-
New Commercial Services Section
We have now opened a commercial services section here on the forum for registered users. If you have a Fabrik project that you wish to have someone work on for you, post it under Help Wanted. If you are an application developer and wish to earn some money helping others, post your details under Fabrik Application Developers.
Both of these are unmoderated. It will be up to both parties to work out the details and come to an agreement.
-
Joomla 5.1
For running J!5.1 you must https://fabrikar.com/forums/index.php?wiki/update-from-github/ or include the new file manually https://fabrikar.com/forums/index.php?threads/joomla-5-1-and-fabrik-cannot-find-files-error.54473/post-285151 See also Announcements
Data encryption
- Thread starter karlis
- Start date
- Status
This is exactly the behaviiour I described.
"But strangly I can type "Vi" or "vi" and it will find Vitvita": this is because it's finding the 2nd "vi" in Vitvita
In search all it won't find any string with a capital letter if you are searching for this letter (no matter if it's upper or lower case in the search string, the search string is always converted to lower before it's used).
You'll find K?rlis with ?rlis.
I assume it's a MySQL thing.
AES_DECRYPT is returning this HEX-string
I think something like
WHERE CAST(AES_DECRYPT(`vorname_encrypted`,'xyz') AS CHAR(100)) LIKE '%K?r%'
should do.
In phpmyAdmin it's ok this way.
"But strangly I can type "Vi" or "vi" and it will find Vitvita": this is because it's finding the 2nd "vi" in Vitvita
In search all it won't find any string with a capital letter if you are searching for this letter (no matter if it's upper or lower case in the search string, the search string is always converted to lower before it's used).
You'll find K?rlis with ?rlis.
I assume it's a MySQL thing.
AES_DECRYPT is returning this HEX-string
@cheesegrits
I think something like
WHERE CAST(AES_DECRYPT(`vorname_encrypted`,'xyz') AS CHAR(100)) LIKE '%K?r%'
should do.
In phpmyAdmin it's ok this way.
cheesegrits
Support Gopher
OK, the problem is that it's doing ...
AES_DECRYPT(LOWER(`fab_main_test`.`name`), 'xxxxxxxxxxxxxxxx') regexp LOWER('???r??i')
Rather than ...
LOWER(AES_DECRYPT(`fab_main_test`.`name`, 'xxxxxxxxxxxxxxx')) regexp LOWER('???r??i')
I'll see if I can fix that, although I have a suspicion it's going to be a bear.
BTW ... as you may have noticed, there's a rather nasty security issue that needs resolving, which I've been trying to figure out how to do without a backwards compatibility break or losing data. We need to md5() hash the secret before using it, so it doesn't get exposed in things like debug output. For now, if you use this feature, make sure you turn debug off!
-- hugh
AES_DECRYPT(LOWER(`fab_main_test`.`name`), 'xxxxxxxxxxxxxxxx') regexp LOWER('???r??i')
Rather than ...
LOWER(AES_DECRYPT(`fab_main_test`.`name`, 'xxxxxxxxxxxxxxx')) regexp LOWER('???r??i')
I'll see if I can fix that, although I have a suspicion it's going to be a bear.
BTW ... as you may have noticed, there's a rather nasty security issue that needs resolving, which I've been trying to figure out how to do without a backwards compatibility break or losing data. We need to md5() hash the secret before using it, so it doesn't get exposed in things like debug output. For now, if you use this feature, make sure you turn debug off!
-- hugh
cheesegrits
Support Gopher
Surprisingly enough, that wasn't too bad, and I think this should fix it:
https://github.com/Fabrik/fabrik/commit/c1d1217b831d1c9f44be43e608d5338b586b1ebe
As always I'm a little sketchy about encoding, but I think it's OK to hard wire the "USING utf8" into that ....
LOWER(CONVERT(AES_DECRYPT(foo, 'xxxxx') USING utf-8))
... as I'm pretty sure J! and Fabrik both require / assume a UTF-8 character set and encoding.
Without the CONVERT() it won't work.
-- hugh
https://github.com/Fabrik/fabrik/commit/c1d1217b831d1c9f44be43e608d5338b586b1ebe
As always I'm a little sketchy about encoding, but I think it's OK to hard wire the "USING utf8" into that ....
LOWER(CONVERT(AES_DECRYPT(foo, 'xxxxx') USING utf-8))
... as I'm pretty sure J! and Fabrik both require / assume a UTF-8 character set and encoding.
Without the CONVERT() it won't work.
-- hugh
Search all is working now (@cheesegrits: element search is still case sensitive, was only for search all).
What do you mean with "Installed from gihub"?
You can't "install", you have to copy the files, see Updating from Github
What do you mean with "Installed from gihub"?
You can't "install", you have to copy the files, see Updating from Github
- Status