Gevorg

I have tried it myself with a manual solution and it was not feasible with WordPress. Each time the user makes inline changes, be it CSS or JavaScript, the new hashes need to be added to the CSP rule. And some installed plugins have the habit of loading external content belatedly, the very same thing which CSP is supposed to prevent. I have not thought about cache plugins, this may make it even more complicated.

Hello

I am currently working on a WordPress installation where this PHP warning also occurred.

After downgrading PHP from 8.3 to 8.2 the warning went away. It’s a more stringent evaluation of PHP code in version 8.3 and something with that class “Plugin” is not programmed according to PHP 8.3 standards.

Thank you for your reply aesparz.

It’s a decision which every user can make on his own, that is, whether to share the store data of his e-Commerce installation with an external server or not.

But in order to make this decision it’s necessary for him to understand how this plugin works, and unexperienced users may not understand the difference between a plugin that works internally within the WordPress installation and a plugin that outsources its work to an external server where the work is done and the result sent back to the WordPress installation.

I hope opening this topic on this support forum will help users of your plugin make their own informed decision according to their preference.

If it’s about finding out which other plugin may be colliding with your plugin in the given WordPress installation, I won’t need any further assistance from you, thanks for your offer.

But since the owner of the e-Commerce installation is not interested in granting unrestricted REST API access to his sensitive store data to “Unauthenticated user”, which in this case would include your external server, I think we will have to look for an alternative to find a solution for this task.

To the WordPress @moderator:
You may want to forward my user feedback to the plugins team:

It would be helpful if WordPress would mark plugins as either “internal” or “external” on the www.ads-software.com platform. More and more I encounter plugins which refrain from working within the WordPress installation, which’s security architecture has been steadily improved over the course of these many years. Instead the working of the plugin is outsourced for various reasons to external locations. It would be helpful to have this information right from the start and not have to test, and try, and troubleshoot, and ask around until after time and effort spent, this information is discovered. Maybe the WordPress plugins team will find this user feedback useful for their consideration.

Greetings to all on this forum.

Sincerely,
Gevorg

(This topic can be closed after my reply as “having been resolved”)

Thank you for your assistance.

It’s still puzzling why this plugin is having such a hard time to get out of the box and start running.

It does have authorized access to the WooCommerce store data, all the taxonomy of the products is there to be used for a recommendation quiz. This should not require external API access from your server. Shouldn’t the internal taxonomy data suffice for such a purpose?

Can you clarify for which purpose the API access from your server is required in this case? Is this a plugin which works externally of WordPress or internally within WordPress?

But still, after allowing full access to REST API for “Unauthorized user”, it’s still not enough.

The staging installation is not installed in a password protected folder, there is no plugin “hiding” the staging installation, neither is there the plugin WPML for multilingual support.

I have tried the described steps several times, but in each case the end result is “Network error” and nothing continues from there.

The WordPress installation we are working on has quite a few plugins installed. If there is indeed collision with another plugin, do you have a top-ten list of plugins which, based on your experience and user feedback, do collide with your plugin frequently? Anything other than WPML?

It’s up to you to to decide what you want to do with your template files.

But if those changes are related to PHP syntax, then your template files might break at some point when a system administrator decides to upgrade the PHP version on his system to the latest version. If it is related to PHP syntax you may want to test if your template files would have an issue with that.

Sincerely,
Gevorg

Thank you for your reply.

I have sent the details to your address.

Sincerely,
Gevorg

Hi

Yesterday I successfully created a new account at
https://wp-customerarea.com/wp/wp-login.php

I received the email to set a password for my account and so I did.

Then I tried to post this issue in your support forum on your website, but this did not work yesterday. An error occurred saying that this can not be done now. There were no specifics about the cause of the error, I just could not post it in your forum.

So I tried it today, thinking the issue in your forum may be solve by now. But today I can not even login to my account at your website. It’s as if I didn’t create a new account yesterday. When I try to login today it says that the username is unknown.

Can you explain what’s going on?

Thanks, I’ll try it there.

Have a nice day.

Unfortunately the login to my account is not accepted at
https://wp-customerarea.com/support

I initially tried to post this issue there but since I could not log into my account at their website I posted it here.

It seems that their system has lost my account details. They mentioned during this conversation that their hosting provider had a fire and they lost some customer’s data because of it.

If I can get a reply to this issue here, fine. Otherwise I’ll have to create a new account at their website.

Please let me know which option is better.

Sincerely,
Gevorg

Hi

I would like to post another update concerning this matter.

I have transferred the website of my client to his production server. Unfortunately the add-ons of your plugin, if activated, are crashing the WordPress login page, resulting in the server message “Service temporarily unavailable”. I have tested all the plugins installed and I can confirm that it is the bought add-ons of your plugin which crash the WordPress login-page. I assume this is a security mechanism on your part to prevent people from copying the add-ons. I have no problem with developers developing security mechanisms to protect their software, but I hope a solution can be found in this case.

As mentioned previously, in the past a “Freelance bundle” was bought as a “Professional License”. The professional license allows the add-ons to be installed on five different websites. I know for sure that I have not used up this limit.

The client for whom I develop the website has delayed this project for an extended period of time because he prioritized other projects. Now has come the time for him to continue with this project.

Although the license has expired, I thought I would not loose the ability to install the bought add-ons on up to five different websites, but it seems that this is the case. It seems that since you lost all your client account data due to the fire in the hosting company, your system is no longer able to evaluate this license, is my assumption correct?

If my assumption is correct, is it possible for you to reinstate the validity of this license? As I mentioned before, this plugin of yours and the bought add-ons have not been in use on a live website. The license was bought but then the client prioritized other projects and therefore the license expired. No live usage has happened yet.

If you can not reinstate the validity of this license, can you at least allow for this license to be installed on up to five different domains, as was the condition with which the license was bought? It’s one thing to loose the ability to update the add-ons but this should not take away the possibility to use up the amount of installations which the original license allowed for.

Can you be of any help in this matter?

Sincerely,
Gevorg

And concerning the fire at the OVH hosting provider…

The license of the “Freelance Bundle” allows for installations on 5 websites. I know that I used up one for the development server and I will need two more installations until the website is finally ready under the designated domain name.

Will your system be able to check how many installations this license has had? I ask because you say that you have lost all account details from before March 2021. Can I provide any information to you to restore the lost account details? What do you suggest?

Sincerely,
Gevorg

Previously a “Freelancer bundle” was bought as “Professional” license. I do not see this bundle being offered on your website anymore.

Would it be possible to renew the “Freelancer bundle” with all the add-ons that it included, or is it necessary to buy each add-on separately? Buying each add-on separately would cost much more now than it did as a bundle back then.

Maybe you can consider bundling the functionalities of similar add-ons into one add-on instead of fragmenting these functionalities into different add-ons which must be bought individually.

Sincerely,
Gevorg

Yes, I have copied the plugin template files into the child theme folder.

I have not received any complains from the shop manager about errors in the emails, but I have noticed changes in the new email template files. I thought it might be better to apply the new changes.

For example:

(1)
The file admin-cancelled-order.php has an extra line in the new 4.1.0 version of WooCommerce:

<p><?php printf( esc_html__( 'Notification to let you know &mdash; order #%1$s belonging to %2$s has been cancelled:', 'woocommerce' ), esc_html( $order->get_order_number() ), esc_html( $order->get_formatted_billing_full_name() ) ); ?></p>

(2)
Likewise, the file customer-completed-order.php has an extra line in the new 3.7.0 version of WooCommerce:

<p><?php printf( esc_html__( 'Hi %s,', 'woocommerce' ), esc_html( $order->get_billing_first_name() ) ); ?></p>
<p><?php esc_html_e( 'We have finished processing your order.', 'woocommerce' ); ?></p>

(3)
In file customer-completed-order.php the changes are greater between the current version 3.7.0 and the new WooCommerce version 6.0.0.

()
and so on…

—

So I wondered whether to apply these changes manually or whether you might release an update for your plugin that takes care of these things.

If you say the changes are not relevant then I’ll leave it at that, currently there are no noticeable problems.

Maybe in the future you’ll find the time to synchronize the template files of your plugin with those from WooCommerce.

Thank you for your effort.

This topic can be closed.

Sincerely,
Gevorg

Hi

Were you able to do your testing concerning my suggestion?

You could also tell me where to look for the string xmlns='https://www.w3.org/2000/... which you use for the placeholder images. This way I could do my own test. If it stored in the database, which table contains it? And if it is stored on disc, in which file is it?

Sincerely,
Gevorg

Hi Ben

Thank you for your reply and for clarifying.

I don’t know which part of this installation causes the <style> tag to be included in the <head> part of outgoing emails. It’s still helpful because the :last-of-type selectors which I used are being applied. One can not use :last-of-type inline, but when the <style> tag is present in the <head> of emails it gets applied. I am aware that not all email clients support this, but it’s outside the scope of my task to check this in all relevant email clients.

I did not modify class-wc-email.php. Maybe there is a conflict with another plugin.

In any case I added the rest of CSS commands inline to the relevant email template files and got the result I wanted.

In Summary:

I copied all email template files of your plugin from “…/plugins/kadence-woocommerce-email-designer/templates/woo/emails” to “…/themes/child-theme-folder/woocommerce/emails”. There I edited the relevant email template files and added the CSS code inline to the tags which needed the styling.

For others who my look this post up at some later time, it does not work if you copy only the edited template files into your child-theme-folder sub-directory. It has to be the complete set of template files from the Kadence email plugin, otherwise it results in a critical error with the current version of this plugin.

You can mark this question as resolved and close this post.

Sincerely,
Gevorg