A new, interim version has been released to fix the discovered vulnerabilities and bugs.
What's included in the new version:
- Changed security settings due to which the import did not work correctly in the previous version
- Updated the PHPMailer library to fix the vulnerability found in it.
- Fixed link to 404 error from banner
System news
OkayCMS update - version 2.1.5
Instructions for self-updating OkayCMS to the current version.
Administrative panel:
- Added the ability to go to the previous / next order using the arrows in the order itself.
- When you enable the quick edit function and want to edit (page, product, product, etc.) when you are in an additional language, when you click on the pop-up link "Edit", it was transferred to the admin panel to the page with the default language version. Now a link is generated with the id version of the required language.
- TinyMCE text editor updated to the latest up-to-date version. It also includes several features that were disabled in previous versions.
- The "Translations" sub-item has been moved from the "Settings" section to the "Design" section, since the translations are still more related to the template, and not to the settings.
- If the template contains a locked file, then translations are also not available for editing.
- In the admin panel, now the "Apply" pop-up button appears on the product list page if the price or quantity of products changes.
- The amount of information that is displayed in the "System Information" tab has been expanded
Integration with 1C:
- Transliteration in the import file from 1C is reduced to the general form of transliteration that is used in the system.
- When importing goods from 1C with spaces at the end, now the URL is formed correctly, "-" at the end is automatically truncated.
SEO changes:
- Made a ban on creating in the admin. order panels without products, as well as when editing an order, if you delete all products from it, it will no longer be saved.
- Previously, pages in the switched off language gave the code 200 and if a link to them was added to the search engine, then duplicates could be indexed. Now pages of disabled languages return a response code of 503 and will not be included in the index of search engines.
- Previously, when switching the language on the filtering page, you could get to a page with a 404 error. Now, when switching the language on the filtering page, the user is transferred to the product category without filtering.
- Fixed a bug when, using manual manipulations with the URL, it was possible to get a page that gives a 200 code instead of a 404 error.
- Also fixed a very rarely reproduced error with incorrect URL formation under special filtering conditions.
- Correctly configured links that are specified in rel = "alternate"
- Fixed a micro-markup error
Other changes:
- Added a field to the database in which the date of the category creation is written. Can be used to display new categories when creating new templates (for example).
- Reduced the number of queries to the database to speed up the system
- Fixed the problem of incorrect display of text in the installer in some cases.
- The quality of the photo in the system is set to 100% by default.
- Changed the rules for validating the phone in the shopping cart when placing an order.
- Earlier, when the "Import" button was pressed with a missing file, an error was generated. This has now been fixed.
- Made a redirect from yandex.xml to feed.xml for those who are used to the old URL
- Changes made to config.php file to make it easier to build with Phing.
- Made correct display of the "For payment" button when using the "Interkassa" payment module
- Fixed bugs in style.css
1C:
- work was done with import from 1C. Fixed unloading of goods from 1C, added the ability to import property names and units of measurement from 1C, as well as various currencies of goods. More settings have appeared in the file responsible for importing from 1C. Added the ability to unload goods from 1C with an infinite quantity in the warehouse, you can set whether to unload all currencies or only active ones, whether you need to clear the database before each import.
Client part:
- updated Fancybox, fixed the logic of Fancybox when clicking back in the browser. If earlier, when opening a fensibox, closing it and clicking after that on the back button, a fensibox was opened in the browser, now the previous page opens.
- fixed display of inputs in the cart and order comments in IE11.
- slightly changed the display of the order letter to the client for better clarity.
- minor changes were made to the display of properties in the product.
- all property values for all languages, not the current one, took part in filtering.
- if the category had the URL catalog, all-products, brands, discounted, bestsellers - sorting, pagination and filters did not work. This has now been fixed.
Admin. panel:
- fixed a problem with sorting products and categories that occurs after updating browsers.
- some translations were moved from tpl to a file with translations.
- when adding a product, now all property values are added to all languages.
- when using port 465 for sending emails via SMTP, the ssl encryption protocol is now substituted.
- on the properties page in the admin. panels, categories were duplicated in the filter by category if there was nesting. Fixed.
- Banner pictures are transferred to the general logic of working with images - The problem with creating 2 banners with different pictures but the same names has been fixed (the image of the 1st banner was displayed for all banners).
SEO fixes:
- lastmodify headers for blog and news pages were taken common for both pages. Now a separate heading is generated for each page.
- on the pages of the filter by properties, the incorrect link in alternate to this page in other languages has been removed.
- added canonical attribute to brand and category pages.
By default, in OkayCMS, sending mail from the site is carried out using the standard PHP mail () function. This functionality does not require a third-party server to send Email. But at the same time, this method has several critical drawbacks that make it unreliable.
I think every entrepreneur who has his own online store will confirm that the most difficult thing in maintaining a site is to quickly contact the developer. It sounds, at first glance, ridiculous, but you must admit that when a critical problem appears on the site, and your programmer does not answer in Skype, he logged in to Viber three days ago, and the phone is “out of range” - it’s not funny.
Major changes:
- Added captcha to the callback. Also added an error notification when sending a callback.
- To the admin. panel made filter by products without brand or category
- When searching, if it finds a product with a complete match and a product with a longer name, no auto transition to the search occurs. Also, on such a page, the search is no longer looped (previously, when clicking on the search field, the page was reloaded immediately).
- Non-indexed filter pages are no longer links for more rational use of search engine crawling budget.
- Values of the number of filters before noindex have been moved to class variables.
- Added possibly random sorting of goods
- Combined functions of transliteration, strings of correspondences of letters of the Russian and English alphabets are now in one place (for php and js)
- tinyMCE editor is now rendered in manager language
- Translations of js plugin datepicker, combined and linked in the language of the manager
- Fixed a bug when changing the language in the admin. the panels in the Manager and Language sections were filled with an incorrect id
- To the admin. panels in the Banners section now generate the correct code to insert a banner
- When deleting an item, all property values are now deleted, not just the current admin language.
- Fixed unfolding of third level categories in admin. panels.
- Fixed display of footer when open select in admin. panels.
- Fixed a bug when, when duplicating a product, the order of related products was duplicated incorrectly.
- Outdated js-code in sorting in admin. the panel is replaced with the current one.
- Fixed a problem when, when importing a property as an internal column (for example: description), the property itself was also created or updated (moreover, the property name was as an internal field).
- Previously, when duplicating a product, the transliteration of properties was not duplicated, but generated again. This has now been fixed.
- Optimized the work of the autocomplete properties in the admin panel.
- Optimized selection of product properties in feed.xml. Now the selection occurs once for all products.
- Made various minor improvements to the layout of the client template and admin. panels.
Major changes:
- Improved work of the filter by brands
- When you turn on the display of kopecks, 2 signs are now displayed in the fractional part
- Made transfers of managers' rights to admin. panels
- Updated API for integration with YandexMetrica
- Updated API in the LiqPay payment system
- Made display of product units in the product card, basket and on the page of the placed order.
- Added the "Administrator's phone number" field during installation to enable the presentation of the system to new users
- Variants are now transferred to the viewed products (not displayed in the standard template, but the ability to display variants has been made)
- Fixed the problem when, when changing the language on the pages of users, banners, group of banners, as well as on the manager page, the entity id was not put in the link and the "create" page was opened
- Increased tinyMCE description field
- Shielded a number of XSS vulnerabilities
- Fixed the work of a promo image when editing a product
The main change in 2.1.0 is a completely redesigned import of goods.
Also added units of measurement, sending emails via SMTP and many more minor changes.