Discuss Joomla! 3.4.7

[pe7er]

Here you can discuss about the release of Joomla 3.4.7

See Announcement: http://forum.joomla.org/viewtopic.php?f=8&t=902920

[bentk]

Since the upgrade to 3.4.7, I cannot edit my articles.

"Error
You are not permitted to use that link to directly access that page (#article_id)"

and when I try to edit an article, Joomla locks it also. After "check in" the same situation is happening.

PHP version 5.4.45-0
Joomla! 3.4.7 Stable [ Ember ] 21-December-2015 16:00 GMT

[zomtec]

Since the upgrade to 3.4.7, I cannot edit my articles.

"Error
You are not permitted to use that link to directly access that page (#article_id)"

and when I try to edit an article, Joomla locks it also. After "check in" the same situation is happening.

I cannot confirm that. After upgrading from 3.4.6 to 3.4.7 editing articles works fine. Maybe you have to clean up your browser cache and try again.

[ribo]

I can confirm also that editing articles and from backend and from frontend works fine.

[pe7er]

Since the upgrade to 3.4.7, I cannot edit my articles.

See: https://docs.joomla.org/J3.x:Unable_To_ ... icle_3.4.7
How to fix: Logging out and back in again will fix this issue.

[Americandane]

So just to confirm I understand 100%, the upgrade is not urgent if we are running the versions of php named in the announcement (PHP 5.4.45, 5.5.29, 5.6.13), since the underlying bug is in php.

Is that right?

[wavesweb]

After upgrade to 3.4.7 I cannot add menu items to any menu. I select menu item type "single article" and it erases all content and does not provide an option to select the article. Is this a known bug or unique to me?

[bentk]

Since the upgrade to 3.4.7, I cannot edit my articles.

See: https://docs.joomla.org/J3.x:Unable_To_ ... icle_3.4.7
How to fix: Logging out and back in again will fix this issue.

Thank you guys!

Logging out and back in again fixed the issue.

Thanks again and sorry...!

[ribo]

Is this a known bug or unique to me?

I tested, no bug, works fine

[wavesweb]

As a follow up note when I restored my site back to 3.4.5 everything works again so I feel this may be a bug with 3.4.7. I have not tried with 3.4.6 yet.

[ribo]

As a follow up note when I restored my site back to 3.4.5 everything works again so I feel this may be a bug with 3.4.7. I have not tried with 3.4.6 yet.

If it is a bug like you say why i dont have such issue with 3.4.7?

[wilsonge]

Hi guys,
As Peter noted in the Docs page. We had to make some changes to the way that sessions worked in Joomla to work around a critical PHP bug (see https://bugs.php.net/70219). Whilst we could easily migrate enough data to keep you logged in and have a successful update - it's apparent that we didn't do a good enough job. Logging out and back in again will reset your session data and fix everything however. So make sure you try that before reporting any bugs I totally get it's not ideal - but it's the best of a bad situation.

Kind Regards,
George

[wilsonge]

I still advise that you patch. Although there no vulnerabilities that we know of this patch does have other uses. If you need to prioritise then work on the vulnerable PHP versions first. But you should patch ALL your sites with this patch as soon as you can.

[ixchup]

I upgraded to 3.4.7 and it logged me out of Administrator and now it won't let me log back in. I have purged my browser cache and refreshed the page and I still get the error message: The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.

This is occurring on two separate Joomla sites. I'm very frustrated. Any tricks to fix this?

[solesky]

I just upgraded to 3.4.7 and I got the same problem as ixchup. I won´t let me log back in.
Im getting this error:The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.

Help please!!!

[sleighd]

Same Here.
I just upgraded to 3.4.7 and I have the same problem as ixchup and solesky. It booted me out when clicking 'Update' and I haven't been able to log back in.
I'm getting this error: The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.

[mikeh00]

Sort of similar problem. Upgraded and ended up at error screen. This webpage has a redirect loop

ERR_TOO_MANY_REDIRECTS

Now it won't let me login anymore. Keep getting that same error. Nice one Joomla.

[nickwalks]

I am seeing a similar error after upgrading ' The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.' I have tried clearing browser cache and active logins. Tried deleting sessions from database. Nothing seems to work. Any suggestions would be greatly appreciated.

**edit - extracting 3.4.6 full package in root directory (and deleting installation folder) rolled version back and can now access site. Had tried extracting 3.4.7 first but problem persisted.

[wavesweb]

As a note to my previous post - I updated to latest version again. Logged out and then back in and it works. As a note to others with my previously posted on issue - log in and out and menu items will work for you. Usually when you upgrade this is not necessary but you will need to log in and out to continue any work you have for this upgrade. Hope this helps someone.

[JacquesR]

I upgraded to 3.4.7 and it logged me out of Administrator and now it won't let me log back in. I have purged my browser cache and refreshed the page and I still get the error message: The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.

This is occurring on two separate Joomla sites. I'm very frustrated. Any tricks to fix this?

The following worked for me, in how to solve the "The most recent request was denied because it contained an invalid security token. Please refresh the page and try again" message:

Instead of refreshing, go to /administrator/ and log in again.
(you are most likely at /administrator/index.php when it is showing that message)

[makotosun]

I am seeing a similar error after upgrading ' The most recent request was denied because it contained an invalid security token. Please refresh the page and try again.' I have tried clearing browser cache and active logins. Tried deleting sessions from database. Nothing seems to work. Any suggestions would be greatly appreciated.

**edit - extracting 3.4.6 full package in root directory (and deleting installation folder) rolled version back and can now access site. Had tried extracting 3.4.7 first but problem persisted.

So if I am reading this right, you simply extracted a fresh copy of 3.4.6, then uploaded that right over your old install, then deleted the "installation folder" and your site rolled back one version and is now working? If that works, I should be good to go.

I did the upgrade, and now cannot log in to log out then re-log in to fix the session issue.

Is there a way to make some changes in the site before an upgrade to avoid this? I have 5 different sites and don't want to mess any more of them up, but want to take advantage of the security upgrades. Any help would be greatly appreciated as I am really a novice on the under the hood stuff.

Thanks in advance!

[JacquesR]

@makotosun: If you close any tabs in your browser, where you had the site admin open, and then go to your site's /administrator/ and log in there, do you still get the session expired message?

[leolam]

So if I am reading this right, you simply extracted a fresh copy of 3.4.6, then uploaded that right over your old install, then deleted the "installation folder" and your site rolled back one version and is now working? If that works, I should be good to go.

That is not a solution. Login to phpMyAdmin and truncate the session table (not delete but empty it) --> Delete entire browser history, close and reopen browser and go to yoursite/administrator (not yoursite/administrator/index.php

After this you should be able to login again

Leo

[makotosun]

Thank you for the help on this. Alas, neither of the two above solutions worked. I still get the following message:

"The most recent request was denied because it contained an invalid security token. Please refresh the page and try again."

a bit more info: I have historically had three super user accounts. One which I use for normal site work, and two in reserve that are not used except once in awhile to verify functionality.

My site was running Joomla 3.4.6 (the last security update) and seemed to be working fine. No issues at all.

I updated to 3.4.7 using the site update feature. In the middle of the update, the site logged me out (I was logged in as an admin to do the update) and I have not been able to log in since. I redirected my domain to a temporary landing page which I sort this out. It is a Kunena forum site if that makes a difference.

I used MySql to create a new administrator account to see if maybe a fresh account would use the new session handler and let me get in that way. No luck - same result as above. The site is functioning in view mode, but no one can log in.

If you have any other suggestions, I am at a loss right now. I would simply like to try and roll back to the version that worked and then I can plan a path forward. The site is quite large so rebuilding it is a bit daunting if I can avoid it

Thank you all so much!

[JacquesR]

I updated to 3.4.7 using the site update feature. In the middle of the update, the site logged me out (I was logged in as an admin to do the update) and I have not been able to log in since. I redirected my domain to a temporary landing page which I sort this out. It is a Kunena forum site if that makes a difference.

Check if the Kunena component is affected by this change in 3.4.7:
https://docs.joomla.org/J3.x:Backward_C ... omla_3.4.7

[makotosun]

The site profiler actually uses Easysocial for registration and user management. The site has Kunena as a forum, but I don't use Kunena as the registration. It also uses a bunch of other bits and pieces, so figuring out exactly what is going wrong is probably going to be a bit of a challenge.

I can try to go in and shut off parts and pieces and see if that opens the door, but as I said, I am not any kind of expert on this stuff. Probably in way over my comfort level, but I will keep trying. I have been able to learn from reading and forums and helpful folks, so this too shall pass.

I will report back if I find anything out, as I am sure I am not the only one with an issue like this.

Thank you!

[bienenf]

Hello team,

I have the same issue, we don't use Kunena,

And i can't login in Front, or access to the administrator side,

i have the security messager also,

thank you in advance for your support

[bienenf]

Hello,

I did the truncate without success,

and also the history delete, and went to yoursite/administrator
.... not good,

Thank you for your help

That is not a solution. Login to phpMyAdmin and truncate the session table (not delete but empty it) --> Delete entire browser history, close and reopen browser and go to yoursite/administrator (not yoursite/administrator/index.php

After this you should be able to login again

Leo

[LUMBERJACK]

Hi,
I use VirtueMart 3.0.12.
After updating Joomla! from 3.4.6 to 3.4.7 I cannot access any detailed product page (on front). When I click on a certain product from the list of products, it gives me an error 404 - there is no such product.

[LUMBERJACK]

Hi,
I use VirtueMart 3.0.12.
After updating Joomla! from 3.4.6 to 3.4.7 I cannot access any detailed product page (on front). When I click on a certain product from the list of products, it gives me an error 404 - there is no such product.

O!
After changing my hosting PHP to version 5.5.1 the problem got disappeared.

BUT a lot of problems bloomed on the other websites that are hosted in the same place!