axew3.com

axew3.com

phpBB user session update

by

axew3

Since plugin version 2.9.6 >

Note that this normally really NOT required! But you know that it is possible…

Time ago someone asked how could be possible to not have the function function verify_phpbb_credentials(){ that update user’s data and the phpBB session that run each time the WP page load.

By default this option has not been added into the plugin admin configuration page just because functions like verify_phpbb_credentials(){ or the Last topic Heartbeat shortcode when and if used (that’s the only two functions that “can impact the server performance” while all others plugin functions/hooks runs only when a specific action is done by the user so like when an user register into WP or update his profile) normally executes in milliseconds and even into a site without a cache no difference can be noticed with or without the integration plugin active. Said that a very big site or anybody else like it anyway.

So to do it just open up with a text editor the wp_config.php file and maybe just after the line

/* That's all, stop editing! Happy publishing. */

add the following line of code:

define('WPW3ALL_ULOGGED_NOPHPBBCREDENTIALS', true);

Note that:
avoiding the function verify_phpbb_credentials(){ execution each time that the WP page load it will run only when:
an user is logged out, but come with a valid phpBB session cookie, and will be so logged in WP (and added if not existent)

PM shortcodes (pm notifications shortcodes) will not work in this way

NOTE: the user require to be as MANDATORY allowed to update the profile email, password and url ONLY into WordPress if the phpBB WordPress extension has not been installed into phpBB.

When/if the phpBB user session will expire because not updated into the WP side by the verify_phpbb_credentials() maybe the user will have to login into the forum when his phpBB session will expire.
Anyway, having a long time remember me login released when an user login in WP and/or setting up the phpBB session as explained into install steps, so setting the cookie to be valid for 1/6 months or 365 days, it would not be a big problem.

Note that when an user login in WordPress by the way a “long time” remember me cookie session is released for phpBB by the plugin code. Settings about cookie session time in phpBB requires to be set in the same way or phpBB will follow his settings rules despite the existence of a long time session cookie. About this take a look into phpBB ACP Security settings the Allow “Remember Me” logins phpBB option, it require to be set to Yes. Check and set also the “Remember Me” login key expiration length (in days) option value. That’s all.