Monetary payments: Issue refunds through your payment gateway.
Point payments: Manually refund points through the points system.
Cancellations: Cancel purchases in the Admin Zone to allow repurchasing. Remember to manually undo any associated actions (e.g., removing name highlighting).
Composr supports PayPal, CCBill, and Authorize.Net for processing payments. While Composr could be extended to support other gateways, doing so may require professional development and customization.
Yes, the unified Composr search system allows users to find downloads based on keywords. This includes searching within download titles and descriptions, as well as within the content of certain file types like PDFs, text files, and even some binary formats (providing they are not too large in size).
Yes, Composr automatically creates a gallery for each download (if the galleries addon is enabled). You can easily add images directly after creating the download or through the download-view screen. The download gallery is displayed within the download-view screen itself.
Are there security features to protect downloaded files?
Answer
Yes, Composr includes security measures to protect downloads.
Protection from hackers: Uploaded files are stored with obscured filenames, preventing direct access and bypassing of the download system. Additionally, an anti-leech feature (when enabled) prevents direct download links from being shared on other websites (this is done by requiring a session ID which is validated against the person / device accessing it and only provided when Composr presents the download links to you on the site).
Basic security: Composr will not let anyone upload dangerous scripts (such as PHP files) which can be executed.
Rootkit detection: The rootkit detection tool under yourbaseurl/rootkit_detection.php can help scan files for shell scripts and backdoors. Composr's Health Check can also do this regularly. Note this only offers very basic detection and will not work for obfuscated backdoors (you should use antivirus to scan for those).
It is the responsibility of webmasters to run antivirus on their site to regularly scan files uploaded to it. Composr does not include antivirus software or virus scanning.
What are "breadcrumbs," and how can I customize them?
Answer
Breadcrumbs are a navigation aid that shows the user their current location within the website's hierarchy. In Composr, breadcrumbs are customizable through an XML file.
You can override default breadcrumbs using "match-keys" to target specific pages and define the desired breadcrumb structure. This allows you to adjust the breadcrumb trail to better match your website's organization.
To edit, go to Admin Zone > Structure > Configure breadcrumb overrides.
How can I control which panels are displayed on specific pages?
Answer
Panels are the areas around your main content area where you can place menus, blocks, and other dynamic elements. You can control panel visibility using display rules within your panel's Comcode:
{+START,IF,{$NEQ,{$PAGE},example_page_1,example_page_2,example_page_3}}
... panel content ...
{+END}
This example prevents the panel from showing on pages named "example_page_1," "example_page_2," and "example_page_3."
What is a "page-link," and how does it differ from a URL?
Answer
A page-link is a Composr-specific way to reference a page or screen within your website. It's a simplified, local representation of a URL, independent of the URL scheme you might be using.
For example, the page-link site:downloads:browse:10 points to the download category with ID 10 in the site zone. This page-link remains consistent even if your URL scheme changes the way URLs are structured. Page-links also do not consider monikers, so if a URL moniker changes, page-links will stay the same.
This is a powerful feature as you can use the Comcode [page="page-link"]Page title[/page] tag to generate URLs of local content. And these will always work regardless of URL scheme or moniker.
How do menus work in Composr, and can I customize them?
Answer
Composr has a flexible menu system that can be customized to your needs.
Default Menu: Generated automatically from the Sitemap, reflecting the structure of your content.
Editable Menus: You can create and fully customize these menus, adding links to specific content or external websites.
Menus can be added to panels (sidebars, headers, footers) or embedded directly within Comcode pages. The menu editor provides tools for adding branches, setting captions, tooltips, and URLs, and even defining context-sensitive behavior using "match-keys."
What are "zones" in Composr, and what are they used for?
Answer
Zones are like sub-sites within your Composr website. They provide a way to organize content and apply different settings, like permissions, themes, and navigation. Some default zones include:
Welcome Zone: The initial landing page, often used for login/signup.
Site Zone: Your main website content, with features for viewing, submitting, editing, and deleting content on the member level.
Admin Zone: For site administrators to manage the website.
Content Management Zone: Where content is added, edited, and deleted, typically by site staff.
Forum Zone (if using Conversr): Houses the forum section of your site.
What happens when I add a new usergroup to a third-party forum integrated with Composr?
Answer
If you are not using Conversr as your forum, Composr won't automatically assign any permissions to the new usergroup. To rectify this, you can use the "Absorb usergroup-permissions" feature in the Admin Zone. This tool allows you to copy the permissions from an existing usergroup to the newly created one, ensuring consistent access and functionality.
What are some security considerations regarding super-moderators and super-administrators?
Answer
While super-moderators have extensive access to manage your site, certain sensitive privileges are reserved for super-administrators. This includes the ability to impersonate other users, execute arbitrary code, and view private content. These restrictions help prevent potential privilege escalation and ensure the overall security of your website. Exercise caution when granting super-moderator status and trust only reliable individuals.
What are some useful tools for debugging permission issues?
Answer
Composr provides a couple of tools to help pinpoint permission problems:
FirePHP: This browser add-on allows you to view detailed logs of permission checks performed by Composr. By analyzing these logs, you can identify which checks are failing and adjust your settings accordingly.
Permission Check Logging: Enable logging of failed permission checks to a file (data_custom/permission_checks.log). This provides a persistent record of permission issues that you can review and troubleshoot.
How can I test if my permission settings are working correctly?
Answer
Composr's "SU" feature allows administrators to temporarily assume the identity of another user, enabling you to experience the site as they would. Simply enter the desired username in the "SU" box in the footer. You can also use "Guest" to browse as an unauthenticated visitor. Remember that using "SU" doesn't accurately reflect online status and retains administrator access to sensitive areas.
