[Done 1.4.1-1.5.1] Allowed User v1.2

[tazthedev]

Weird, for some reason this mod wont let me see ne of my forums at all....

Does this happen to ne1 else?

If this happens to others with the 1.4 version I'll take it down, oif it also happens with the 1.3 version I'll leave it up

If its just me, i'll leave it up

I was having the same problem.... but... you must remove in the Edit Categories, all the data contains in the "Only access for membergroup(s)" ....

As soon as i remove them,  i saw all my forums...

but i still have a problem.... if i select "Password protected" .... it cant keep my password... but if i look at phpmyadmin... the password is set right.
If i try to login a password protected forum... it says ... wrong password...   but the password is the right one.

[PioneeR]

Everything works the it should do for me... apart from when someone logs out.

If they are viewing a board that has been setup to anything other than everything, when logging out they get an error, because the board tries to display the board they were viewing and not the main boardindex.

[don_miguel]

I think the mod is very buggy... it does not really do that what it schould do.

I got the same problem- the posts on hidden section wasn't shown at the last 5 postings, but if a guest or a non allowed user clicked on the 10 recent posts text - all of the entries were shown!

you have to modify the recent php. mine looks like that and every thing works like it should!(notice: I have reduced the rights for those Global Moderatos, so every Global Moderator entry was eraised...)

function LastPostings (){

   global $settings,$scripturl,$txt,$censored,$recentsender,$db_prefix, $post, $dummy;

   $showlatestcount = 10;

   if (!isset($recentsender)) {$recentsender='';}

   $request = mysql_query("SELECT m.posterTime,m.subject,m.ID_TOPIC,t.ID_BOARD,m.posterName,m.ID_MEMBER,t.numReplies,t.ID_FIRST_MSG FROM {$db_prefix}messages as m,{$db_prefix}topics as t,{$db_prefix}boards as b,{$db_prefix}categories as c WHERE (m.ID_TOPIC=t.ID_TOPIC && t.ID_BOARD=b.ID_BOARD && b.ID_CAT=c.ID_CAT && (FIND_IN_SET('$settings[7]',c.memberGroups)!=0 || c.memberGroups='' || '$settings[7]' LIKE 'Administrator')) ORDER BY m.posterTime DESC LIMIT 0,$showlatestcount");

   if( mysql_num_rows($request) > 0 ) {

      $post = "<table width=\"100%\" border=\"0\">";

      while ($row = mysql_fetch_array($request)) {

         $post .= "<tr>";

         $request3 = mysql_query ("SELECT name FROM {$db_prefix}boards WHERE (ID_BOARD=$row[ID_BOARD]) LIMIT 1");
         $temp = mysql_fetch_row($request3);
         $bname = $temp[0];

         if ($row['ID_MEMBER'] != -1) {
            $request4 = mysql_query ("SELECT realName FROM {$db_prefix}members WHERE ID_MEMBER=$row[ID_MEMBER] LIMIT 1");
            $temp2 = mysql_fetch_row($request4);
            $euser=urlencode($row['posterName']);
            $dummy = "<a href=\"$scripturl?action=viewprofile;user=$euser\">$temp2[0]</a>";
         } else {
            $dummy = $row['posterName'];
         }

         $post .= "<td align=\"right\" valign=\"top\" nowrap>[<a href=\"$scripturl?board=$row[ID_BOARD]\">$bname</a>]</td>";

         $request2 = mysql_query ("SELECT subject FROM {$db_prefix}messages WHERE ID_MSG=$row[ID_FIRST_MSG] LIMIT 1");
         $row2 = mysql_fetch_array($request2);

         $post .= "<td valign=\"top\"><a href=\"$scripturl?board=$row[ID_BOARD];action=display;threadid=$row[ID_TOPIC];start=$row[numReplies]\">$row2[subject]</a> $txt[525] $dummy</td><td align=\"right\" nowrap>".timeformat($row['posterTime'])."</td></tr>\n";

      }

      $post .= "</table>";

   } else {
      $post .= "---";
   }

   $post .= "</td>";

   CensorTxt(&$post);

   print $post;
}

function ListNewPosts()
{
   global $settings,$username,$realNames,$cgi,$color;
   if ($username=='Guest')
      fatal_error($txt[223]);

   if (!isset($recentsender)) {$recentsender='';}

   $request = mysql_query("SELECT m.posterTime,m.subject,m.ID_TOPIC,t.ID_BOARD,m.posterName,m.ID_MEMBER,t.numReplies,t.ID_FIRST_MSG FROM {$db_prefix}messages as m,{$db_prefix}topics as t,{$db_prefix}boards as b,{$db_prefix}categories as c WHERE ((m.ID_TOPIC=t.ID_TOPIC && t.ID_BOARD=b.ID_BOARD && b.ID_CAT=c.ID_CAT && (FIND_IN_SET('$settings[7]',c.memberGroups)!=0 || c.memberGroups='' || '$settings[7]' LIKE 'Administrator')) && NOT EXISTS (SELECT top.ID_TOPIC FROM {$db_prefix}log_topics as top WHERE top.memberName='$username' && top.ID_TOPIC=m.ID_TOPIC)) ORDER BY m.posterTime DESC");

   template_header();
print "SELECT m.posterTime,m.subject,m.ID_TOPIC,t.ID_BOARD,m.posterName,m.ID_MEMBER,t.numReplies,t.ID_FIRST_MSG FROM {$db_prefix}messages as m,{$db_prefix}topics as t,{$db_prefix}boards as b,{$db_prefix}categories as c WHERE ((m.ID_TOPIC=t.ID_TOPIC && t.ID_BOARD=b.ID_BOARD && b.ID_CAT=c.ID_CAT && (FIND_IN_SET('$settings[7]',c.memberGroups)!=0 || c.memberGroups='' || '$settings[7]' LIKE 'Administrator')) && NOT EXISTS (SELECT top.ID_TOPIC FROM {$db_prefix}log_topics as top WHERE top.memberName='$username' && top.ID_TOPIC=m.ID_TOPIC)) ORDER BY m.posterTime DESC";
   while ($row = mysql_fetch_array($request))
   {
      print "$row[subject] by $row[posterName]<br>";
   }

   footer();

   obExit();
}
?>

[ricin]

I get this when I try to veiw a specfic thread.

Parse error: parse error in /home/optic-ic/public_html/voided/php/yabbse/Sources/Display.php on line 4

Fatal error: Call to undefined function: display() in /home/optic-ic/public_html/voided/php/yabbse/index.php on line 136

Please help, and thank you ahead of time.

[GauGau]

OK, the mod installed fine, good work so far, Sauron!
I understand this is a beta, so here's what has to be fixed in my opinion to make this mod "bullet-proof" (as mentioned by others on this thread already):

• not allowed user can see "forbidden" posts in "recent" list on board index and allowed user's profile (recent.php !)
• "forbidden" posts show in SSI.php
• "forbidden" posts show in calendar
• logging out of protected board causes error

this means: at least 3 more files to edit...

@Sauron: any ideas?

GauGau

[Tha Master]

cant download the 1.4 version

[Raven]

hmm...so is this mod ready? when can we d/l it? url not currently working.

[Wiziwig]

This is a fantastic mod! Question, will you in the future have any plans to have say, permission buttons set into the member's profiles? Would be easier to immediatly pick out a member and set access permissions to whatever forum you want. Would also be easier to define preset permissions to new users.

[Surfy]

Any news for this Mod?

When he is done?

Surfy

[Deimos]

Yeah, this mod will be fantastic for my board, if the security problems are fixed.

[Eloya]

For me too... any ideas when the security issues will be fixed or updated?

Nico

[ThermoDust]

Any idea on when the fix for this will be out? Or more ready for v1.4

[ThermoDust]

Does anyone have a copy of 1.4 zip?

[ThermoDust]

Could someone please just update the script for 1.41 I would do it myself if I understood how the message board worked but I do not. I'm not looking for fixes just that I can use the yabbpack installer to install the scrpt and have it work, its saying that the boardindex.php that it couldnt find some lines in there nd well I dont even know whats its doing. So pleae please please would someone just update to work with 1.41 thanks

[magical_yak]

I keep trying to install this MOD on YaBB 1.4.1, is it not ready for it?  Also the link to the download doesn't work.  If I go and manually install, I get stuck on the BoardIndex.php changes.  It seems that the Mod has settings such as $row_cat where my php has $row_board.  Did anyone else notice this?  Also for the second change for BoardIndex.php, my

Code Select Expand

<search>
                while ($row_board = mysql_fetch_array($result2))
                {
</search>

<add>
         if ($Show_Board[$row_board[ID_BOARD]]) {

</add>

I HAVE
while ($row_board = mysql_fetch_array($result_boards))


I this right?