BuddyPress.org

See the Members Navigation Menus article.

You install BuddyPress as a WordPress plugin so perhaps your question should be where should you install WordPress?

>after I have chosen an image to upload and pressed “open” on the media screen.

On what avatar screen are you seeing ‘open’ ?

> Is there a non minified version of the script somewhere?

Yes, in buddypress/bp-core/js/

@aju29 – If I were you I would make a zip file backup of all your files (through cpanel or whatever) – then export your database (follow the instructions in the wordpress.org for exporting backups – (you’ll need to go into phpmyadmin -> export – advanced – check “add drop table” – export)

check your server error log to see if there is anything in there that would give a clue when you get the ““insufficient permission to view this page” error.

Check to make sure you have “pretty permalinks” set properly.

IF you deactivate all plugins, and switch to default theme, and things do not work right at that point – something is wrong.. could be your server setup, could be you forget to add the line needed for multi-site to work properly.. go back and re-trace steps..

Then I would start fresh, delete everything and install a totally fresh WP –

Of course you could do this in a different folder or something.. but you need to get wp multi-site and buddypress working with default theme before mucking it up with other plugins and themes.. once you establish that the basics work with your server and setup – then start adding the other stuff one by one to see if something breaks it.

Someone else may have an idea of what your trouble is and chime in – I don’t know your exact setup and what your exact issues are when you are trying to do what exactly – I am just another BP user, not a wp / bp dev / guru by any means.

@modx – for the moment, I would put your htaccess back to the way it was before – from what I am seeing; you are talking about login brute force password cracking being your big issue.

Although I still suggest blocking those other engine bots – you can probably do that just fine with a robots.txt file at the moment.

IF you are using a login security plugin already – you should be fine… many like to use “limit login attempts” – I use that on some sites – just change the default settings to be more strict than the 4 / attempts.. might also want to add the “whitelist limit login attempts” to keep yourself from getting locked out.

I think succuri is an excellent one too – but there are many others… these login attempt blockers will prevent a bunch of the bot attempts to break it.. recently I have found that adding the plugin “ip geo block” ( https://wordpress.org/plugins/ip-geo-block/ ) is very helpful. Again change the default settings so it also blocks access to your plugins folder and others..

Thing is, every single one of our wordpress (And therefor also buddypress) sites are getting these non-stop password attacks all day, every day. You can try things like add a “captcha” to your login form to make it harder.. but they will keep trying and tieing up your server resources..

Strange to see from your posts that all of those attacks are coming from USA based proxy servers – usually most the attacks come from Ukraine, makes me think they already got into your site once before and are willing to spend a little extra to try to re-attack.

Since those companies are us based you could write them with abuse complaints, but I don’t think you will ever stop the hacking attempts so long as you have a CMS that allows an admin login.

If you are dumping buddypress for the moment and don’t need others to get through a login prompt, I suggest adding this bit of htaccess pwd magic –
http://support.hostgator.com/articles/specialized-help/technical/wordpress/wordpress-login-brute-force-attack

Saves me servers a ton of sql requests 😉

GD module and/or imagick modules are essential for WP operation in manipulating images re-sizing etc so if you had tested the media library you might have spotted issues with uploading and dealing with images, ( I believe that GD is a core module in later php versions so doesn’t need installing separately so may be worth checking PHP version)

It’s always wise to establish that WP works fully before enabling testing BP. BP is simply a plugin running under WP as such it will use WP core functionality and in turn follow the server requirements that WP needs.

There is no BP server requirements codex entry as such for the reasons above we do though very briefly note some requirements here:

Getting Started

Not sure if you saw that?

Server requirements are really a WP aspect, We could re-iterate the WP requirements in a little more detail or perhaps link through to the WP codex though.

Issue posted above has been resolved in BP Trac https://buddypress.trac.wordpress.org/ticket/6554

> Mass-deleting Buddypress groups?

@rockoria Safest way is to go to wp-admin/dashboard and click on the “Groups” link in the menu. You’ll get the updated version of what you see in the following image https://mercime.files.wordpress.com/2013/02/groups-dashboard-admin.png

@rglennnall
> either the Groups associated with each User

Groups → Memberships

> to show Users associated with each Group
Just go to yoursite.com/groups/[nameofgroup]/members and you’ll find the list of members who joined or were invited to the group

Hey Pixelguy,

you raised an issue I had to tackled and thanks to @graylien it works fine.
As you also mentioned I had the save button repeated each “tab” and I found a solution that seems working so far but I would love real tech guy to confirm it’s not a mistake 🙂

at the end of the edit.php file we worked on you can find this :

	<?php do_action( 'bp_after_profile_field_content' ); ?>

	<div class="submit">
		<input type="submit" name="profile-group-edit-submit" id="profile-group-edit-submit" value="<?php esc_attr_e( 'Save Changes', 'buddypress' ); ?> " />
	</div>

	<input type="hidden" name="field_ids" id="field_ids" value="<?php bp_the_profile_field_ids(); ?>" />

	<?php wp_nonce_field( 'bp_xprofile_edit' ); ?>

</form>

<?php endwhile; endif; ?>

<?php do_action( 'bp_after_profile_edit_content' ); ?>

what I understand is that it says :
– after the form you call bp_after_profile_field_content
– then you show the button and the hidden fields
– then you close the form
– and you close the loop by endwhile – endif

and @graylien gave us a trick to make the loop “looping” for every tab and not only just one so what I did was to take the endwhile -endif closing the loop inside the form and before the button so the button will remain in the form but not repeated as the loop is closed now.

	<?php do_action( 'bp_after_profile_field_content' ); ?>

	<?php endwhile; endif; ?>

	<div class="submit">
		<input type="submit" name="profile-group-edit-submit" id="profile-group-edit-submit" value="<?php esc_attr_e( 'Save Changes', 'buddypress' ); ?> " />
	</div>

	<input type="hidden" name="field_ids" id="field_ids" value="<?php bp_the_profile_field_ids(); ?>" />

	<?php wp_nonce_field( 'bp_xprofile_edit' ); ?>

</form>

I hope that my trick is right and that my explanations are clear as I’m neither a developper nor an native english speaker 🙂

Please come back to me wether if it works,

Cheers,
vincent

@gurselgunacar – depends on what urls and attachments you are trying to protect. If you are talking about WP urls and attachments there are many options – things like “press permit core” – maybe s2member (and many others that are similar)..

If you are talking about the BP created psuedo urls, like member pages and groups – that is going to be more difficult from what I gather. There was some discussion about this here: https://buddypress.org/support/topic/bp-member-pages-visibility-restriction/#post-241840 recently.

If you are talking about attachments like with rtmedia uploads – that’s a whole ‘nother ball of wax.

Might be relevant:

BuddyBoss Expands Into LMS Market with Free BuddyPress Plugins for LearnDash and Sensei

Someone recently posted some code that gets into this a bit when it comes to member profiles – https://buddypress.org/support/topic/bp-member-pages-visibility-restriction/#post-241840

not sure if it works, obviously if it does it would need to be adapted for your activity page instead of members..

There have been a lot of QnA regarding privacy settings with bp pages / partial components the past so many months – maybe that is something that will make it into a future version.

There could be other answers to this currently. I am not a bp dev, just another user with limited understanding of how it ticks.

Hi Joe,

I don’t think there is a setting you can change for that specifically but you can restrict access to the content on that page and similar pages by adding a conditional in to their templates.

You need to copy over the relevant template from here:

…\wp-content\plugins\buddypress\bp-templates\bp-legacy\buddypress\

and put it in to your theme here:

…\wp-content\themes\your-theme\buddypress\

so for example for that particular page, the friends list on a user profile, you would copy this file:

…\wp-content\plugins\buddypress\bp-templates\bp-legacy\buddypress\members\single\friends.php

and put it here:

…\wp-content\themes\your-theme\buddypress\members\single\friends.php

then open up that file in a text editor and add this code near the top (under the first closing ?>)

<?php if ( is_user_logged_in() ) : ?>

Then right at the end of that file, add this code:

<?php endif; ?>

That should work but I haven’t tested it as I don’t have access to my main PC right now. That will show the normal header and footer but none of the friends list content.

Alternatively if you wanted to show an error message like ‘you need to be logged in’ you could use something like this in place of that first snippet of code:

<?php if ( !is_user_logged_in() ) : ?>

<p>You need to be logged in to view this content</p>

<?php else : ?>

Hope that helps 🙂

@hammed4real101 – what (list all) plugins are you using?

are they having trouble when trying to login on your actual login page? (.com/login/
– or just when they try to login with the sidebar login widget?

recent mentions of facebook integrations stuff here: https://buddypress.org/support/topic/wrong/

@fridafric Most of the information on that book is obsolete. If you want blogs, you need to create a network first, and that is a WordPress function which BuddyPress supports. Deactivate BuddyPress and other plugins first the follow instructions at https://codex.wordpress.org/Create_A_Network
Do make sure that your multisite installation is working as expected before activating BuddyPress.

@wealthy – I don’t think you need buddypress for this. I believe you could easily achieve those goals setting up and wordpress install, turn on multi-site (aka wordpress mu setting) – add in one of the many membership type plugins like s2member.. then add in a commerce plugin like marketpress or woo-commerce, something like that.

Make it so all sub “blogs” aka “sites” are locked out from visibility unless logged in, your “logged in state” is determined by the s2member or similar plugin…

might take a look at press permit core for restricting content.. there are others.. but in essence I think there is no need to add buddypress to the mix. Only thing that would do it open up profiles and friends – but then you’d have much more difficulty locking down member profile viewing and groups viewing and stuff like that, which is not so easy to deal with at the moment.

@rollercoasterider – are you still doing this with a default theme like 2014 or something similar?
Have you tried it with ALL plugins disabled except buddypress?

(some hosts do include a wp-cahe type plugin, that is enabled by default, that drove me crazy with a similar issue a couple years ago – lol)