Image field: thumbnailing via phpThumb fails because of image path not under document root

More
8 years 7 months ago #60834 by ggppdk
Hello

no luck , but it seems that whatever the value I put in $PHPTHUMB_CONFIG = ..., it seems overwritten by phpthumb.class.php


overwrites configuration ?
- maybe the load order of the PHP files needs to be reversed in the image field

load class file and then load configuration

or load configuration after instantiating the phpThumb object

i will need to retest and make sure that they are indeed applied


-- Flexicontent is Free but involves a big effort on our part.
Like the our support? (for a bug-free FC, despite having a long list of functions) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing with a 5-star...

Please Log in or Create an account to join the conversation.

More
8 years 7 months ago #60848 by tonnick
ok no pb. you can use the credentials I sent you as it is a dev website if you want to test it.

Please Log in or Create an account to join the conversation.

More
8 years 7 months ago #60856 by ggppdk
Hello

please note

that FLEXIcontent incudes an updated phpThumb version with no known security issues,
- like creating a PHP file or injecting code inside PHP files

but

if you allow "access to above document root" someone may still image thumbnails like your site statistics or other images outside document root
- so you you should avoid setting this to true
$PHPTHUMB_CONFIG = false; // if false (default) only allow src within

and instead set document root appropriately, (i will verify that this phpThumb config is loaded properly by image field)
- still if you can find why the web-server document root is not detected properly in your server that would be even better

e.g. image field in folder mode protects original images with .htaccess ! (can be disabled)
- thus only only already thumbnailed images can be re-thumbnailed !!
- which already thumbnailed images can already have a watermark (if this was enabled)


-- Flexicontent is Free but involves a big effort on our part.
Like the our support? (for a bug-free FC, despite having a long list of functions) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing with a 5-star...

Please Log in or Create an account to join the conversation.

More
8 years 7 months ago #61017 by tonnick
I already tried to modufy all thoses parameters as you recommandes, without any luck.

So, did you release a new version which would work ?

Please Log in or Create an account to join the conversation.

More
8 years 7 months ago #61027 by ggppdk
Hello

I have modified code to force loading of phThumb Configuration:

This is v3.0.x-stable branch:
github.com/FLEXIcontent/flexicontent-cck/tree/3.0.x-stable

you can click "Download ZIP" install in the DEV site and test
- remember to configure your DOCUMENT ROOT as menitioned in previous message


-- Flexicontent is Free but involves a big effort on our part.
Like the our support? (for a bug-free FC, despite having a long list of functions) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing with a 5-star...

Please Log in or Create an account to join the conversation.

More
8 years 7 months ago #61030 by ggppdk
Hello

please test and provide FEEDBACK,

- after you confirm it is working,

i will add new file:
phpThumb.config_OVERRIDE.php

Thus it will be usable for
- website that DOCUMENT ROOT is not detected correctly
- also to override PHPThumb default cache size (e.g. needed for very large websites), etc


-- Flexicontent is Free but involves a big effort on our part.
Like the our support? (for a bug-free FC, despite having a long list of functions) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing with a 5-star...

Please Log in or Create an account to join the conversation.

Moderators: vistamediajoomlacornerggppdk
Time to create page: 0.366 seconds
Save
Cookies user preferences
We use cookies to ensure you to get the best experience on our website. If you decline the use of cookies, this website may not function as expected.
Accept all
Decline all
Essential
These cookies are needed to make the website work correctly. You can not disable them.
Display
Accept
Analytics
Tools used to analyze the data to measure the effectiveness of a website and to understand how it works.
Google Analytics
Accept
Decline