Shout - Private Messaging for Flarum

Kyrne

DawoodKhanMasood I need more info, please enable debug mode

darkfox working on it, look for it sometime today.

Kyrne

darkfox Ouraios

0.2.10

Fix start conversation modal.

Clear cache after updating.

troymccann

This is a great addition to the forum. Our users are starting to get more comfortable with it now so it's getting some good use.

Is it possible to make it so that ctrl+return doesn't send, but does a CRLF?

I also wonder whether than popping down in the front of the screen, would it be better UX to pop up as a panel on the right side of the screen (similar to the left pop out of the threads) so it doesn't block the view?

Kyrne

troymccann I don't really have time to redesign the extension right now. But update to 0.2.12 and check the admin settings. Added a return key toggle.

Ouraios

It's working perfectly now thanks for your amazing work @Kyrne ! ♥

andreystavitsky

Hello @Kyrne ,
can this extension be used through API?
Currently I'm working on mobile app for Flutter, and I want to add chat functions to this app. Is it possible to send and receive messages using API calls?

Kyrne

andreystavitsky No, most of the encryption is on the client side and coded in JavaScript/WA.

andreystavitsky

Kyrne it's pity. And because client-side JS is obfuscated - building native encryption\decryption functions in mobile app for this chat extension will be too expensive in terms of time.

Kyrne

andreystavitsky unfortunately yes. You would need to use the exact encryption scheme I’m using for it to work anyways.

Ffuser1

After uninstalling this extension, when I reinstall it, I can't enable it again. It gives error.

I've used composer remove and then composer require to no avail.

SallyMelek

@Kyrne
Seems I have problems if users created accounts with google, discord, Facebook through fof/upload.
When inputting the password the nothing happens, it was with a account created with facebook

Console problems

SallyMelek

I think I will just stick with normal account creation, uninstall fof/OAuth

zavor

Hello, I have a problem that I have this charging all the time. Has anyone encountered anything like this yet?

I removed IOAuth and it didn't help, but I noticed that I have similar problem while logging in, only that it logs me in after refreshing the page
but the problem with private chat still exists

SallyMelek

[deleted]

SallyMelek Can you try to enable "Let users make their own password - SSO Compatibility" in Shout settings ? If you are using any kind of OUATH, the password isn't being stored in the flarum database, so this will prompt shout to set a password.

Kyrne

0.2.14

Base whether a user has private messages setup on if they have generated keys (instead of a static value) - this should prevent any weird discrepancies that require database intervention.
Add support for an upcoming extension of mine.
Other small things.

Clear cache(s) after updating

SallyMelek

Kyrne

Thanks for the update, keep up with this awesome extension.

I believe there needs to be improved on the modal because it's not responsive (for all device) at all, even on a desktop when you halve the browser, it's not user friendly.

Kyrne

SallyMelek Fixed in this update, I think.

If you read no further BACK UP YOUR DATABASE PLEASE!

0.3.0 - Important security update

tl;dr Backup your database, update, then run php flarum migrate

Overview:

It was brought to my attention by 2 of my security analysis friends that I overlooked something small. Luckily this is a very small issue that only allows tiny amounts of data to get out (such as message created time), there is absolutely no sensitive user data, encrypted messages, or anything, just metadata.

Exploit:

It would take someone who was familiar with the source code to perform the exploit. As I have taken many steps to prevent this - including: encrypting parts of the javascript code, using webassembly which cannot be decompiled, and obfuscating everything - it is unlikely anyone knew about the issue.

Fix:

In order to protect those who cannot update to 0.3.0 right away, I will not be discussing the specifics. Message and conversation IDs now use UUIDs instead of numbers and your old messages and conversations will be converted upon updating. Rest assured, the 3 of us all confirmed that this fixes the issue and per their analysis, there are no other security issues.

Updating:

Simply update to 0.3.0 and run php flarum migrate. It will probably take a long time depending on how many conversations and messages you have, let it run and be patient. Clear your cache after you are done.

SallyMelek

Kyrne

Great update, fixed crucial issues for my upcoming forum project.

Keep it up!!

anilalan

I installed the plugin for the first time but it caused crash while logging in.

Kyrne

anilalan I need more info, logs console, etc

« Previous Page Next Page »