YetiShare v4.4 Beta Bug Tracker

[adam]

There is no upgrade process from 4.4 beta to 4.4 final. You should upgrade 4.3 to 4.4 final.

 

[adam]

conf file:

#x# HTTPS-DEFAULT
server {

  server_name ibeta.website.com www.ibeta.website.com;
  return 302 https://$server_name$request_uri;
  #include /usr/local/nginx/conf/staticfiles.conf;
}
# For SPDY SSL Setup

#       listen   80;
#       server_name ibeta.website.com www.ibeta.website.com;
#       return 302 https://$server_name$request_uri;

server {
 listen 443 ssl http2;
 server_name ibeta.website.com www.ibeta.website.com;

 include /usr/local/nginx/conf/ssl/ibeta.website.com/ibeta.website.com.crt.key.conf;
 include /usr/local/nginx/conf/ssl_include.conf;

 http2_max_field_size 16k;
 http2_max_header_size 32k;
 # mozilla recommended
 ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA256:EECDH+ECDSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+SHA384:EECDH+AES128:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!CAMELLIA;
 ssl_prefer_server_ciphers   on;
 #add_header Alternate-Protocol  443:npn-spdy/3;

 # before enabling HSTS line below read centminmod.com/nginx_domain_dns_setup.html#hsts
 #add_header Strict-Transport-Security "max-age=31536000; includeSubdomains;";
 #add_header X-Frame-Options SAMEORIGIN;
 #add_header X-Xss-Protection "1; mode=block" always;
 #add_header X-Content-Type-Options "nosniff" always;
 #spdy_headers_comp 5;
 ssl_buffer_size 1369;
 ssl_session_tickets on;

 # enable ocsp stapling
 resolver 8.8.8.8 8.8.4.4 valid=10m;
 resolver_timeout 10s;
 ssl_stapling on;
 ssl_stapling_verify on;

# ngx_pagespeed & ngx_pagespeed handler
include /usr/local/nginx/conf/pagespeed.conf;
include /usr/local/nginx/conf/pagespeedhandler.conf;
#include /usr/local/nginx/conf/pagespeedstatslog.conf;

 # limit_conn limit_per_ip 16;
 # ssi  on;

 access_log /home/nginx/domains/ibeta.website.com/log/access.log main_ext buffer=256k flush=60m;
 error_log /home/nginx/domains/ibeta.website.com/log/error.log;

 include /usr/local/nginx/conf/autoprotect/ibeta.website.com/autoprotect-ibeta.website.com.conf;
 root /home/nginx/domains/ibeta.website.com/public;
 # uncomment cloudflare.conf include if using cloudflare for
 # server and/or vhost site
 include /usr/local/nginx/conf/cloudflare.conf;
 include /usr/local/nginx/conf/503include-main.conf;

 # prevent access to ./directories and files
 #location ~ (?:^|/)\. {
 # deny all;
 #}  

# handle requests to the API
   location ~ /api/v2/(.+)$ {
       if (!-e $request_filename) { rewrite ^/api/v2/(.*) /api/v2/index.php?_page_url=$1 last; }
   }

   location /files/ {
       internal;
   }

   # these locations would be hidden by .htaccess normally
   location /core/logs/ {
       deny all;
   }

 location / {
 include /usr/local/nginx/conf/503include-only.conf;


if (!-e $request_filename) {
               rewrite ^/(.*) /index.php?_page_url=$1 last;
       }


# block common exploits, sql injections etc
#include /usr/local/nginx/conf/block.conf;

 # Enables directory listings when index file not found
 #autoindex  on;

 # Shows file listing times as local time
 #autoindex_localtime on;

 # Enable for vBulletin usage WITHOUT vbSEO installed
 # More example Nginx vhost configurations at
 # http://centminmod.com/nginx_configure.html
 #try_files    $uri $uri/ /index.php;

 }

 #include /usr/local/nginx/conf/staticfiles.conf;
 include /usr/local/nginx/conf/php_ibeta.conf;
 #include /usr/local/nginx/conf/drop.conf;
 #include /usr/local/nginx/conf/errorpage.conf;
 #include /usr/local/nginx/conf/vts_server.conf;
}

include (php_ibeta.conf):

location ~ [^/]\.php(/|$) {
       if (!-e $request_filename) { rewrite ^/(.*) /index.php?_page_url=$1 last; }  
include /usr/local/nginx/conf/503include-only.conf;
   fastcgi_split_path_info ^(.+?\.php)(/.*)$;
   if (!-f $document_root$fastcgi_script_name) {
       return 404;
   }
   fastcgi_pass   127.0.0.1:9000;
   #fastcgi_pass   unix:/tmp/php5-fpm.sock;
   fastcgi_index  index.php;
   #fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name;
   fastcgi_param  SCRIPT_FILENAME    $request_filename;
   #fastcgi_param PHP_ADMIN_VALUE open_basedir=$document_root/:/usr/local/lib/php/:/tmp/;

# might shave 200+ ms off PHP requests
# which don't pass on a content length header
# slightly faster page response time at the
# expense of throughput / scalability
#sendfile on;
#tcp_nopush off;
#keepalive_requests 0;

fastcgi_connect_timeout 60;
fastcgi_send_timeout 180;
fastcgi_read_timeout 180;
fastcgi_buffer_size 512k;
fastcgi_buffers 512 16k;
fastcgi_busy_buffers_size 1m;
fastcgi_temp_file_write_size 4m;
fastcgi_max_temp_file_size 4m;
fastcgi_intercept_errors off;

# next 3 lines when uncommented / enabled
# allow Nginx to handle uploads which then 
# passes back the completed upload to PHP
#fastcgi_pass_request_body off;
#client_body_in_file_only clean;
#fastcgi_param  REQUEST_BODY_FILE  $request_body_file;

#new .04+ map method
fastcgi_param HTTPS $server_https;

# comment out PATH_TRANSLATED line if /usr/local/lib/php.ini sets following:
# cgi.fix_pathinfo=0 
# as of centminmod v1.2.3-eva2000.01 default is set to cgi.fix_pathinfo=1

fastcgi_param  PATH_INFO          $fastcgi_path_info;
fastcgi_param  PATH_TRANSLATED    $document_root$fastcgi_path_info;

fastcgi_param  QUERY_STRING       $query_string;
fastcgi_param  REQUEST_METHOD     $request_method;
fastcgi_param  CONTENT_TYPE       $content_type;
fastcgi_param  CONTENT_LENGTH     $content_length;

fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
fastcgi_param  REQUEST_URI        $request_uri;
fastcgi_param  DOCUMENT_URI       $document_uri;
fastcgi_param  DOCUMENT_ROOT      $document_root;
fastcgi_param  SERVER_PROTOCOL    $server_protocol;
fastcgi_param  REQUEST_SCHEME     $scheme;
fastcgi_param  HTTPS              $https if_not_empty;
fastcgi_param  HTTP_PROXY         "";

fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;

fastcgi_param  REMOTE_ADDR        $remote_addr;
fastcgi_param  REMOTE_PORT        $remote_port;
fastcgi_param  SERVER_ADDR        $server_addr;
fastcgi_param  SERVER_PORT        $server_port;
fastcgi_param  SERVER_NAME        $server_name;

# Set php-fpm geoip variables
fastcgi_param GEOIP_COUNTRY_CODE $geoip_country_code;
fastcgi_param GEOIP_COUNTRY_CODE3 $geoip_country_code3;
fastcgi_param GEOIP_COUNTRY_NAME $geoip_country_name;
fastcgi_param GEOIP_CITY_COUNTRY_CODE $geoip_city_country_code;
fastcgi_param GEOIP_CITY_COUNTRY_CODE3 $geoip_city_country_code3;
fastcgi_param GEOIP_CITY_COUNTRY_NAME $geoip_city_country_name;
fastcgi_param GEOIP_REGION $geoip_region;
fastcgi_param GEOIP_CITY $geoip_city;
fastcgi_param GEOIP_POSTAL_CODE $geoip_postal_code;
fastcgi_param GEOIP_CITY_CONTINENT_CODE $geoip_city_continent_code;
fastcgi_param GEOIP_LATITUDE $geoip_latitude;
fastcgi_param GEOIP_LONGITUDE $geoip_longitude;

# PHP only, required if PHP was built with --enable-force-cgi-redirect
fastcgi_param  REDIRECT_STATUS    200;

                  }

Thanks for the info. You need to tell php to handle the api requests aswell. You just have this:

location ~ /api/v2/(.+)$ {
if (!-e $request_filename) { rewrite ^/api/v2/(.*) /api/v2/index.php?_page_url=$1 last; }
}

You need the php handler code aswell. It's the same code in the php location.

 

[sevennight955648]

Hey Adam, A fast question:

I'm using the v4.3 with a custom theme on front-end, if I'm going to upgrade to v4.4, it will give some kind of problem the new theme?

 

[adam]

Hey Adam, A fast question:

I'm using the v4.3 with a custom theme on front-end, if I'm going to upgrade to v4.4, it will give some kind of problem the new theme?

Yes it's possible, it depends how much you've changed it. There's not a lot of front-end changes in this release so you might be ok. I'd test it locally of in dev first.

 

[tomaszladniak35584]

Please add in the future a unique index on config_key in site_config table so if you're doing upgrades or patches it doesn't add multiple identical fields.

 

[adam]

Please add in the future a unique index on config_key in site_config table so if you're doing upgrades or patches it doesn't add multiple identical fields.

It wont add duplicates if you apply the sql patches.

 

[paypal1352]

conf file:
Thanks for the info. You need to tell php to handle the api requests aswell. You just have this:

location ~ /api/v2/(.+)$ {
if (!-e $request_filename) { rewrite ^/api/v2/(.*) /api/v2/index.php?_page_url=$1 last; }
}

You need the php handler code aswell. It's the same code in the php location.

Hey Adam, I made the change but now i get

Error 404
Error: Failed finding url: https://ibeta.xxxxxxx.com/api/v2/authorize

 

[adam]

@paypal1352 - can you post a copy of the rules you have now? Do you have the file /api/v2/index.php?

 

[paypal1352]

conf file:

#x# HTTPS-DEFAULT
server {

  server_name ibeta.website.com www.ibeta.website.com;
  return 302 https://$server_name$request_uri;
  #include /usr/local/nginx/conf/staticfiles.conf;
}
# For SPDY SSL Setup

#       listen   80;
#       server_name ibeta.website.com www.ibeta.website.com;
#       return 302 https://$server_name$request_uri;

server {
 listen 443 ssl http2;
 server_name ibeta.website.com www.ibeta.website.com;

 include /usr/local/nginx/conf/ssl/ibeta.website.com/ibeta.website.com.crt.key.conf;
 include /usr/local/nginx/conf/ssl_include.conf;

 http2_max_field_size 16k;
 http2_max_header_size 32k;
 # mozilla recommended
 ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA256:EECDH+ECDSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+SHA384:EECDH+AES128:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!CAMELLIA;
 ssl_prefer_server_ciphers   on;
 #add_header Alternate-Protocol  443:npn-spdy/3;

 # before enabling HSTS line below read centminmod.com/nginx_domain_dns_setup.html#hsts
 #add_header Strict-Transport-Security "max-age=31536000; includeSubdomains;";
 #add_header X-Frame-Options SAMEORIGIN;
 #add_header X-Xss-Protection "1; mode=block" always;
 #add_header X-Content-Type-Options "nosniff" always;
 #spdy_headers_comp 5;
 ssl_buffer_size 1369;
 ssl_session_tickets on;

 # enable ocsp stapling
 resolver 8.8.8.8 8.8.4.4 valid=10m;
 resolver_timeout 10s;
 ssl_stapling on;
 ssl_stapling_verify on;

# ngx_pagespeed & ngx_pagespeed handler
include /usr/local/nginx/conf/pagespeed.conf;
include /usr/local/nginx/conf/pagespeedhandler.conf;
#include /usr/local/nginx/conf/pagespeedstatslog.conf;

 # limit_conn limit_per_ip 16;
 # ssi  on;

 access_log /home/nginx/domains/ibeta.website.com/log/access.log main_ext buffer=256k flush=60m;
 error_log /home/nginx/domains/ibeta.website.com/log/error.log;

 include /usr/local/nginx/conf/autoprotect/ibeta.website.com/autoprotect-ibeta.website.com.conf;
 root /home/nginx/domains/ibeta.website.com/public;
 # uncomment cloudflare.conf include if using cloudflare for
 # server and/or vhost site
 include /usr/local/nginx/conf/cloudflare.conf;
 include /usr/local/nginx/conf/503include-main.conf;

 # prevent access to ./directories and files
 #location ~ (?:^|/)\. {
 # deny all;
 #}  

# handle requests to the API
  location ~ /api/v2/(.+)$ {
        if (!-e $request_filename) { rewrite ^/api/v2/(.*) /api/v2/index.php?_page_url=$1 last; }
     fastcgi_pass   127.0.0.1:9000;
    #fastcgi_pass   unix:/tmp/php5-fpm.sock;
    fastcgi_index  index.php;
    #fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name;
    fastcgi_param  SCRIPT_FILENAME    $request_filename;
    #fastcgi_param PHP_ADMIN_VALUE open_basedir=$document_root/:/usr/local/lib/php/:/tmp/;
    }


   location /files/ {
       internal;
   }

   # these locations would be hidden by .htaccess normally
   location /core/logs/ {
       deny all;
   }

 location / {
 include /usr/local/nginx/conf/503include-only.conf;


if (!-e $request_filename) {
               rewrite ^/(.*) /index.php?_page_url=$1 last;
       }


# block common exploits, sql injections etc
#include /usr/local/nginx/conf/block.conf;

 # Enables directory listings when index file not found
 #autoindex  on;

 # Shows file listing times as local time
 #autoindex_localtime on;

 # Enable for vBulletin usage WITHOUT vbSEO installed
 # More example Nginx vhost configurations at
 # http://centminmod.com/nginx_configure.html
 #try_files    $uri $uri/ /index.php;

 }

 #include /usr/local/nginx/conf/staticfiles.conf;
 include /usr/local/nginx/conf/php_ibeta.conf;
 #include /usr/local/nginx/conf/drop.conf;
 #include /usr/local/nginx/conf/errorpage.conf;
 #include /usr/local/nginx/conf/vts_server.conf;
}

include (php_ibeta.conf):

location ~ [^/]\.php(/|$) {
       if (!-e $request_filename) { rewrite ^/(.*) /index.php?_page_url=$1 last; }  
include /usr/local/nginx/conf/503include-only.conf;
   fastcgi_split_path_info ^(.+?\.php)(/.*)$;
   if (!-f $document_root$fastcgi_script_name) {
       return 404;
   }
   fastcgi_pass   127.0.0.1:9000;
   #fastcgi_pass   unix:/tmp/php5-fpm.sock;
   fastcgi_index  index.php;
   #fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name;
   fastcgi_param  SCRIPT_FILENAME    $request_filename;
   #fastcgi_param PHP_ADMIN_VALUE open_basedir=$document_root/:/usr/local/lib/php/:/tmp/;

# might shave 200+ ms off PHP requests
# which don't pass on a content length header
# slightly faster page response time at the
# expense of throughput / scalability
#sendfile on;
#tcp_nopush off;
#keepalive_requests 0;

fastcgi_connect_timeout 60;
fastcgi_send_timeout 180;
fastcgi_read_timeout 180;
fastcgi_buffer_size 512k;
fastcgi_buffers 512 16k;
fastcgi_busy_buffers_size 1m;
fastcgi_temp_file_write_size 4m;
fastcgi_max_temp_file_size 4m;
fastcgi_intercept_errors off;

# next 3 lines when uncommented / enabled
# allow Nginx to handle uploads which then 
# passes back the completed upload to PHP
#fastcgi_pass_request_body off;
#client_body_in_file_only clean;
#fastcgi_param  REQUEST_BODY_FILE  $request_body_file;

#new .04+ map method
fastcgi_param HTTPS $server_https;

# comment out PATH_TRANSLATED line if /usr/local/lib/php.ini sets following:
# cgi.fix_pathinfo=0 
# as of centminmod v1.2.3-eva2000.01 default is set to cgi.fix_pathinfo=1

fastcgi_param  PATH_INFO          $fastcgi_path_info;
fastcgi_param  PATH_TRANSLATED    $document_root$fastcgi_path_info;

fastcgi_param  QUERY_STRING       $query_string;
fastcgi_param  REQUEST_METHOD     $request_method;
fastcgi_param  CONTENT_TYPE       $content_type;
fastcgi_param  CONTENT_LENGTH     $content_length;

fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
fastcgi_param  REQUEST_URI        $request_uri;
fastcgi_param  DOCUMENT_URI       $document_uri;
fastcgi_param  DOCUMENT_ROOT      $document_root;
fastcgi_param  SERVER_PROTOCOL    $server_protocol;
fastcgi_param  REQUEST_SCHEME     $scheme;
fastcgi_param  HTTPS              $https if_not_empty;
fastcgi_param  HTTP_PROXY         "";

fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;

fastcgi_param  REMOTE_ADDR        $remote_addr;
fastcgi_param  REMOTE_PORT        $remote_port;
fastcgi_param  SERVER_ADDR        $server_addr;
fastcgi_param  SERVER_PORT        $server_port;
fastcgi_param  SERVER_NAME        $server_name;

# Set php-fpm geoip variables
fastcgi_param GEOIP_COUNTRY_CODE $geoip_country_code;
fastcgi_param GEOIP_COUNTRY_CODE3 $geoip_country_code3;
fastcgi_param GEOIP_COUNTRY_NAME $geoip_country_name;
fastcgi_param GEOIP_CITY_COUNTRY_CODE $geoip_city_country_code;
fastcgi_param GEOIP_CITY_COUNTRY_CODE3 $geoip_city_country_code3;
fastcgi_param GEOIP_CITY_COUNTRY_NAME $geoip_city_country_name;
fastcgi_param GEOIP_REGION $geoip_region;
fastcgi_param GEOIP_CITY $geoip_city;
fastcgi_param GEOIP_POSTAL_CODE $geoip_postal_code;
fastcgi_param GEOIP_CITY_CONTINENT_CODE $geoip_city_continent_code;
fastcgi_param GEOIP_LATITUDE $geoip_latitude;
fastcgi_param GEOIP_LONGITUDE $geoip_longitude;

# PHP only, required if PHP was built with --enable-force-cgi-redirect
fastcgi_param  REDIRECT_STATUS    200;

                  }

 

[adam]

Seems ok from what I can see, although there's a number of other rules in the same file which may (or may not!) affect it. I assume the top one is called before the bottom? Also, are you using pure Nginx, i.e. not Apache proxy?

Maybe send me access via the ticketing system and I'll try to debug it for you?

 

[paypal1352]

Ya just nginx no apache proxy, I use google auth 2 factor for ssh so i'll look into disabling that first then i'll put in a ticket, thanks for your help Adam

 

[adam]

You could also test the permissions on the /api/v2/index.php file. Ensure they have execute permissions. Test with 777 or 755.

 

[nou4r6311]

Files aren't being shown, the page is always loading and there is a missing javascript

 

[adam]

The beta phase is closed. Please can you raise this via the ticketing system and we'll take a look.

 

[adam]

Thread closed.