Hi, using your product on a test site and it is trying to kill me I am sure of it /s

So most everything is working but the email function I cannot get it to email out because of the error

" Could not instantiate mail function. " there is nothing on this or other sites and I feel that I am missing something simple

HELP Please.

Thanks

hey, thought i'd implement a file uploader, mainly for images but other files too, form uploads image to directory on server, in my case users/uploads/avatar . you can then either save the filename or full file path to the database, in my case i added a row to the

I've been doing a lot of IOT things lately. I'm building an "escape room" that has about 15 arduinos and 6 raspberry pi's. It all talks to an MQTT server.

I'm thinking about rolling my IOT integrations into userspice. Thoughts? They would stay out of the way, but essentially you would be able to do something like

mqtt("lights","on");

to turn on all your lights. I have a ton of video demos. In fact. Now that I think about it, here is a video of UserSpice and MQTT working together. Note that this was a building that was about to be turned down, so I turned it into a bank that had been under attack. Still in the early stages.

https://www.youtube.com/watch?v=7J6Mi59sBd0

some countries don't allow cdn or cdn goes down for some reason, or your working in localhost with no outside connection then fallback should be added to account for this, I've added to my pull request on github the following, which is added to users/includes/header.php.

<pre>

I have a hierarcy of roles determined by the permission group: USER -> SUPERVISOR -> SUPERUSER -> ADMIN

An individual user can only be within one role. Users can not self-register so I define their role when I manually create their account.

Multiple roles can access individual pages - for example, page1.php can be used by USER & SUPERVISOR; page2.php is only accessible by SUPERUSER role...

I wanted to control certain privileges within my PHP by referencing the role that the logged on person currently has - a USER role being able to update less columns than a person in a SUPERVISOR role for example. If I check the "permissions" attribute of the user data though ($user->data()->permissions) this seems to be always set to 1. I was expecting it to reflect the role of the user as defined when it was created.

Is there anyway I can get to the role the user account is actually created as?

Sorry if I have completely missed the logic around permissions

• #1 - Setting:File Uploads Recommended:ON Actual:OFF
  

• #2 - Error performing query '/*!40101 SET NAMES utf8mb4 */; ':
  

• #3 - Timezone selection not saved
  

• #4 - Parse error: syntax error in init.php on line 45
  

The default sql file creates two users:

User with id = 1 has a default administrator permission.
User with id = 2 has a default user permission.

This also corresponds with the default init.php setting for $master_account:

//adding more ids to this array allows people to access everything, whether offline or not. Use caution.
$master_account = [1];


Administrator status appears to be checked using two different methods:

'in_array($user->data()->id, $master_account)' : if user id is in the master_account array give administrator permission.

'(checkMenu(2,$user->data()->id))' using the checkMenu function : if userid has a permission level = 2 give administrator permission.

Problems occur when you give a userid permission = 2 (administrator) without also including the same userid in the master_account array.

For example:

For the default user with id = 2, add administrator permission AND delete user permission. This user now has administrator role in the permission table but does not have administrator permission in the master_account array.
When you try to login as user I/you get a page redirect error.

A quick fix for this error is to make this change to us_helpers.php

from:

//Check if user's permission levels allow access to page
if (checkPermission($pagePermissions)){
return true;

}elseif (in_array($user->data()->id, $master_account)){ //Grant access if master user
return true;

}else {
if (!$homepage = Config::get('homepage'))
$homepage = 'index.php';
$fields = array(
'user' => $user->data()->id,
'page' => $pageID,
'ip' => $ip,
);
$db->insert('audit',$fields);
require_once $abs_us_root.$us_url_root.'usersc/scripts/did_not_have_permission.php';
Redirect::to($homepage);
return false;
}


to:

//Check if user's permission levels allow access to page
if (checkPermission($pagePermissions)){
return true;

///////////////////////////////////////////////////////////////////////////////////////////
}elseif (checkMenu(2,$user->data()->id)){ //Grant access admin
return true;
///////////////////////////////////////////////////////////////////////////////////////////

}elseif (in_array($user->data()->id, $master_account)){ //Grant access if master user
return true;

}else {
if (!$homepage = Config::get('homepage'))
$homepage = 'index.php';
$fields = array(
'user' => $user->data()->id,
'page' => $pageID,
'ip' => $ip,
);
$db->insert('audit',$fields);
require_once $abs_us_root.$us_url_root.'usersc/scripts/did_not_have_permission.php';
Redirect::to($homepage);
return false;
}


However, I don't think this is the best fix.

What I think should happen is when you add administrator permission to a user, their userid should be added to the master_account array.

eg $master_account[] = 'userid'

and, when administrator permission is deleted from a user, the userid should be deleted from the master_account array.

eg $pos = array_search('userid', $master_account);
unset($master_account[$pos]);

However, this cannot be done since the master_account array is automatically reset to the default value in the init.php file '$master_account = [1];' when the program loads.

Hi, so I'm relatively new to user spice but firstly thank goodness for this - my life is truly easier.

I am currently editing user profiles, changing columns etc. etc. For example, my users dont need to specify a first/last name, so effectively want to delete the cols. How does this work in userspice from a general point of view (does it break anything?) and does it effect the next patches - am I going to run into problems by deleting/modifying the default columns?

Thanks in advance

Hi,
I just want to check and be sure that I can still follow the steps laid out here in order to upgrade from UserCake. Glad I found UserSpice and hoping to try it out!

Gaius

Hi Was trying to implement the following:
on a json output php page::
if(!hasPerm([4],$user->data()->id)){
//echo ('2,3,4');
die("NO RIGHTS TO SEE THIS");
}

I noticed through testing access to the page that the $master_account was NULL when used by the hasPerm function on line 767

so I added global $master_account; just under global $user;

Seems to work now