Skip to content

Flarum - WordPress Journey

WordPress

Related Topics
  • Who uses Flarum?

    Chitchat
    22
    7 Votes
    22 Posts
    376 Views

    @Madchatthew I use it here. It is faster, but not sure if that extends to build times.

  • Rotating Star Effect

    Solved Let's Build It
    17
    12 Votes
    17 Posts
    853 Views

    @phenomlab thanks a lot for these, both of the below are awesome! ♥

    https://codepen.io/bennettfeely/pen/vYLmYJz

    https://codepen.io/C-L-the-selector/pen/MWZbWBo

  • No valid role attribute on elements

    Solved WordPress
    10
    0 Votes
    10 Posts
    553 Views

    I found it here, ins elements can not have aria elements

  • WordPress and NodeBB on different machines

    Solved WordPress
    10
    2 Votes
    10 Posts
    595 Views

    @phenomlab thank you for information.

  • 1 Votes
    2 Posts
    323 Views

    @hari the cache level for woocommerce should always be bypass. Any caching of woocommerce will cause you serious issues and will result in the checkout process not functioning correctly.

    This does mean that the overall experience will be slower (depending on geographic location) although CF is known to cause significant issues hence the need to bypass.

    If you want to cache as much as possible, then set rules to bypass caching on the cart and account pages etc.

  • 1 Votes
    13 Posts
    1k Views

    @phenomlab said in Hardening WordPress - Reducing the attack vector:

    @jac Microsoft’s and Google’s Authenticator both support TOTP - essentially, a time based system that changes every 30 seconds. The main principle here is that the device itself carrying the One Time Passcode only needs to be in sync with the source server in terms of time, and can be completely offline with no internet access.

    Provided the time matches on both devices, the One Time Passcode will be accepted. Applications such as Microsoft Authenticator and Authy also support push notification meaning you just choose either yes or no on your device when prompted, and then that response is sent back to the origin which then determines if access is granted or not.

    One of the best looking password less authentication models was CLEF - sadly, this product died out due to a lack of funding (if I recall correctly) although some open source implementations of this have appeared quite recently.

    Essentially, both products will achieve the same goal. TOTP is an industry standard, and widely accepted across the board. Not all services offer push confirmation.

    Many thanks for the detailed reply mate.

    There’s some great advice in there that will help me secure my accounts.

  • Flarum

    General
    4
    0 Votes
    4 Posts
    383 Views

    @jac said in Flarum:

    @phenomlab said in Flarum:

    @jac yes, but they are lacking severely in the sense that they still do not have a functional GDPR extension. In addition, Flarum uses PHP as it’s backend infrastructure meaning it’s going to be so much slower than NodeBB will ever be.

    Absolutely, I hope Node up their game 😆😉.

    Certainly plugin wise anyway 😉

  • Blomstra Realtime issues on ubuntu server

    Solved Linux
    26
    1 Votes
    26 Posts
    2k Views

    Just checked this thread on Discuss. It’s effectively not stable yet. My suggestion would be to use kyrne/websocket