What is "pinging" and how does it work in Composr?
Answer
In blogging, "pinging" is an automatic notification sent to blog search engines and other services when you publish a new post. Composr can automatically ping services defined in Admin Zone > Setup > Configuration > Feature options. These services then index your new article, making it searchable.
A default ping service (http://pingomatic.com/ping/?title=title&blogurl=url&rssurl=rss) is pre-configured to relay your ping to numerous other services.
You can customize the ping URL with these placeholders:
title: The article title
url: The article URL
rss: The URL of your news RSS feed
Pinging only occurs for news categories accessible to the public (guests).
How do I schedule a news post to be published at a specific time?
Answer
Once you have enabled the system scheduler (requires the Composr calendar and commandr addons), an advanced scheduling option will appear when adding or editing news posts. By setting a future date and time, your post will remain unvalidated until the chosen time, at which point it will be automatically validated and published.
How can members edit their profiles and account settings?
Answer
Members can edit their profiles and account settings through the "Edit" tab on their profile page. They can change their password, update personal information, manage their avatar and signature, and adjust their privacy settings. Administrators have access to additional options for managing member accounts.
Welcome Emails are a series of automated emails sent to new members on a predefined schedule. They can be used to introduce the website's features, encourage engagement, and provide helpful information. Website administrators can customize the content and schedule of these emails.
How can I enhance or enforce the security of member passwords?
Answer
Composr offers several features to improve password security:
Password Strength Setting: Administrators can set a minimum password strength requirement, forcing members to choose stronger passwords. Password strengths are calculated on a scale of 1-10 using algorithms that take into account letters (including case), numbers, symbols, repeat characters, use of dictionary words, and use of usernames / dates of birth / e-mail addresses.
Forced Password Resets: Administrators can force specific members or all members to change their passwords upon next login, enhancing security in case of potential breaches.
Expiring passwords: Administrators can require members to change their password after so many days.
Encrypted CPFs: If the server has the OpenSSL PHP extension installed, specific CPFs (such as ones containing other passwords) can be encrypted to protect sensitive member data in case of a server compromise.
Yes, Composr allows you to import and export member data using CSV spreadsheet files. This is useful for transferring member information between different systems, performing bulk updates, or creating backups. The export feature provides various filtering options, and the import feature supports adding new members and updating existing ones.
Go to Admin Zone > Security > Members > Export members.
Usergroups are a way to categorize members and assign them specific permissions and privileges. Each member can belong to one or more usergroups, and the permissions granted by those usergroups determine what actions they can perform on the website. Website administrators can create and manage usergroups, define their permissions, and assign members to them. They can also assign leaders who then have permission to manage the members of that specific usergroup.
What are Custom Profile Fields (CPFs) and how are they used?
Answer
CPFs allow website administrators to collect additional information from members beyond the basic profile fields. These fields can be customized to fit the specific needs of the website, such as collecting job roles, hobbies, or interests. CPFs can be used to:
Enforce specific requirements for membership (e.g., job role in a company forum).
Categorize members based on their interests or affiliations (e.g., football players in a school forum).
Display additional information on member profiles and forum posts.
Regular Registration: Users can click on "join" links, agree to your rules, and fill out a registration form. They will then receive an activation email to confirm their email address (if enabled).
Invites: You can restrict joining to invite-only. Existing members can send invites, and only those who receive an invite can register.
Manual Addition: Administrators can manually create member accounts through the Admin Zone. This is useful for pre-joining members or handling issues with the regular registration process.
Other Methods: Composr also supports automatic member joining through LDAP and HTTP authentication.
The system scheduler is crucial for scheduled tasks like sending notifications, running backups, and processing reports. To set it up, you need to schedule a system-level task to run the data/cron_bridge.php file at least every 10 minutes. This links Composr's scheduler with your server's scheduler (like Cron on Linux).
Composr can often detect the correct command to use for your setup. You can check by visiting http://yourbaseurl/data/cron_bridge.php?query_mode=1, which should display the suggested Cron command. Note that you may need to replace the php command with the absolute path to PHP if you cannot use the php command directly.
If your hosting doesn't support Cron or scheduled tasks, you can enable scheduled tasks to run when visitors access your site. Navigate to Admin Zone > Setup > Configuration > Performance options and check "Web requests run scheduled tasks". Keep in mind that this method relies on visitor traffic and isn't as reliable as a dedicated scheduler.
Alternatively, consider using external services like EasyCron, setcronjob.com, or onlinecronjobs.com. These services allow you to schedule calls to the data/cron_bridge.php script by URL at specified intervals.
What are the different security levels in Composr's Setup Wizard and what do they affect?
Answer
Composr offers five security levels in the Setup Wizard: Minimum, Low, Medium, High, and Ultra High. Each level sets various security configurations that you can later customize under Admin Zone > Setup > Configuration.
The security levels influence settings such as:
Content Security Policy
Session expiry time
Password reset process
Password expiry days
Minimum password length and strength
Login error secrecy
IP strictness for sessions
Cryptographic ratchet
CAPTCHA usage
Brute force threshold
Audio CAPTCHA
URL Monikers
.htaccess restrictions on maintenance scripts
Enquiry on new IP addresses
The higher the security level, the more stringent the security measures, with Ultra High offering the most robust protection but the most potential inconvenience to users.
Generally, you should use these settings depending on your site:
Minimum: Very bare-bones informational-only sites
Low: Sites which do not allow public registrations and do not use eCommerce but have content managed by different staff, and are not concerned with privacy or data
Medium: Sites with social features / public accounts but do not use eCommerce.
High: Sites which use eCommerce.
Ultra High: Sites containing very sensitive data, such as but not limited to cybersecurity sites, government departments, banks, healthcare, etc.
You can change your site's logo manually or by using the Logo Wizard. To change it manually, go to Admin Zone > Style > Themes. Choose "logo/-logo" from the dropdown list, which represents the logo for the Welcome Zone and any zone without a specific logo. Replace the current image by uploading a new .jpeg, .gif, or .png file. Ensure that the 'Name' field remains unchanged.
Composr is built using a series of addons that provide different functionalities. All "bundled" addons are installed by default. Once you are familiar with Composr, it's recommended to remove any bundled addons you don't need to simplify your site and prevent accidental exposure of unconfigured features to visitors (the Setup Wizard can also uninstall these addons based on your preferences). You can manage addons by navigating to Admin Zone > Structure > Addons. Uninstalled addons are archived and can be restored later, but any associated data will be permanently lost.
Composr also offers non-bundled addons. These addons are not bundled because they are not considered mainstream, rely on third-party services, haven't been vetted to Composr standards, or don't fully conform to those standards.
You can install non-bundled addons by going to Admin Zone > Structure > Addons, scrolling to the bottom and clicking "Import non-bundled addon(s)". You will need to browse to the addon file and click the import button. Once imported, review the warnings and proceed to install the addon.
You can also download and import addons from this website under the Downloads section.
What are some of the default Comcode pages in Composr?
Answer
Composr includes several default Comcode pages, each serving a specific purpose:
home (Welcome and Site zones): The default front pages for the respective zones.
sitemap (Welcome zone): Displays the sitemap, typically generated automatically.
_rules (Welcome zone): Outlines the site rules, also displayed during registration. The "rules" page (no underscore) is a wrapper for this page.
privacy (Welcome zone): Provides privacy policy information. By default, this is generated automatically with Composr's privacy policy generator block.
404 (Welcome zone): The page shown for 404 errors (page not found) and includes a sitemap.
help (Site zone): Contains general help information.
userguide_comcode (Site zone): A basic guide to Comcode for users.
Remember that you can edit these default pages or create entirely new ones to tailor your site's content to your specific needs.
If you want to prevent a Comcode page from appearing in your sitemap, you can simply prefix its name with an underscore (_). For example, pages named "_test" or "_example" would be excluded from the sitemap. Note that this generally does not hide the page from your site itself (to do that, use the validation addon to turn validated to "OFF" for the pages); it only hides them from the sitemap / search engines.
Can I organize Comcode pages in a hierarchical structure?
Answer
Yes, Composr allows you to simulate a hierarchical structure for your Comcode pages using multi-part paths in the page monikers. By editing the page monikers to include slashes (e.g., "about/team"), you can create a virtual directory structure within a single zone, enhancing your site's organization and navigation.
How do I embed content from other modules into a Comcode page?
Answer
You can use various blocks to embed content from different modules:
main_content block: Allows you to feature individual entries from modules/content like news or articles.
main_multi_content, main_cc_embed, main_gallery_embed, main_news blocks: Enable you to pull in and display multiple entries based on categories or other criteria.
main_include_module block: Provides a powerful way to integrate any module screen directly into a Comcode page.
What is the difference between blocks and boxes in Composr?
Answer
While both terms may seem similar, they have distinct meanings in Composr:
Blocks are functional units that generate dynamic content or provide specific features. They don't inherently have a visual form and their output can vary widely.
Boxes are a visual design element in Composr, essentially containers that visually group content on a page and often with a title at the top.
In practice, blocks often place their content within a box, but this isn't a requirement / standard.
Yes, you can customize the appearance of blocks by editing the associated templates and CSS. Each block typically has a corresponding template file (e.g., BLOCK_MAIN_NEWS.tpl for the main_news block) that controls its HTML structure. You can modify this template to change the layout and styling of the block's output.
An easy way to do this is through the template editor in Admin Zone > Style > Themes, and click edit templates for the relevant theme.
