Forum

And here is another one... email verification is busted in a couple of ways.

1. It DOES NOT WORK at all without modifying core/panels/anon/register/confirm_email/action.php

Processing tends to end abruptly in PHP when you use the exit() method...

<?php
$db =& dbWrapper::getInstance();
$conf =& ntsConf::getInstance();
$app =& ntsApplication::getInstance();

$key = $req->getParam( 'key' );
$key = trim( $key );

/* get this user restriction */
$sql =<<<EOT
SELECT
        obj_id
FROM
        {PRFX}objectmeta
WHERE
        meta_name = "_confirmKey" AND
        meta_value = "$key" AND
        obj_class = "user"
EOT;

$result = $db->runQuery( $sql );
$r = $result->fetch();
exit;
/* ok */
if( $r ){
...

Then.... if you happen to have "administrator must approve new accounts" enabled, well, the use account just stays in the "email not verified" condition, as opposed to a "email verified by Admin not approved" state.

see:

$cm->runCommand( $object, 'confirm_email' );
        if( $userAdminApproval ) {
        /* required approval by admin */
                $cm->runCommand( $object, 'require_approval' );
                ntsView::addAnnounce( M('Thank you for registering!<br>Now we kindly ask you to wait a little, we need to manually approve new acounts. We will notify you when your account gets active.'), 'ok' );

                $forwardTo = ntsLink::makeLink();
                ntsView::redirect( $forwardTo );
                exit;
                }

This thing is so buggy....

More to come. [4.0.6]

General:
- In the Services configuration, I wanted to set the Max Advance Booking to 10 days. hitAppoint turns this into 1.42 weeks after saving. Then, when I hit Update again because of other changes, it tells me "Please enter whole numbers only".

WordPress:
- Accounts created through hitAppoint are unusable because of invalid passwords. Once the password is reset through the WordPress Admin Panel, it's OK.
- Email/account validation is useless since accounts are created and active instantly.
- Though the user base is sort-of shared (when hitAppoint is viewed directly, it doesn't know the WordPress users), there's no two-way single sign-on. Users who login through hitAppoint are logged into WordPress as well, but users who login to WordPress still have to login again when using hitAppoint.
- When hitAppoint is accessed through the module in the WordPress Admin Panel, it now requires me to login again. Earlier, at least with 4.0.1 and possibly with 4.0.4 as well, this was not required. I guess this is closely related to a second problem, more critical problem, below.
- It seems that after starting using it with WordPress, my password for the hitAppoint admin account becomes invalid. This had me reinstall hitAppoint several times now, because of below.
- Password mailings and information about newly created appointments don't reach me (the admin). Mails to WordPress users work fine.

Please consider switching to the WordPress mechanism for registration and login.

I like hitAppoint a lot and 4.0 is promising, but it might be better if you'd call it a public beta for now.

Last edited by tvdien (2010-03-13 23:20:49)

It seems that it only recognizes 'admin' as being admin. However, I have another user with highest WordPress privileges and to hitAppoint it's just a regular user. Please have it check the user's rights instead of username (or uid?).

Last edited by tvdien (2010-03-14 16:33:06)

Thanks. For now I solved it by reinstalling the plugin as the second admin user.

Nice. Will it be included in the next update?

It seems that after starting using it with WordPress, my password for the hitAppoint admin account becomes invalid. This had me reinstall hitAppoint several times now, because of below.
- Password mailings and information about newly created appointments don't reach me (the admin). Mails to WordPress users work fine.
..................