Post by straightlight » Tue Apr 17, 2018 5:11 am

Is your zlib compression level set to 8 from php.ini?

The most generated errors being found on Opencart forum originates from contributed programming.

Regards,
Straightlight


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by ameliaa » Thu Apr 19, 2018 12:40 pm

straightlight wrote:
Tue Apr 17, 2018 5:11 am
Is your zlib compression level set to 8 from php.ini?
How much do I need to pay you to get the mod to work on both my sites?

New member

Posts

Joined
Fri Jan 29, 2010 6:31 pm

Post by radi8tor » Thu Apr 19, 2018 6:20 pm

Now I set it to 8 but no change on page index.php?route=information/contact

Code: Select all

zlib.output_compression = On;
zlib.output_compression_level = 8;

New member

Posts

Joined
Thu Feb 01, 2018 6:21 pm

Post by straightlight » Thu Apr 19, 2018 8:11 pm

In your catalog/controller/information/contact.php file, below the index() line,

add:

Code: Select all

if (!empty($this->session->data['user_token'])) {
    echo 'test123';
}
Then, login to your OC admin and select your store. Visit your contact us page. On the top-left end side of your store, do you see: test123?

The most generated errors being found on Opencart forum originates from contributed programming.

Regards,
Straightlight


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by radi8tor » Fri Apr 20, 2018 2:10 am

No it is not displayed on that page.

However I have seen now that I have contact.php under /storage/modification/catalog/controller/information/ as well.
Maybe this is the reason of that vQmod does not update contact.php.
How should I include this path in csrf.xml?

New member

Posts

Joined
Thu Feb 01, 2018 6:21 pm

Post by straightlight » Fri Apr 20, 2018 2:37 am

VQMod only starts from the public_html folder root path. Besides, VQMod is not compatible with OCMod path detections.

The most generated errors being found on Opencart forum originates from contributed programming.

Regards,
Straightlight


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by snowbird » Mon May 21, 2018 8:28 pm

OC: 2.3.0.2

I have managed to install the CSRF Protection Extension, but it seems that it does not run the CSRF_check function properly, so that every bot keeps on spamming my site.

I could find out that for my installation on the contact form $_SERVER['REQUEST_METHOD'] is GET and not POST, so "if ($_SERVER['REQUEST_METHOD'] !== 'POST') {" is not working as it should and it does not run the csrf_check until the end, but returns. It is not checking if the token is correct or not and allows all bots to send me spam. Of course $_POST['__csrf'] will not work, too, so i am lost how to get it work.

Thank you for your help.

Newbie

Posts

Joined
Thu Sep 21, 2017 11:06 pm

Post by straightlight » Tue May 29, 2018 3:03 am

See these solutions that must work together: viewtopic.php?f=20&t=203309&p=719351#p719351 . However, HTML Forms should only use POST requests, not GET requests.

The most generated errors being found on Opencart forum originates from contributed programming.

Regards,
Straightlight


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON
Who is online

Users browsing this forum: No registered users and 13 guests