Free Flarum hosting on an expert platform by FreeFlarum.com

SKevo

AowVN there was an issue with PHP FPM not allocating enough memory to complete the operation. When we updated to PHP 8, it overwrote the default config and the memory limit was 128 MB. I've set it to 512 MB, which is how it was before & that should be enough. Let me know if you experience this issue again

AowVN

SKevo Thanks a lot, now it's working smoothly

SKevo

Just now, an important bug while registering new forums was discovered.

We've overlooked a small mistake, where the server wouldn't turn forum name to lowercase. So, if you registered a forum with at least one uppercase character, your forum would show 404 (because the Nginx config hostname would break, as there can't be uppercase characters in domain name).

I've patched this for all new forums, and also fixed all previously registered forums affected by this & re-send their administrators a confirmation E-mail. We apologize for the inconvenience.

AowVN

Hi again , my forum just has been hacked 😅

This account is registered normally, but he is set as "admin" in my forum. I was lucky to find this out before he could do anything while randomly checking the group list .

my users are 100% vietnamese, so i know what their account will look like, this account is completely different ( i just ran the forum to checking and haven't introduced it anywhere)

The question is how can he grant admin rights (of course flarum's configured that only admin can change the user's group), i'm sure all admin accounts are managed by me and passwords are hidden

Is there any way for me to know what happened ? (like user logs for example) .

The scenario I'm thinking of right now is a brute-force attack (because the login page isn't protected by recaptcha or something like that, and they just need to check with username admin)

it's quite scary when some weird account is set as admin in your own forum

SKevo

AowVN oh I am sorry, that was just me - I needed to give myself admin in order to resolve the issue that you had earlier. I forgot to remove the account, I apologize for that

AowVN

SKevo oh , so it's okay .
Next time just let me know if it's you 😄

luceos

SKevo epic 🤩

SKevo

Yep, we humans do sometimes make stupid things here and there, and I seem to be one of them...

Anyways, on the bright side, I've just fixed another couple of bugs:

Wrong path to backup folder was used. This is fixed now, and uses the new path to another disk.
If you tried to log-in with an "impossible" forum name into https://freeflarum.com/settings (e. g.: name without alphanumeric characters, a nonsense), it would produce an internal server error that wasn't handled. This will now show a proper error message and asks you to login with your correct forum name instead.
Status page wasn't working properly and would produce an error while checking for errors (ironically) - this should be now all good at https://freeflarum.com/status.

meetdilip

Someone is omnipresent on FF 😉

rob006

SKevo Translations
The FreeFlarum website is now completely translatable! We just haven't finished any translation yet... We have tried Smartcat as the translation service during the testing since Weblate was hard to implement for me (Redis cache, since we don't use that, and GitHub linking specifically), but I will take a look at it again. Meanwhile, I will setup it at Smartcat (at least for now) and we could start accepting translations for the community for the main website (https://freeflarum.com). Note that this is not going to be a paid position!

I can setup a project for you on my instance if you want.

SKevo

rob006 that would be very cool! We can discuss the details later on Discord. The translation files are in a private repo, I'll need to figure out a way to link them to our public repo first

luceos

rob006 love the initiative Robert 😍

rob006

SKevo Repo with translations does not need to be public, you just need to grant write access for bot so he can access it and commit new translations.

SKevo

rob006 got it, that's something @Sanguine should take a look at since I'm not the owner of the repo

oontsa

Hi guys. I have a minor problem when trying to setup OAuth with Google vendor. They want me to download file or insert a code into a main page of my forum. How do i suppose to complete their requrements? As i see i do not have direct access into file system of my forum, maybe i wrong. Thanks for answer! 😀

SKevo

oontsa no, file upload isn't possible. I believe that there are alternative verification methods (as you mentioned - inserting a HTML tag into head). You could use the HTML Head Items extension for this type of verification

oontsa

SKevo
Could I insert this code into a custom HTML page or I can insert code into a custom header?

SKevo

oontsa you must insert the code into <head>, otherwise Google won't recognize it. HTML Head Items extension must be used for this purpose, as custom header is added on top of the inner <body> tag instead of <head> and custom HTML pages wouldn't work either I think

oontsa

SKevo Found it, many thanks, dude!

AowVN

SKevo Can the number of registered accounts exceed 250? My forum usually has about 20 to 30 active people, but the number of accounts has reached 200.

I just want to make sure where is its limit to take actions to remove redundant accounts

SKevo

AowVN 250 is the soft limit, but it can exceed this number, as there are no checks from FreeFlarum's side to remove accounts. If it becomes a problem for other forums (e. g.: your forum is too resource intensive), we will ask you to take an action or move your forum elsewhere.

Your user count seems fine, FYI we have forums with even 1,000 accounts and they're fine. That's because inactive accounts aren't a problem, as they're just a data in the database.

We didn't do any stress testing to explore the true limit, as we have no tools to do so. I plan to update this info in the documentation to make it visible to everyone, since this is number 1 asked question and it's only stated in our Terms & Conditions

« Previous Page Next Page »