slapbox

Whoops! @mguenter the dashicon thing isn’t from RML, it just happened to appear on the Media Library alongside the other failed requests. After a grep on our server I found that it’s actually from our theme, but it doesn’t appear consistently which tricked me.

So we’re all set as soon as the CDN thing is resolved. Thanks so much for your help!

Ah that works, thank you!

This is what I see on the Media Library page. It’s rightfully blocked by our CSP, but it also seems impossible that it’s valid to begin with. https://imgur.com/a/8tSYrpy

Is it still planned to remove the need for the CDN though? Updating our security policy to get the icons is a pain. Otherwise, great plugin! Thanks for all your help!

I’m also noticing, looking at the homepage in Asset Cleanup – 18 files are being loaded on the front-end of the site – even things like React translation library: /wp-content/plugins/real-media-library-lite/public/lib/i18n-react/dist/i18n-react.umd.min.js and MobX

I think a lot of things are being loaded on the front end that are not intentional. All in all these total at least 500kb.

That’s awesome to hear! Thanks a ton for everything!

Another strange related thing, on the actual media library page I see this other failed request:

Refused to load the image 'https://dashicons%20dashicons-category/' because it violates the following Content Security Policy

I assume whatever that’s supposed to be linked to is broken? I know it’s being blocked by our CSP, but it’s invalid to begin with.

@wfdave, any ideas? Issue persists.

That could potentially be a large help.

The best solution in my view would be to move to a file-based solution, but I know that’s a total rewrite with its own issues, and so not really realistic.

@waseem_senjer any comment? I understand it’s sort of an edge case but I’d love to see it implemented with a warning rather than completely blocked off.

Hey Jan thanks for your reply!

The fonts actually attempt to load on our front-end when logged in, not only in the dashboard, and definitely not only the Media page. As soon as a I login as an administrator the fonts start trying to load, even if I’m simply viewing the homepage of our site. Can you confirm this on your end?

I’m encouraged by your response and hope to see this resolved soon! Thanks so much!

Doh… I didn’t realize you could drop these things down for more options. This plugin is even greater than I had thought.

Unfortunately still can’t check that. Again, totally understand why, but it would be a great option to add with a disclaimer about the danger.

• This reply was modified 4 years, 6 months ago by slapbox.

Specifically, to clarify, I’m referring to the Plugin Editor feature built into WordPress.

My experience is that that has to be checked or unchecked prior to the cloning operating to be effective. Am I mistaken? Sites that I’ve already created are not affected by that option.

Possibly useful: https://www.ads-software.com/plugins/logout-clear-cookies/

Also possibly helpful: https://wordpress.stackexchange.com/a/225902/129305

• This reply was modified 4 years, 8 months ago by slapbox.

Suddenly seeing this problem after months without issue. Totally crippling issue.

Existing redirections definitely continue to work just fine, but the admin area is nothing but errors now.

Any ideas? Redirection has long been one of my favorite plugins, but now it’s unusable on the backend. The REST API is accessible to logged in users, and is configured the same way that it has been for years in iThemes, which hasn’t been updated.

Turns out that some new code had caused this error to occur, which was silent on the front end, did not disrupt access to the REST API, and yet did cause this issue. This only became apparent when logging in failed to work properly.

The error text, for any future visitors, was "NOTICE: PHP message: PHP Warning: array_merge(): Expected parameter 2 to be an array, null given in /dir/ourSite.com/wp-includes/load.php on line 932"

• This reply was modified 4 years, 8 months ago by slapbox.
• This reply was modified 4 years, 8 months ago by slapbox.
• This reply was modified 4 years, 8 months ago by slapbox.
• This reply was modified 4 years, 8 months ago by slapbox.
• This reply was modified 4 years, 8 months ago by slapbox.

@j_3rk you could potentially use window.postMessage() to accomplish this.

https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage