Monetary payments: Issue refunds through your payment gateway.
Point payments: Manually refund points through the points system.
Cancellations: Cancel purchases in the Admin Zone to allow repurchasing. Remember to manually undo any associated actions (e.g., removing name highlighting).
Composr supports PayPal, CCBill, and Authorize.Net for processing payments. While Composr could be extended to support other gateways, doing so may require professional development and customization.
Yes, the unified Composr search system allows users to find downloads based on keywords. This includes searching within download titles and descriptions, as well as within the content of certain file types like PDFs, text files, and even some binary formats (providing they are not too large in size).
Yes, Composr automatically creates a gallery for each download (if the galleries addon is enabled). You can easily add images directly after creating the download or through the download-view screen. The download gallery is displayed within the download-view screen itself.
Are there security features to protect downloaded files?
Answer
Yes, Composr includes security measures to protect downloads.
Protection from hackers: Uploaded files are stored with obscured filenames, preventing direct access and bypassing of the download system. Additionally, an anti-leech feature (when enabled) prevents direct download links from being shared on other websites (this is done by requiring a session ID which is validated against the person / device accessing it and only provided when Composr presents the download links to you on the site).
Basic security: Composr will not let anyone upload dangerous scripts (such as PHP files) which can be executed.
Rootkit detection: The rootkit detection tool under yourbaseurl/rootkit_detection.php can help scan files for shell scripts and backdoors. Composr's Health Check can also do this regularly. Note this only offers very basic detection and will not work for obfuscated backdoors (you should use antivirus to scan for those).
It is the responsibility of webmasters to run antivirus on their site to regularly scan files uploaded to it. Composr does not include antivirus software or virus scanning.
What is "pinging" and how does it work in Composr?
Answer
In blogging, "pinging" is an automatic notification sent to blog search engines and other services when you publish a new post. Composr can automatically ping services defined in Admin Zone > Setup > Configuration > Feature options. These services then index your new article, making it searchable.
A default ping service (http://pingomatic.com/ping/?title=title&blogurl=url&rssurl=rss) is pre-configured to relay your ping to numerous other services.
You can customize the ping URL with these placeholders:
title: The article title
url: The article URL
rss: The URL of your news RSS feed
Pinging only occurs for news categories accessible to the public (guests).
How do I schedule a news post to be published at a specific time?
Answer
Once you have enabled the system scheduler (requires the Composr calendar and commandr addons), an advanced scheduling option will appear when adding or editing news posts. By setting a future date and time, your post will remain unvalidated until the chosen time, at which point it will be automatically validated and published.
How can members edit their profiles and account settings?
Answer
Members can edit their profiles and account settings through the "Edit" tab on their profile page. They can change their password, update personal information, manage their avatar and signature, and adjust their privacy settings. Administrators have access to additional options for managing member accounts.
Welcome Emails are a series of automated emails sent to new members on a predefined schedule. They can be used to introduce the website's features, encourage engagement, and provide helpful information. Website administrators can customize the content and schedule of these emails.
How can I enhance or enforce the security of member passwords?
Answer
Composr offers several features to improve password security:
Password Strength Setting: Administrators can set a minimum password strength requirement, forcing members to choose stronger passwords. Password strengths are calculated on a scale of 1-10 using algorithms that take into account letters (including case), numbers, symbols, repeat characters, use of dictionary words, and use of usernames / dates of birth / e-mail addresses.
Forced Password Resets: Administrators can force specific members or all members to change their passwords upon next login, enhancing security in case of potential breaches.
Expiring passwords: Administrators can require members to change their password after so many days.
Encrypted CPFs: If the server has the OpenSSL PHP extension installed, specific CPFs (such as ones containing other passwords) can be encrypted to protect sensitive member data in case of a server compromise.
Yes, Composr allows you to import and export member data using CSV spreadsheet files. This is useful for transferring member information between different systems, performing bulk updates, or creating backups. The export feature provides various filtering options, and the import feature supports adding new members and updating existing ones.
Go to Admin Zone > Security > Members > Export members.
Usergroups are a way to categorize members and assign them specific permissions and privileges. Each member can belong to one or more usergroups, and the permissions granted by those usergroups determine what actions they can perform on the website. Website administrators can create and manage usergroups, define their permissions, and assign members to them. They can also assign leaders who then have permission to manage the members of that specific usergroup.
What are Custom Profile Fields (CPFs) and how are they used?
Answer
CPFs allow website administrators to collect additional information from members beyond the basic profile fields. These fields can be customized to fit the specific needs of the website, such as collecting job roles, hobbies, or interests. CPFs can be used to:
Enforce specific requirements for membership (e.g., job role in a company forum).
Categorize members based on their interests or affiliations (e.g., football players in a school forum).
Display additional information on member profiles and forum posts.
Regular Registration: Users can click on "join" links, agree to your rules, and fill out a registration form. They will then receive an activation email to confirm their email address (if enabled).
Invites: You can restrict joining to invite-only. Existing members can send invites, and only those who receive an invite can register.
Manual Addition: Administrators can manually create member accounts through the Admin Zone. This is useful for pre-joining members or handling issues with the regular registration process.
Other Methods: Composr also supports automatic member joining through LDAP and HTTP authentication.
