All Activity

We are still using the existing PayPal module with thirtybees 1.6 on PHP 8.1, and without any problems!

Could you tell me more about whether there are any payment methods other than PayPal and Mollie that you have tested on Thirtybees?

Ah ok! Baust du auf einem vorhandenen Controller auf oder ist es ganz neu erstellt?

So sieht der Footer aus: So das Formular: Und so die Bestätigungsemail:

gut zu hören! magst du Screenshots von deinem Modul hier zeigen?

Werde doch nicht vor dem Stichtag wechseln, daher: https://github.com/30knees/tbsimplewithdrawal

This is the idea of this community.

I'm not entirely sure, but you might be able to change the email address in the database to one that definitely works, and then use the "forgot password" function on the back-office login page. Come on, we're going to end up with a complete guide here 🙂

I did that but it doesn't send the password to my email. I checked the mail log as well.

System doesn't know your password. We only stores it's hash -- there's no way to determine your password from that. You can use 'I forgot my password' functionality on your back office login page to generate a new password.

I installed the phpMailer and sent the test email it works. I still don't get my old password. How can I recover it?

That module is not php8 compatible. You should probably stop using it, or ask author for a new version, or hire somebody to fix it for you. In this particular case, the fix is very simple. Replace the if ($this->_cookie_path{0} != '/') $this->_cookie_path = '/'.$this->_cookie_path; with if ($this->_cookie_path[0] != '/') $this->_cookie_path = '/'.$this->_cookie_path; But who knows how many other issues that module contains.

I have following error in one of module before I install phpmailer. Can you please help?

@Madhosh i think you should urgently install the module in BO: Mail via phpmailer v.1.1.1 (this is the new module for E-mail transport and you need this)

If you can't remember your pwd, or if it's lost, you can either recover new password - you will need to fix your email issues first. But you should do that anyway create new admin user

The php script do not change your pwd. Use your original password, unless you broke it with manually changing stuff in the db.

I tried this password. What's the existing password? Is it changeme1234 After the steps as described above, I am unable to create the new password.

BO has a password problem. As Instructed, I changed inserted the php file. The force Login works and after that i followed the steps but i can't change the passoword. Neither i am getting any E-Mails on resetting password. Thats my FO. PS: I tried to update the password in myPHP Admin using the key and password but it didnt help.

Which page is that? Homepage? Can you open your BO?

Please help : I landed up in another problem. My shop gives I have checked the data base password is correct in settings file.

A little bit unnecessary, since everything is protected behind admin pwd anyway. One of the reasons to do this is to protect against any potential vulnerabilities in admin PHP files -- attacker can't exploit them if they can't access that portion of website in the first place. But there are not that many php files in /admin directory, so...

What’s your take on additionally securing the admin page with an .htpasswd file? (regardless of everything else) I think it's great that there is an official script that is user-friendly and also prevents the simple replacement of access credentials in SQL. Thanks!

that's why the recovery steps explicitly says:

Knowing the admin name a hacker just uses the php script. To secure your backend you could use a redirect, and have no contact form as those a gateways into the database.

Not really sure what are we talking here about. The fix for this problem was, previously, to change password directly in database. Which would, in fact, be a bit more complicated than it was written in the post above, because plain md5 would not work. The password would have to be salted with _COOKIE_KEY_ for this mechanism to work. You could, however, insert any password generated by php function password_hash. The new solution is to use a php script to log in into your server. To me, those two solutions are similar in complexity. For a lot people the new solution might even be easier, as it's just upload file using FTP. Changing data directly in database may be more scary.