HowIChrgeLazer
Well-known member
Any examples of this working? The website in your description @HowIChrgeLazer - http://ragecagegaming.com/ - does not exist.
I have installed it on AVForums and I associated my account ok.
The Steam page CSS looks screwed up, though.
View attachment 90697
Ah, yes. This is because of the issue you stated later on, the footer is not being applied.
Is it possible to change the sign in though steam button to its bigger brother:
I've tried replacing it in the /styles/default/steamauth/ dir and it didn't matter if I replaced or completely removed it, it was still there. Even flushed all my cache and different computer that I've never looked at my site before.
Thanks for the awesome plugin btw!
I see that you have this on your site now. Did you get it the way you wanted to, or do you still need help?
@HowIChrgeLazer I have installed this on AVForums and there are three issues which I hope you will address, please. One is minor, two are not and break the addon.
The minor one is that your footer template modification relies on the presence of
which doesn't exist in our footer. It means the css and js includes fail. I manually added them, but you might want to use an alternative method of getting this done.Code:<ul class="footerLinks">
I'll have to think about how to best implement this. <ul class="footerLinks"> should be in most skins and is part of the default so it's a good thing to check for. Your skin is highly customized so it's a bit out of the norm. I try to use template modifications because template hooks are deprecated.
But yes a temporary workaround is to just add this to your footer link section:
Code:
<xen:include template="steam_footer" />
I'll see if I can find any better similarities between your skin and the default for that footer section. Just on first glance though, I didn't see anything yet. I'll do another look over of your footer compared to the default.
The first major issue is that the cron fails because our server is set up with sensibly tight security.
In your code you have
This fails because open_basedir is enabled.Code://Check for cURL. If it can be used, use it! if((function_exists('curl_version')) && !ini_get('safe_mode') && !ini_get('open_basedir'))
And allow_url_fopen=0 so the cron crashes.
Our host (Tim at Nimbus) *strongly* advises against allowing allow_url_fopen=1 and allowing open_basedir.
May I request that you reconsider your checks, here? Why do you need !ini_get('open_basedir') ?
I believe open_basedir was a holdover from when this addon used XML instead of JSON. It was the only way to gather it properly. I'm removing those two instances and I'll give it a few tests and get back to you. As for the allow_url_fopen, I've pretty much consolidated the code so that it's a fallback to cURL (and as you pointed out, the checks disqualified you from using cURL and it jumped to file_get_contents). There is one instance I still need to fix in the registration where it still uses file_get_contents and has no alternative. This was reported by @Sheratan and I need to get this fixed sooner rather than later.
As I'm typing this I've already coded out the open_basedir check, I just need to see if it breaks anything. Next will be fixing that registration issue.
The second major issue is that your addon does not cater for sites with a secure socket layer configured. I.e. all calls for external resources must have https.
This is going to be an issue for you on more and more sites as Google has indicated that it favours secure sites and more people use them.
For example, in the external account association page you bring in the Steam Avatar using http rather than https.
If you look in the Xenforo code for bringing in the Gravatar, you will see how they do it.
Please consider fixing these issues to make your addon as great as it could be.
Thanks.
So the problem with the Steam Community CDN is that there is no HTTPS support.
My steam avatar:
http://cdn.akamai.steamstatic.com/s.../b3cea64d824a49a83fa7e3e5c30eba6ed501d94d.jpg
Attempt to access it with HTTPS
https://cdn.akamai.steamstatic.com/.../b3cea64d824a49a83fa7e3e5c30eba6ed501d94d.jpg
The nicest way I could get around this, was utilizing XenForo's built-in feature Image Proxy. It is located in ACP -> Options -> Messages. The one thing I do want to mention though, is that this option enables image proxy for your entire forum, not just Steam Authentication. You can see the full HTTPS support in action on my website:
https://ragecagegaming.com/forum/
EDIT: After I typed this, I found a new CDN link that does support HTTPS. I'll have to fix this up.
https://steamcdn-a.akamaihd.net/ste.../b3cea64d824a49a83fa7e3e5c30eba6ed501d94d.jpg
I unchecked "Display alternative login bar for Steam" and it is still showing? What gives?
Could I get a link to your website or a screenshot? I'd like to see what's going on. I can't replicate that issue.
Last edited: