|
|
THANKS Bruce!
“hacky” = ” kludgy”
Already had the BRs and tried the NBSP with little satisfaction. The float:left was the missing part of the answer that helped.
Much appreciated!
…and yet another example of why “PLEASE HELP!…” isn’t a good subject line for people who come along later. ;-{
|
|
|
That’s what I suspected.
Thanks
|
|
|
THANKS Jason for the quick answer.
Maybe someone else can tell us how AirPlay works … such as, does it make additional requests, etc.
|
|
|
Thanks Jason.
You’ve just confirmed what it has taken 8 very frustrating months to deduce. We have a growing number of iPad customers, but most are not technical enough to give very good descriptions of the failures they see … and I am not an iPad owner myself so have not been able to dig very deeply.
It was only a couple of days ago that a random / accidental connection to a person in Cupertino (works in a big building at 1 Infinity Loop) revealed the “AccessDenied Request has Expired” error response that led me to hours of Amazon server log examination and to posting this thread.
Sometime late yesterday, I came across the my_custom_expiration_time filter suggestion elsewhere on your site and implemented it immediately. My new friend in Cupertino confirmed that it relieved the problem.
We’ve assessed the CloudFront possibility and are currently holding back due to stories we’ve heard from others about costs that ran much beyond their expectations, and our budget.
Thanks for the confirmation.
|
|
|
Thanks Cristián,
Some additional observations to pass along….
Many of our videos run 20 to 30 minutes long, and amount to 100-150MB file sizes. The 30 second expires= value is certainly OK for establishing a connection with S3, but is not at all useful for iPads which will want to do many, many byte-range requests during the duration of a long playing video. Apparently, each is treated as a new connection … and the (unknown as yet) software component that generates the requests appears to simply copy the existing signature and expires= values … until time runs out.
Thanks for the tip about Philly’s plugin. So far, we’re using only S3 and his plugin also wants CloudFront. Yet, it’s good to know about it.
|
|
|
Raam, Cristián, Jason,
Any ideas on this??????
|
|
|
Maybe I need to ask questions about this problem a different way…
Assumptions:
– iPad’s consume videos in multiple segments, via byte-range requests.
– Amazon S3 file service (remember, no CloudFront) expects a signed URL, which s2Member provides.
– s2Member affords another level of protection by time limiting the request using the Expires= header.
Now, how do signatures and expire values get generated after the first request from an iPad?
??? Does JWPlayer generate these subsequent requests? If so, what clock does it use? … the iPad’s clock?
??? Or, are these requests generated by s2Member? (I don’t see them in the server logs.)
|
|
|
a little more information for Support Reps
Looking at s3 server logs, I find numerous instances of iPads retrieving blocks within video files … indicated by 206 return codes.
Yet a few result in “403 AccessDenied 321….” return codes … ending a series of requests as a stall.
It seems that videos are working for some but failing for others, and I can’t understand why “Request has expired.”
Where should I look next?
Before you ask … s2member-server-check-120703.php runs clean: No Issues.
|
|
|
Thanks Bruce!
Your sample is just what I needed. It’s interesting how much PHP web page work one can do without needing to know much about array handling.
.$user->user_firstname. gave me exactly what I was looking for.
Sure, I agree about the hazards of working with live sites, and for anything that involved actually altering values or database contents I would use a non-production site. Now, that I have enough to work with, I probably will anyway just to be able to force demotions and move things along faster.
Much appreciated!
|
|
|
Thanks also for the sortable EOT column. It works for me.
Like Grace, I wondered if something were wrong when I sorted the column and saw nothing. However, most of our members have monthly subscriptions, which have no EOT dates. The one-time-purchases for specific periods DO have EOT dates and those entries get sorted correctly … with most showing up on the last page.
Nice hack. Good to have. Thanks!
|
|
|
Thanks Bruce for the information about passed $vars. That helps immensely.
It suggests to me that all the vars mentioned in the normal EOT API Notification email are available.
i.e. eot_del_type, subscr_id, user_first_name, user_last_name, user_full_name, user_email, etc.
|
|
|
THANKS for that article Bruce! It is very helpful
Similar, but different, I’m wanting to implement a hack that is triggered by “ws_plugin__s2member_during_auto_eot_system_during_demote”. The codex suggests starting with:
add_action("ws_plugin__s2member_during_auto_eot_system_during_demote", "my_eot_hook_function");
function my_eot_hook_function($vars = array())
I have not been able to find a specific set of information. Maybe I haven’t looked in the right place? Other than a trial and error approach (waiting for someone to fall into EOT, then iterate…), where can I find out exactly what is passed in the $vars array? Is it associative or indexed? What keys might it have? etc.? I can eventually understand through stepwise revelation, but would prefer accurate documentation.
|
|
|
|
|
|
|
ME TOO!
We’re also interested in that hack and KB article. Soon?
Thanks,
|
|
|
PERFECT Explanation Raam! Thank you.
The member didn’t mention seeing the message about email address already in use. I’m almost certain (alright, guessing) that he did not rejoin from a logged in user ID, tried to use the existing email address, ignored the failure and then logged in and found the account lacking privilege.
I’ll go check the account detail logging … and look for an errant unused new user ID. Then, implement the upgrade process you suggested.
THANKS!
|
|
|
Solved!
Plugin conflict with “amr users.” Despite what you say about liking it, it kills the IPN/eMail confirmation processes.
|
|
|
Cristián: Yes, there was a change about the time IPN quit working. I added a plugin called “Easy Contact Forms,” which really isn’t easy, has a whole bunch of panels, messes with mailing stuff and messes with the users table (I think). The timing and the function overlaps are too good.
I can’t recall any other functional changes at that time. Content additions of course, but no other functions or plugins.
So, I deactivated and deleted Easy Contact Forms this morning. No joy! Still no IPN logging.
I deleted all s2member log files form the server just in case of corruption or permission problems. The api and rtn logs are being written again. No IPN.
Raam: Yes, ran the test tool and got PASSs on every test. I also verified the PayPal to s2Member AR and IPN URLs, the API credentials and the PDT credential. All good.
From the PayPal side, I can see every IPN sent and PayPal reports a “200” http return code for every one.
*** I asked PayPal to resend one of those IPNs. It did … took a while. Got a 200 return code.
Still no IPN log.
Still no confirmation mail!
** IMPORTANT**
While we can actually do without the IPN log, it’s the confirmation / registration emails to subscribers that are the most important consideration. (I’ve always assumed they’re tied to IPN, as Jason mentions in one of the videos. Maybe I’m wrong about that?) Those are actually a LOT more important than the IPN log, and we’re not seeing them. ****And, the subscribers who don’t follow through with the automatic return and registration are not seeing the emails and becoming cranky about not knowing how to “get into the site.”
Thanks for the suggestions so far.
What’s the next idea? Is it safe to reinstall s2 over the top of what we have?
-
This reply was modified 4 years, 5 months ago by
 Mary May.
-
This reply was modified 4 years, 5 months ago by Mary May.
-
This reply was modified 4 years, 5 months ago by Mary May.
-
This reply was modified 4 years, 5 months ago by Mary May.
|
|
|
Thanks Raam!
That’s what I was expecting, and I tested with a test-user and saw no ill effects.
|
|
|
Hamid,
(Bob Easton, Mary Mays “code monkey”)
When all you see is text “JW Player® appears here” instead of the player itself, that means the player .swf file was not found. Fix that first. Then, go for the content.
I like to make small simple steps. So, simplify your script using real URLs instead of variables. Get each of the pieces properly located. Then, figure out which variables to use / change.
|
|
|
Hamid,
(Bob Easton answering for Mary. I’m doing the technical work for her site.)
After learning of this script-based method, we investigated a number of other membership plugins which advertise strong file protection. When asking them technical questions about how they secure files, two basic methods emerged.
For locally stored files (local=same server as the web site) many use the script method, which must have been quite popular a few years ago, the same method that s2Member uses for local files.
The other method uses various forms of authentication tokens (often time limited) and URL obfuscation to authorize content delivery from remote sources such as Content Distribution Networks. s2Member is capable of using this approach with Amazon S3.
So, instead of having our own server resources clogged up with continuously running scripts, we coughed up yet more money and moved the content to Amazon S3.
|
|
|
hmmmmm….
We PAID for support and did not get the support we expected. Now, you want us to GIVE you the answer? Compensate us for about a dozen billable hours and we’ll consider telling you the solution.
BTW, these words are Bob Easton’s, not Mary May’s.
I, Bob Easton, am doing the technical work for Mary’s site. I’m the one who has been waiting days for PAID support to arrive with an answer. I’m the one who spent the long hours to find a way to work around the script that denies access to iPads. If you have concerns about this post, direct them my way, not Mary’s. (if you look around, you can find me at bob-easton.com)
-
This reply was modified 4 years, 6 months ago by Mary May.
|
|
|
Knowledge base article was interesting, but did not help with this case.
Passed all tests with the server test tool.
Serving the files through a script is almost as inefficient as having a man stand at a service window and hand out video frames one-by-one.
We have resolved the problem.
|
|
|
Problem resolved on our own.
Test credentials revoked.
|
|
|
When might we expect to hear from Jason?
We’re eager to launch a new service and this is the only problem standing in our way.
|
|
|
Yes Cristián, the files are in the s2member-files directory as mentioned in the very first sentence.
We have a dedicated server with more than enough storage and more than enough bandwidth, and NO desire to introduce the added cost of Amazon S3.
What can we change on a dedicated server to improve the situation?
|
Pre-Sale FAQs
Video Tutorials
Community Forum
Knowledge Base
News/Updates
s2 Codex / Docs
GPL v2 License
Contact A Human
About Us
Our Customers
Support Policy
Privacy Policy
Old Forums (READ-ONLY): The 
