restrictions.
When I set the restrictions via the s2member settings screen things work as intended, but if I set the restrictions via the meta box, the conditional is_permitted_by_s2member( $post_id ) doesn’t return false when it is supposed to. This is remedied when I manually plug in the id through s2member>restrictions options>page access restrictions.
Is that intended behavior? I would expect any adjustments made to page access from the post/page editing screen to show up at s2member>restrictions options>page access restrictions.
No, that would indicate to me there is either some confusion about how the API function works, or that there is a deeper issue somewhere in your installation somehow. Restrictions set in the Post/Page editing station (with respect to Level-based Restrictions), are simply updating the options that you see under this section of your Dashboard. Nothing more.
Dashboard -› s2Member® -› Restriction Options -› Post (or Page) Access Restrictions
Is this continues to be a problem, please submit a list of specific instructions on how we can reproduce this in a default WP installation, and we’ll take a closer look for you. I’m not currently aware of any issues in this regard. I was unable to reproduce it with the details we have so far.
#2
When restricting a page based on a specific custom capability, will is_permitted_by_s2member( $post_id ) check for that? Unless something on my setup is interfering, it doesn’t seem to. If this is intended, is there another alternative conditional that will take post_id as a parameter and check for the current user’s access privileges?
Yes, if you’ve used the Post/Page editing station to add a list of one or more Custom Capabilities required to gain access to certain Posts or Pages, the is_permitted_by_s2member() function will consider those Custom Capabilities as well, before it returns TRUE or FALSE. So for instance, if a Post requires Level #2 access, and it also requires Custom Capability music, the is_permitted_by_s2member() function will return FALSE for someone at Level #2, who does NOT also have the Custom Capability music.
Here are some things I would take a look at:
Have you configured s2Member with a Membership Options Page yet? If not, this is the problem.
See: Dashboard -› s2Member® -› General Options -› Membership Options Page
Are you logged in as an Administrator when testing? If so, this is the problem. Administrators have full access to everything, regardless of your configuration of Level Restrictions or Custom Capabilities. You’ll want to log out of your Administrator account and into an account that will reflect the proper permission level.
Are you passing an ID into this API function?
<?php
if(is_permitted_by_s2member(123))
echo 'Yes';
else echo 'Nope!';
?>
Reference article in Codex: http://www.s2member.com/codex/stable/s2member/api_functions/package-functions/#src_doc_is_permitted_by_s2member()
Please let us know if problem persist. Thanks!
|
|
|
From what I can tell, TSYS (formerly Vital), is a payment gateway. Never heard of this payment gateway before. I can tell you for certain that s2Member is NOT compatible with the TSYS payment gateway APIs.
Reference article: http://www.tsys.com/solutions_services/index.cfm
PCI compliance is something we take very seriously. I’m not aware of any PCI compliance issues with s2Member or with s2Member Pro. Particularly since s2Member Pro integrates with Authorize.Net’s ARB service, which puts all credit card and billing information on the Authorize.Net servers, and not within your WordPress installation.
That being said, it’s always a good idea to get a company to help you and your server (aside from s2Member itself), in good shape security wise, and to file regular PCI compliance reports. Many companies are using TrustGuard’s PCI compliance scanning and online service to assist them with this.
See: http://www.trust-guard.com/PCI-Compliance-s/65.htm
If you have any questions about the functionality of s2Member when you’re filling out your PCI compliance report, please feel free to post those here. We’ll be happy to help you answer questions about this.
|
|
|
Thanks for the heads up on this thread.
Have you tried this yet?
For HTTP Authentication to work with IIS, the PHP.ini directive cgi.rfc2616_headers must be set to 0 (the default value).
See also: http://php.net/manual/en/features.http-auth.php
|
|
|
|
|
|
|
Investigation completed.
The underlying issue has been identified and will be fixed in the next maintenance release of s2Member. The next maintenance release will become available later this evening or tomorrow. Thanks for your patience while we worked to get to the bottom of this issue.
Changelog excerpt from coming release…
**Bug Fix**. An issue with long billing agreement descriptions under PayPal® Pro (Payflow® Edition) accounts, when coupon codes were being used by customers, was addressed in this release. Symptoms of this bug were errors in s2Member® log files from the Payflow® API, with error code: “11581-Profile description is invalid“. Caused by undocumented length requirements for the billing agreement description under the Payflow® API. Fixed in this release. Discussed in this thread.
|
|
|
Thanks for the follow-up.
1-will s2clean theme run into compatibility (or other technical) problems with future wp or other software developments? Meaning, how long will it be safe to use s2clean?
I don’t foresee any major issues with the s2Clean anytime soon. However, this theme has been formally discontinued. It’s still available with your s2Member.com account, but we’re no longer supporting this theme officially (e.g. if incompatibilities occur in future versions of WP), we are not planning to fix them.
2-I was able to create subdir childblogs on the previous wp installation w/s2clean on child blogs. But child blogs had only access to the default or other template set by Superadmin. Is this an intended limitation or is there some setting or theme customizing option I missed?
From the Network Admin panel of your Dashboard, under Themes, you can allow permission to each theme you’ve uploaded to your site, by clicking “Network Enable”. That is, you might have 100 themes available, but each of those themes must be made available to child blog owners by clicking “Network Enable”.
3-I intended to use s2member, quickcache and s2clean, because of the option to strengthen security with the “define MULTISTE_FARM TRUE” to wp-config (as explained in s2member documentation). In which way will use of a different theme change the security of my site?
Switching to a different theme, one which might make configurable options available to site owners of a child blog on your Network, and that might reference FTP instructions, /wp-config.php file changes, or other features made possible by a theme which depends on the site owner actually having file structure access via FTP, could cause some confusion. That’s the biggest issue that I’ve seen. Child blog owners will NOT have access to the files that make up your WordPress installation, only you as the SuperAdmin have that ability. Thus, you won’t want to confuse your child blog owners by having themes that provide features/instructions that require file access to WP.
If you find themes which do not expose things like this, you should be fine using those.
I would just suggest that you carefully review them prior to making them available across the Network. For instance, you wouldn’t want a theme to provide a child blog owner with the ability to customize code through a configuration panel in the Dashboard, that might ultimately execute PHP code provided by the site owner. That would introduce a security issue on your Network. Looks for calls to PHP function exec() in the code provided by each theme. Taking note of how they are used in the code. This would part of a good review process.
|
|
|
|
Thanks Joseph!
|
|
|
Update. s2Member Support Rep ( Bruce), may have found something in the s2Member code that exacerbates this issue. We are working through his thoughts on this, and attempting a deeper investigating at this time. I will update this thread once further details are available.
|
|
|
@ Todd
The code changes I posted here that provide compatibility with JW Player v6 did NOT make it into the latest maintenance release. The existing code samples work with JW Player v5. We’ll get the JW Player v6 code samples into the next maintenance release however. Thanks for your patience :-)
Until then, the code samples I provided in this thread reflect the coming addition to the next maintenance release, and will work in the current release. If you’re running JW Player v6, please use the code samples I posted here, instead of those provided in your Dashboard.
|
|
|
Thanks Joseph!
My apologies. I think there was a misunderstanding. I sent the login details for my live site.
I just now sent login credentials to my test site (still on Bluehost). This site only has one plugin (S2member) and the Twenty Eleven theme. I just updated it to the latest version (S2member and Pro that is).
Please feel free to experiment with this site (the woodschools.org one) as it is a test site and has nothing valuable or sensitive on it.
Can you please upgrade my Dashboard account to role: Administrator. I tried logging into the test site, but I have no permissions there. FTP login is working fine. Also, please be sure this test site is configured with your PayPal account details and ready to test against your own PayPal (Payflow Edition) account.
See: Dashboard -› s2Member® -› PayPal® Options -› Account Details
|
|
|
Thank you. Details received.
~ Investigating now.
In the mean time, the latest release of s2Member comes with the patch we mentioned in an earlier reply to this topic. So while we investigate this issue further, feel free to upgrade to the latest release of s2Member.
See: http://www.s2member.com/changelog/#s2-changes-v121201
CHANGELOG EXCERPT
(s2Member Pro) Bug Fix. s2Member Pro Forms integrated with Payflow Recurring Billing via PayPal Express Checkout were failing against some accounts with an erroneous error #10422 related to an invalid funding source. With some help from other site owners and the assistance of PayPal technical support, the underlying issue has been fixed in this release. Discussed in this thread.
|
|
|
Thanks for your patience.
I’ve been reviewing your installation over the past two days. From what I can tell things were looking good on your installation of WordPress. However, I noticed today that s2Member is no longer an active plugin on this Multsite Network, so that makes it difficult to continue our review process for you.
– wp-signup.php works fine – no error messages
– subscriber recieves activation email – but activation link (and URL) does not work
– the child blog is entered in database (cpanel-myphp admin) – child blog does not show in wp dashboard
Regarding the sub-domain issue. This sounds to me like your domain at HostGator does not have DNS entries for these sub-domains. If sub-domains are being created dynamically on the site by WordPress, you will need a wildcard DNS record for your primary domain, so that all sub-domains point to your WordPress® installation.
Please see this article: http://codex.wordpress.org/Before_You_Create_A_Network#Domain-based
See also: http://codex.wordpress.org/Create_A_Network
|
|
|
Details received privately via email.
~ I’m reviewing your installation now. Thanks for your patience.
|
|
|
Thanks for the heads up on this thread.
Can you please post a link to the page on your site where this occurs? I’ll take a quick look for you.
If you cannot post the link publicly, you can submit a Dashboard/FTP login privately and receive priority support after purchase of s2Member Pro. See: s2Member® » Private Contact Form
|
|
|
The FTP details that I received privately are not working properly. It’s rejecting the FTP password on my end. Can you please verify these details for me, and then post a new form submission with the FTP details privately?
See: s2Member® » Private Contact Form
|
Pre-Sale FAQs
Video Tutorials
Community Forum
Knowledge Base
News/Updates
s2 Codex / Docs
GPL v2 License
Contact A Human
About Us
Our Customers
Support Policy
Privacy Policy
Old Forums (READ-ONLY): The 
