phpBB Forum Software

When the phpBB Team met in Prague last month for a short productivity meeting we achieved many things. We fixed bugs, worked on our bamboo infrastructure, reduced the size of the extension validation queue and worked on a new phpBB/Symfony Authentication bridge however one of the most significant things we did was start the base […]

Greetings all,We are pleased to announce the release of phpBB 3.1.5 "Bertie returning from the City of a Hundred Spires". This version is a maintenance and security release of the 3.1.x branch which fixes one content permission issue and a number of ... [More] bugs, as well as adds new events as entry points for extensions to modify phpBB's behaviour.We'd like to thank 5hocK for letting us know that it was previously possible for the subject of a post of an inaccessible subforum to be listed as the newest post on the forum index. This could happen if the subforum was password protected while its parent forum wasn't, or if users were granted permission to view the subforum in lists, but not to read posts in the subforum. We recommend using appropriate permission settings with usergroups over password protected forums.This release uses the respective HTML attribute to disable autocompletion on all password fields that still allowed it. Passwords required to authenticate to external services like email or XMPP servers are no longer set as default values in ACP forms - thanks to Foritfy Open Source Review for proposing this improvement.Please note: You may run into a conflict warning when using the automatic update package. We recommend you resolve the conflict by picking "Do not merge - use new file". If you have made custom changes to the file "includes/acp/acp_prune.php" or would like further information, please read the corresponding sticky topic in our support forum.The full changelog is available in the changelog file within the docs folder contained in the release package. You can find the key highlights of this release on the wiki at https://wiki.phpbb.com/Release_Highlights/3.1.5 and a list of all issues fixed on our tracker at https://tracker.phpbb.com/issues/?filter=13098The packages can be downloaded from our downloads page.The development team thanks everyone who contributed code to this release: brunoais, Callum Macrae, Matt Friedman, javiexin, rxu, cyberalien, CHItA, Richard McGirr, alf007, Alexander Köplinger, Wolfsblvt, dragosvr92If you have any questions or comments, we'll be happy to address them in the discussion topic.- The phpBB Team [Less]

At a recent meeting of the Symfony Developers UK user group in London I gave a talk titled “How we Build phpBB: The Next Generation”. After a brief introduction to phpBB’s functionality the talk covers different aspects of phpBB’s development. It provides insight into phpBB’s history, in particular that of its versioning, and how this […]

The Extensions Development Team would like to ask you (again) to vote for another official extension! Our previous community choice resulted in our Auto Groups and Pages extensions. We have a few more ideas and would like the community to help us decide which of them would be the most popular: Advertisement Management – Ability to […]

Greetings all,We are pleased to announce the releases of phpBB 3.0.14 "Securing the thermal exhaust port" and phpBB 3.1.4 "May the fourth be with you". These versions are maintenance and security releases of both the 3.0.x and the 3.1.x branches ... [More] which fix one minor security issue and a number of bugs. The 3.1.4 release additionally adds new events that act as entry points for extensions to modify phpBB's behaviour.Thanks to Mathias Karlsson (avlidienbrunn) for bringing the security issue to our attention. An insufficient check allowed users of the Google Chrome browser to be redirected to external domains (e.g. on login) when provided with a malicious URL from a third party. This is no longer possible in 3.0.14 and 3.1.4.The full list of changes is available in the changelog file within the docs folder contained in the release package. You can find the key highlights of this release on the wiki at https://wiki.phpbb.com/Release_Highlights/3.1.4 (3.1.4) and https://wiki.phpbb.com/Release_Highlights/3.0.14 (3.0.14) and a list of all issues fixed on our tracker at https://tracker.phpbb.com/browse/PHPBB3 ... lter=12991 (3.1.4) and https://tracker.phpbb.com/browse/PHPBB3 ... lter=13094 (3.0.14).The latest packages can be downloaded from our downloads page (3.1.4) (3.0.14).The development team thanks everyone who contributed code to these releases: brunoais, RMcGirr83, rxu, Jakub Senko, Wolfsblvt, cyberalien, kasimi, Dragos-Valentin Radulescu, Kailey Truscott, paulsohier, Crizzo, JoshyPHP, Kevin Roy, Matt Friedman, n-aleha, Raphaël M, Robert Heim, Scout4all, kamijoutoumaIf you have any questions or comments, we'll be happy to address them in the discussion topic.- The phpBB Team [Less]

Last week phpBB again attended OSCON, the O’Reilly Open Source Convention, in Portland, Oregon. Yuriy, Derk, and I had a great time chatting with those attending the conference as well as those exhibiting. We were provided booth space by Bluehost as part of their ongoing commitment to support open source projects. We had a great […]

The Extensions Development Team would like to ask you to vote for the next official extension! We’ve compiled the following list for you to choose from: Auto Groups – an extension which allows admins to configure conditions, e.g. reaching defined ... [More] post count, membership days, or warnings, that will add users automatically to a defined usergroup. […] [Less]

My phpBB Summer of Code project involves the implementation of a Post Edit History, that is Post Revisions, system. This is a completely optional feature that keeps track of changes made to posts (each edit is called a “revision”). I have tried to write up a brief but informative post detailing what all is being [...]

During Google Summer of Code, I have been working on refactoring the authentication system (login and registration) to allow for login via OpenID providers and Facebook Connect [code]. The system’s old authentication plugins (db, ldap, apache) have ... [More] all been ported to the new authentication provider system and can be enabled/disabled via the administration control panel. Currently, OpenID [...] [Less]

During Google Summer of Code, I have been working on Search Backend Refactoring. The project involves minimizing code duplications by improving class abstraction in search backends and integrating PostgreSQL fulltext search [Code] and Sphinx ... [More] search [Code] into phpBB core. Up till now, the progress has been good with PostgreSQL fulltext search backend already integrated into phpBB 3.1 [...] [Less]