BuddyPress.org

Hi!

I recently upgraded my site with a new theme (BuddyBoss Boss. theme) and am running WP 4.1.1 and upgraded from BuddyPress 1.9.2 to 2.2.1.

I have a setup where I redirect the activation e-mail to the site admin to be able to manually control new members and verify their information before activating them and letting them log in. This is a cruical function for my site since it’s a private network.

After the upgrade I noticed that some spam users were automatically activated and able to log in without my manual activation. The users are automatically activated, the same issue as @RussAdams is experiencing. I’ve tried deactivating a few plugins (BuddyPress Pending Activations, BuddyPress Auto Group Join) but this issue persists. In BuddyPress 1.9.2, everything was working as expected.

Browser sessions doesn’t seem to be the issue since clearly people on other computers have been able to create accounts which were automatically activated as well.

This is a very serious issue for my site since I no longer have the control over new users and spam users can log in after activating. Did you get this sorted out?

@saish_neugi the Plugin Private Buddypress works well also. It isn’t being updated anymore, but I’ve tested it and still works without errors.

try checking using an incognito or private window after adding the above line your site and browser may be loading a cached version of your site due to which you won be able to see the changes
Thanks

@martni You can get some ideas here:
https://premium.wpmudev.org/forums/topic/adding-a-single-group-activity-stream-to-bp-social-home-page
https://buddypress.org/support/topic/resolved-filter-custom-activity-stream-to-display-only-new-groups-new-topics-new-replies/

Another way may be, making the other groups private, if that suits you / your site at all.

Thanks

http://seventhqueen.com/support/forums/forum/kleo/kleo-general-questions

Hi @sjjenkins

This should not be very difficult. Some small change in the template file but since they have no downloadable version its difficult to say.
This may contain some clue –

Showing some profile fields in member’s profile header not working after update

Just curious, how does the Whats New box looks like when you use
buddypress-activity-privacy, buddypress-activity-plus and any Media plugin like rtmedia ?
Whats your site (if its not private) url ?

Thanks.

Hi @pieter

Try this

function filter_private_message_email_body( $email_content, $sender_name, $subject, $content, $message_link, $settings_link, $ud ) {

    $content = substr( $content , 0, 140 );

    $email_content = sprintf( __(
'%1$s sent you a new message:
Subject: %2$s
"%3$s"
To view and read your messages please log in and visit: %4$s
---------------------
', 'buddypress' ), $sender_name, $subject, $content, $message_link );

    return $email_content;
}
add_filter( 'messages_notification_new_message_message', 'filter_private_message_email_body', 10, 7 );

This will make the message 140 characters. Feel free to change the 140 to another number.

hi @rosyteddy,
guess the mytery sit here: http://localhost/wordpress/userA/

Multisite (subdomain or subdirectory) need that wordpress stays at the site root. At least for a default install.

SSite: hxxp://my_site.com
MS: hxxp//my_site.com

MS subdomain: hxxp//wouah.my_site.com
MS subdirectory: hxxp//my_site.com/wouah/

A local install (wamp, mamp or xamp) is mostly in a ‘www’ folder at your hard disk root C://
(recommended path) Refer to your software documentation for more details about installing Wamp/Mamp/Xamp – at least about localhost in URL. In the latest version (wamp 2.5), this is no more used. In my case, the local URL is http://my_site/wp-admin/….

C://www represent the private part of the site path. The equivalent of /var/your_account/htdocs/ on a production server.

The same path scenario goes localy
C://www/my_site (avoid confusion and don’t use WordPress as site name)
My_site folder contains all WP directories and files:

My_site/wp-admin
My_site/wp-content
My-site/wp-include
My_site/wp-config.php and so on…

At the end of the install, you got a htaccess file containing:

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress

The important things here are rewrite engine on and rewrite base /, where the slash means “start to manage site URL’s form this point”, which is /…/…/var/your_account/htdocs/<- from here !!!

Before installing BuddyPress, activate pretty permalinks to what you want, EXCEPT default. Save. I do this before, because WP likes also pretty permalinks, and so i don’t forget to do it after i finished with a BP install.

Install BP and setup (or at least control if they exist) the choosen component page(s).

If you do this, you won’t have 404 or other issues, no matter if you use MS or subdirectories or subdomain. WP alone will work, and BP too.

The most important advice if you want to work localy, is to setup correctly apache (mod_rewrite is not activated for ex.). And if you use it with windows, to double-check anything, including HOST file where you have to declare manually each of your local sites (since wamp 2.4 – don’t remember exactly)

# localhost name resolution is handled within DNS itself.
127.0.0.1       localhost
::1             localhost

127.0.0.1       my_site
::1             my_site

127.0.0.1       my_other_site
::1             my_other_site

Hi,

leave groups & request membership use the same button, depending the context. See reference.

Try this if you use only private groups

function xyz() {
global $groups_template;
   if ( bp_is_active(group) )
      return '';
}
add_filter( 'bp_get_group_join_button', 'xyz' );

Reference: wp-content\plugins\buddypress\bp-groups\bp-groups-template.php:2747

Hi @whoaloic

What do you mean by “note”?

Messages can be either public or private. Private messages work kind of like chat, and can be seen only by the ‘thread’ participants. Public message are ‘front-end’. You can public message someone by prefixing their username with the @ symbol. Public messages are also known as mentions.

Regarding favourites, see this Trac ticket for how the feature will be improved over the next few versions.

Hope this information helps.

I am having the same issue. The regular WordPress search box will not display any content from my Groups page. I think it is hilarious that when I go to create a group, under settings the public and private options say that group content will show up in search results. I have tried relevanssi and that didn’t help.

Imho, it is a debatable issue. Is the software/program designed such as to allow the admin to read PM only if there is a complaint ? Is it explicit in the terms and conditions that admin can read PM in which case some users may not like to register?

An user should have initial ways of blocking another harassing users like ello.co does rather than admin jumping into read PMs. In some countries it may be illegal or serious breach of privacy issues. Then there are much “grey” areas as to what is “drama” or what is a “legit” complaint.

Also see this and this.

@vitamincee
As @henrywright mentioned that is by design. Otherwise how would you be able to solve issues between users as an admin if one of your users complains that another user is sending harassing private messages. If you was locked out of viewing the private messages as an admin then you really couldn’t determine if its a legit complaint or someone just causing drama.

Hi @vitamincee

As an admin, you have access to your member’s private messages. That’s by design. Why would you want to restrict access to anything for an admin account?

@aymanomar85
@mentions works for me using the latest WP/BP, twenty-fifteen theme, Private Community For BP plugin, and BuddyPress Identicons plugin. Very basic setup for myself so you will need to provide more info on your setup so others can help. 🙂

I seem to believe that groups are only usable by its members and therefor also any group forum.

Public only means that the group will be listed and viewed by the public, only mebers of those groups can actually post on their forums.

Better make a regular forum with that name where all can post, and have a sticky post for people to join the actual group to start topics in their “private but publi” forum.

At least that is what I think, but I might be wrong.

Hi @matthias70

Private messages can be sent to multiple recipients. The field you mention is for entering more usernames to send the message to.

hi @abhimanyubind,

i’m not developer, but i think th e answer is yes.

For example, to allow admin to receive a copy of messages sent by users

function arc_wp_mail_filter( $args ) {
	
        $args['headers'] = 'Bcc: <admin@yoursite.com>'; 

	$new_wp_mail = array(
		'to'          => $args['to'],
		'subject'     => $args['subject'],
		'message'     => $args['message'],
		'headers'     => $args['headers'],
		'attachments' => $args['attachments']
	);
	
	return $new_wp_mail;
}
add_filter( 'wp_mail', 'arc_wp_mail_filter' );

Here an old topic with a similar question and answered by our core ninja’s.

Hope this will help you !

Hey,

@shanebp as I understand it, your plugin serves as sort of a ‘blacklist’ where you can block any user in a variety of ways. Have you considered making it the other way around? Whereby ALL other users were blocked from sending a Public or Private Message *unless* the User clicked on a button that added the other user to a ‘whitelist’?

If the user B clicked on a ‘Message’ button, they would be precluded from sending a message to User A unless User B had already been whitelisted by the recipient/User A. Maybe with the attempt generating a prompt to User B to submit a whitelist approval request to User A.

Maybe something like this already exists?

Something for consideration. Thoughts?

Thanks.

@buddies
If after following Hugo’s advice does not resolve your issue then place the below snippet in bp-custom.php

function bphelp_members_page_private_redirect() { 

if ( bp_is_members_component() ) {

	if(!is_user_logged_in()) { 
		bp_core_redirect( get_option('home') . '/register' );
	} 
}
}
add_filter('template_redirect','bphelp_members_page_private_redirect',1);

Good luck!

This is a question for S2 Member then and you should check it’s extensive documentation on how to block pages, if that proves unsuitable for your purposes then check back here and people can point you in the right direction to write custom functions to make pages private.