IPS IPS Community Suite 4.7.16

This is our March maintenance release. This release also includes an important security related fix for Commerce users.

New features:

• Pages Databases in Clubs

Additional Information​

Security

• Resolves an issue in Commerce when tampering with filters could cause errors.

Core

• Improved the efficiency when getting attachments for topic statistics.
• Improved the efficiency of streams when "Content I posted in" is selected.
• Improved the Internal Embeds system to show better error messages for deleted comments & reviews.
• Improved performance of invalidating member sessions when using Redis.
• Added new Moderator actions by action statistics section.
• Fixed Checkbox Overview Statistics not working properly.
• Fixed Moderator Activity statistics table not displaying properly.
• Fixed Warnings over time statistics table not displaying properly.
• Fixed Suspended users over time statistics table not displaying properly.
• Fixed saved charts not displaying data correctly when custom form filters are used.
• Fixed Geographical Charts CSV download not generating properly.
• Fixed an issue where creating an activity stream in the ACP could be missing the clubs filter.
• Fixed an issue where the badge title would be shown as hash value in translated notification emails.
• Fixed an issue where the Posts Per Day Limit was also used for private messages.
• Fixed an issue in the members/warnings endpoint where the POST request could fail while giving a member a warning if warning actions were present.
• Fixed an issue where deleting content may send a delete request to Community Hive, even if it was not enabled.
• Fixed an issue where 3rd party applications with a broken/missing versions file would break the upgrader.
• Fixed an issue where members with a false validation flag would be unable to login.
• Fixed an issue where the Google Maps Autocomplete Integration could display an error message.
• Fixed an issue where not all clubs may be shown on the member profile clubs page.
• Replaced the hardcoded forum_id in the promotion achievement extension.
• Fixed an issue where the Signature Settings page couldn't be accessed to change the signature visibility, without permissions to edit signatures.
• Fixed an issue where new comment notifications posted in anonymous topics were showed as posted by an anonymous member.
• Fixed an issue with the post count value for the Mass Move /Mass Delete action.
• Fixed an issue where delayed deleted content from private clubs isn't shown in the ModCP - Deleted Content area.
• Fixed the default value for the Manifest related manifest_details setting.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where YouTube embeds may not lazy-load.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where admins with permission to manage stored replies could still not manage these.
• Fixed an issue where the club filters could cause an EX0 error when a not existing field was used.

Blogs

• Fixed an issue where moving a blog entry and sending a moderation alert may cause an error.

Forums

• Added new Solved Topics by Group statistics section.
• Added new Unsolved Topics statistics section.
• Added Top Solvers statistics section.

Courses

• Fixed Enrollments statistics table not displaying status correctly.
• Fixed an issue where sorting the enrollments in the ACP by name would throw an error.
• Fixed a missing language string.
• Fixed not translatable module titles.

Pages

• Added ability for database categories to be added to Clubs.
• Views are now tracked for Pages.
• Fixed an issue where pages were not reindexed after WYSIWYG blocks were added/edited.
• Fixed an issue where record thumbnails which were created via the REST API hadn't the proper thumbnail size.

Platform

• Page views for pages will now be included in analytics reports.
• Fixed an issue with the post before registering flow when content was identified as spam.

Commerce

• Fixed an issue with the subscriptions member filter.
• Fixed a broken default value in the businessAddress.
• Fixed an issue in the commerce categorySidebar template.

Events

• Added organizer, eventAttendanceMode, and VirtualLocation to events JSON_LD.
• Fixed an issue where guests searching for events could see an error.

Downloads

• Fixed an issue in the Downloads File Embed Template where the comment count was shown for files in categories without comments.

Gallery

• Fixed an issue where the vertical image widget wouldn't show the image in Chrome.
• Fixed missing alt texts for event cover images.

Converters

• Improved conversion of attachments in WordPress, Attachments will now be converted inside posts instead of converting to media files.

Changes affecting third-party developers and designers​

• Added new core/admin/global template userLinkWithPhoto.
• Added new tableLangPrefix property for Dynamic Charts.
• Fixed adding new warning reason throwing an error while IN_DEV.
• Fixed an issue where the radio form template would result in an error if no htmlID was set.
• Fixed an issue where clean IN_DEV installations have a broken serviceworker if no manifest details were set.
• Updated HTMLPurifier to 4.17.0.
• Replaced JShrink with JS-minify for better Javascript compatibility.
• Removed jQuery History, removing deprecated 'onunload' handler.

January maintenance released --01/23/2024

##############

Additional Information​

Core

• Added the embed.php controller to the robots.txt file and added a noindex tag so that search engines don't index the content.
• Added the referring URL to the content of the Contact Form.
• Changed PHP recommendation to 8.1.
• Changed MySQL recommendation to 8.0.13.
• Improved the contact us form UX for guests.
• Improved the queued comments count handling.
• Improved the description for the similar content widget to highlight the different flow when ES is used.
• Improved the thumbImage template to add an alt tag and optimize lazy loading.
• Fixed a design issue on the error page.
• Fixed an issue in the DELETE /core/members/{id}/secgroup/{groupId} REST endpoint, where members could lose a secondary member group.
• Fixed an issue where calling the GraphQL API without a query would throw an EX0 exception.
• Fixed an issue with the x hashtag not being set.
• Fixed an issue where members with a false validation flag would be unable to login.
• Fixed an issue with reliability of logging early in the boot process.
• Fixed an issue with invalid page URL parameters.
• Fixed an issue where profile fields weren't shown on content submissions.
• Fixed a typo in siteSocialLinks template.
• Fixed an issue on the registration form, where one could submit any coppaa/birthday combination.
• Fixed an issue where tags were not showing in alphabetical order (when enabled) for search results.
• Fixed an issue where the webhook payload from Status Posts wasn't properly formatted.
• Fixed Member List Exports not properly formatting Yes / No and Checkbox profile fields.
• Fixed an issue where disabled login handlers would still be accessible in the UCP.
• Fixed an issue where the member webhook payload contained a false value for the allowAdminEmails key.
• Fixed an issue parsing <video> elements with multiple <source> elements when lazy-load is enabled.
• Fixed an issue inthe follower template where we didn't cast the page as integer.
• Fixed an issue where giving cookie consent to the IPS cookies would result in an empty page.
• Fixed an issue where web app icons may be cached by a CDN and show older versions.
• Fixed a regression when copy & pasting files in an editor by reverting a previous fix.
• Deleting a webhook will now also delete the data from core_api_webhook_fires.
• Removed the deprecated twitter_hashtag` setting.
• Removed the profile blocking from the default robots.txt file.
• Fixed an issue where Status Feeds don't update after saving statuses and replies.

Blogs

• Fixed an IN_DEV issue where the Blog Edit form would result in an error.
• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed an issue where the "Content Approval Hint" wasn't shown while creating blog entries.

Courses

• Fixed an issue on the courses quiz form, where images wouldn't be shown.

Events

• Fixed protocol relative URL's showing in Blog RSS Feeds.

Downloads

• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed an issue with the downloads/files/{id}/history endpoint where the update time wouldn't be changed.
• Fixed an issue where the search custom fields form showed a search related field.
• Fixed an issue where the file screenshots were not sorted correctly.

Forums

• Improved the efficiency of the "Time to solved" chart.
• Improved the JSON-LD for Question Topics to show replies as suggested answers.
• Fixed an issue with the fluid view, where invalid forum ids would remain "forever" in the address bar.
• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed 2 faulty canHide permission checks.
• Fixed an issue where links to comments in archived topics would point to the wrong location.

Commerce

• Improved the design on the ACP Support Form to improve the readability of the "GOTO" links.
• Fixed an issue where expired or canceled subscriptions did not always restore the appropriate member groups.
• Fixed an issue where Google/Apple Pay transactions may auto-capture when held by a fraud rule.
• Fixed an issue where the same PayPal transaction could be processed twice.
• Fixed an issue where 3D Secure status may not show correctly on some Stripe transactions.

Pages

• Fixed an issue where the rss import feature skipped the title prefix value.
• Fixed an issue where records created via the REST API or RSS import wouldn't be linked correctly to other items.
• Fixed an issue where page record comments would create posts in archived topics when topic syncing is enabled.
• Fixed an issue with the database filter widget where the custom fields default value was set automatically.
• Fixed an issue where unsetting the "Remember filters" checkbox wouldn't remove the filter cookie.
• Fixed an issue where moving/deleting comments could stop the queue from processing.

Gallery

• Fixed an issue where editing the gallery image details would remove the exif data.
• Fixed an issue where editing the gallery image or video details while the file is still uploading would not save the details.
• Fixed an issue where allowing a user to submit images to an album they do not own may not allow them to submit.

Converters

• Fixed tags not displaying properly when rebuild completes before permissions are set.

Platform

• Improved the un-archiving process for topics when archiving gets disabled.

Changes affecting third-party developers and designers​

• The POST /core/members/{id}/secgroup/{groupId} endpoint will log the changes to the member history.
• Fixed an IN_DEV issue in the checkout form, which was caused by an undefined variable.
• Fixed an INDEV issue where ignoring a member from his hovercard with INDEV mode would show a "CSRF KEY present in the url error".
• The Contact Form will now contain a "contact_referrer" value when the form is submitted. It is up to the calling extensions handleForm() method to determine how to handle this information.
• Performance improvements targeting MySQL 8.
• Changed the method signature for \IPS\Node\Model::setLastComment() and \IPS\Content\Item::resyncLastComment()

Forums

• Added a new "Topics with No Replies" list to the Topics statistics section.
• Added a setting for each forum to exclude topics marked as solved that were posted before a specific time.
• Fixed an issue where it was possible to downvote answers even when negative ratings were disabled.
• Fixed an issue where club forums were showing in global forum stats.
• Fixed an issue where empty answers (including image/embed only answers) may cause a json-ld validation error.

Downloads

• Fixed linked files not showing a title on the download prompt when multiple files are available.
• Fixed new versions always requiring approval even if submitter is set to bypass content approval.

Events

• Fixed an issue where copying an event did not honor automatically following content posted.
• Fixed a permission conflict where a user could see a calendar, but not read events, could not see those events in the listing.

Converter

• Added Invision Community merge tools for Calendar and Blog.

Commerce

• Fixed Paid club memberships not able to be renewed if a renewal invoice is already pending.
• Fixed incorrect renewal terms description when manually adding a member to a subscription.

Pages

• Fixed an issue where records may show incorrect posted in badges if forum comment sync is enabled.
• Separated Records per page and Comments per page in database settings.
• Fixed record image not able to be set via REST API.
• Fixed an issue where promoting a topic to the CMS could fail if the target DB had a custom field which was set to be unique.
• Fixed an issue where some field types did not display properly when viewing revisions.

Gallery

• Optimized the ACP Dashboard widget.

Blogs

• Fixed extraneous arrow showing for child blog categories.

Courses

• Fixed an issue where module names were returning all languages simultaneously.
• Fixed an issue where images in course lessons wouldn't load in a lightbox.
• Fixed an issue where long descriptions caused the course image to stretch out on the page.

Platform

• Fix content removed by spam analysis still sending unapproved notifications.

Changes affecting third-party developers and designers​

• Searching specific REST API log endpoints with variables (ex, {id}, {key}, etc.) is limited to the following regex pattern: [a-zA-Z0-9-]+

full chanagelog for this version link https://invisioncommunity.com/release-notes/

Key Changes​

This is our July maintenance release.

Additional Information​

Core

• Added some missing acp live search keywords.
• Added ability to disable or redirect PII data requests & account deletion.
• Improved the security of the visual language editor.
• Improved the responsiveness of the buttons in the cookie message.
• Fixed an issue where an extra space can be added to the end of dates in specific locales.
• Fixed an issue where oAuth tokens weren't revoked for banned users.
• Fixed an issue where it was not possible to cancel optional mfa setup.
• Fixed an issue where page output may be broken if a large signature is used.
• Fixed an issue where Edge on Android could be detected as Chrome.
• Fixed an issue where achievements could be abused in private messages.
• Fixed a database error when viewing the moderator control panel.
• Fixed a missing language string in Member History when an account deletion has been cancelled.
• Fixed an issue where it wasn't possible to dismiss an alert if a password change was being forced.
• Fixed an issue where a solved notification may have incorrect wording.
• Fixed an issue where the All / None buttons on chart filters may not work.
• Fixed an issue where images would be restricted to 1200px regardless of the max image dimensions to display setting.
• Fixed an issue where posts from future topics may show in profile content streams.
• Fixed an issue where webhooks may send an empty auth header which can confuse some destination URLs.
• Fixed an issue where saving custom charts failed.
• Fixed an issue where AdminCP notifications emails for PII Requests & Account Deletion may not be sent.
• Fixed an error when using question & answer challenges for captcha with recent PHP versions.
• Fixed an issue where the cookie information page wasn't visible for validating members.
• Fixed an issue where the cookie consent opt-in may not return the visitor to the page they were on.
• Fixed an issue where a specially crafted search query could cause an uncaught exception.
• Fixed an issue where the onboarding wizard may show an error on save.

Pages

• Fixed an instance where an empty ACP error notification may get logged.
• Fixed an issue where large file uploads to Pages media may fail.
• Fixed an issue where a moderator can not edit database records if their group does not have edit permission, however they have moderator permissions to edit globally.

Forums

• Changed og:image on topic view to one image, more than one is not fully compatible with the meta tag editor.
• Fixed an issue where a significantly large number of reactions could cause memory issues in the expanded topic list view.

Events

• Fixed an issue where automated tests may log an error in the admin control panel from a no longer used block of code.

Converter

• Fixed an error caused when merging an Invision Community using letter photos.

Commerce

• Fixed an issue where subscription upgrade/downgrade pricing was not calculated correctly.
• Fixed an issue where making paying with PayPal after a failure caused an exception.
• Fixed Maxmi9nd AdminCP notification missing language string.

Courses

• Fixed an issue in the FrontNavigation extension, where the item was shown without a permission check.
• Fixed an issue where moderators were unable to access ModCP with Courses enabled.

Platform

• Updated the Live Topic conversion notification to link to the new topic.
• Fixed an issue where a host or staff member not in an attendee group could not join

Downloads

• Fixed an issue where responding to reviews did not work.

​

This is an essential security and maintenance update. Including improvements for our recently release PII & Statistics features.We recommend not using the visual language editor until you upgrade.

Additional Information​

Core

• Improved the Cookie Consent system based on feedback from our community.
• Fixed some missing language strings in Member History relating to PII / Account deletion requests.
• Fixed some issues with the AdminCP notification for PII requests.
• Fixed an issue where an administrator exporting PII for a member may not contain the members device data.
• Fixed an issue with links in the PII request emails.
• Improved the security of the Visual Language Editor.

Platform

• Fixed an issue with content item analytics.

Changes affecting third-party developers and designers​

• _getEssentialCookies() can now return a wildcard at the end of a cookie name where there may be a different ID on each, i.e. ipbforumpass_*

Key Changes​

This is our June maintenance release.
Key changes include:

• Strengthening Community Trust with Privacy and PII Data Features
• Explore Our New Reporting and Statistical Capabilities

Core

• Added a minimum of one day end date to Alerts.
• Replaced Authy MFA with Verify.
• Enforce account completion (display name and email are set) before using the account to login to third party OAuth Clients.
• Fixed an issue where the Moderation IP Tool wouldn't show the logged IP addresses for private messages.
• Fixed an issue where creating a new content item may show an undefined index error.
• Fixed an issue where the rebuild URL queue extension class could throw an exception if the item author had been deleted.
• Fixed an issue where the close date of Polls could break API outputs.
• Fixed an issue where rebuilding achievements wasn't logged in the AdminCP.
• Enforce account completion (display name and email are set) before using the account to login to third party OAuth Clients
• Fixed an issue where older iOS devices (<13.4) had images and other elements that would not load.
• Fixed an issue where it was not possible to apply paid club renewal changes to existing purchases.
• Fixed an issue where moderators could receive report notifications in containers they cannot moderate in.
• Fixed an issue when OAuth providers use really long codes for authorization.
• Fixed an issue where the timezone cookie required extra validation.

Gallery

• Fixed an issue where previous and next links may not work in Gallery if FURLs are not set up.

Commerce

• Fixed an issue where reactivating subscriptions may cause an error if the original invoice is deleted.
• Fixed an issue where bad data could cause the store to throw a fatal error.
• Fixed an issue where changing the owner of a club does not correctly update the payment recipient.
• Fixed an issue where tax caused PayPal not to work correctly.
• Fixed an issue where using a coupon and paying with PayPal did not work.
• Fixed an issue where changing renewal prices for parent/child products did not update existing purchases.
• Fixed an issue where upgrading from a monthly to an annual subscription did not properly set the expiration date.

Pages

• Fixed an issue where long text broke the record display layout.

Blog

• Fixed the broken byline in blog entries for future publish entries.

Downloads

• Updated the grid layout to fix inconsistencies with some 3rd party themes.

Clubs

• Fixed poor alignment of Accept button on "Users Requesting Access" page

Platform

• Added ability to remove a block on an email that has hard bounced in the past.
• Enhanced transparency for the reason when emails are blocked.

Changes affecting third-party developers and designers​

• New Hooks will contain mixin phpDoc.
• Updated Whoops to 2.15.2.
• Changed the return type of the Queue Extensions preQueueData method.
• Fixed issue where the settings.json file would be written incorrectly.
• Fixed an issue where the \IPS\Helpers\Table\Db could return a wrong total count for the pagination when the query used a groupBy statement.

GraphQL, REST, Webhooks and Zapier​

• Fixed an issue in the REST API Content Controller where filtering for items without polls failed.

Core

• Added support for Emoji 14.
• Added a minimum of one day end date to Alerts.
• Improved the database checker to change member id columns to BIGINT if they are nearing a limit.
• Improved performance in some situations when posting content.
• Improved outbound connection speed when connecting to the same host multiple times.
• Move web app settings to a new controller in the AdminCP.
• Fixed an issue where moving conversations between folders may move to the wrong folder or fail to move.
• Fixed an issue where the member_create webhook wouldn't include custom profile field data.
• Fixed an issue where club settings would be shown on the ACP-Settings-Clubs page even if clubs were disabled.
• Fixed an issue where "this club" was not set as the default search context when viewing clubs.
• Fixed an issue where deleting a post from a hidden topic could remove the topic from the activity streams.
• Fixed an issue where the same emoji may show in the shortcode popup more than once where the name is the same.
• Fixed an issue where pasting files into the editor may display an unsupported file type notification.
• Fixed an issue where profanity filters were being applied to account email addresses.
• Hid ACP statistics blocks for Clubs when Clubs are disabled.
• Fixed an issue where users could edit comments that were hidden by a moderator.
• Hid member-menu in ModCP Approval Queue when reviewing content posted by guests.
• Allow users to reply to alerts even if they have messenger restrictions that would prevent them from doing so.
• Allow iOS/Safari notifications from Safari 16.4 onwards.
• Accordion titles on the Notifications settings page now wrap to multiple lines if they're too wide for the browser window.

Commerce

• Increased number of days PayPal Subscriptions are checked for payments.
• Updated PayPal integration to v2 API where appropriate.
• Updated PayPal Payout API to latest version.
• Updated Maxmind integration to latest API, added support for tracking pixel.
• Fixed an issue where a customer may be charged before accepting the terms and conditions when requiring T&Cs and using Stripe.
• Fixed an issue where incoming emails containing '-' or '.' may be discard.
• Fixed an issue where a fatal error is thrown during email processing if the email character set is not supported by current PHP configuration.
• Deprecated Authorize.net, Braintree and 2Checkout payment gateways.
• Removed Hosting Reseller support.

Pages

• Added the media URL to the ACP - Media Details sidebar.
• Added the ability for records to use the publish date field when synchronising with forum topics.
• Fixed an issue where the Media Preview Image wouldn't be shown on the ACP - Media Details page.
• Fixed an issue where it was possible to create paths that conflicted with system folders.
• Fixed an issue where comment counts displayed in the record feed when comments were disabled.

Forums

• Added support for mark solved in clubs.

Downloads

• Removed an unnecessary span tag from the rows template.
• Added the moderator checkbox to grid view as it was previously missing.
• Added status badges (pinned, hidden, etc) to the grid view.
• Padding has been added to grid cells while viewing files in profiles.

Gallery

• Added some customization options to the Overview page.
• Now, when searching for images via the "Insert other attachment" editor option, searching by album name returns images from that album.

Events

• Added links to subscribe to and download iCal events on the overview page.
• Fixed an issue where the "All Calendars" dropdown link would load the overview page instead of monthly view.
• Fixed an issue where the 'Copy Event' link would be shown even if the member had no permission to create new events in the calendar.
• Fixed an issue where recurring events would time out for some locales and languages.
• Fixed an issue where venue events may not show on the happening near me map.

Converters

This is our March maintenance release.
Key changes include:

• UI Polish
• Downloads updates, GraphQL enhancements and more