Jump to content



Member Since 22 Feb 2020
Offline Last Active May 17 2022 01:49 PM

#344616 Cs-Cart And Multi-Vendor 4.14.1 Released

Posted by harmsmitsdev on 15 December 2021 - 03:32 PM

Haha, I've just discovered that everything is made via promotions mechanism which are hidden in promotions.manage. *** In this sentence I would make a joke about poor architecture but I'm afraid to get banned ***  Let me explain why the mechanism is ridiculous :


Let's say that I sell men's cloths (jackets, trousers, shoes, shirts). I want to create a product bundle with a complete look. Below are the products and their variations:


a) jacket - 6 sizes/3 colors

B) trousers - 6 sizes/3 colors

c) shoes - 6 sizes/3 colors

d) shirts - 6 sizes (height)/6 collar sizes/3 colors


Guess what will do cs-cart under the hood when you create a product bundle for the above products... Ready for some cool magic? Tadam!!! Cs-cart will create single promotion foreach of the possible combination! Awesome! Let's do some math: 6 * 3 *6 * 3 * 6 * 3 * 6 * 6 * 3 = 629 856 different combinations! :-)


After each add to cart event the system will check if cart content meets the requirements of any of 629 856 promotions that were created! ;-)


I know that my example is extreme but I've just tested it on my dev site where I wanted to create a product bundle for 2 products:

Product A - 8 fabric colors/2 frame colors

Product B - 25 fabric colors/2 frame colors


And it produced 800 new promotions. Just for a single product bundle!!!


I will also mention, that the UX is terrible. If you change the variation (e.g. choose different color) then the thumbnails doesn't update so the customer doesn't know what kind of bundle he's adding to cart.


If you were compalining about the issues with speed and performance of cs-cart than just be aware of what kind of architecture cs-cart is proposing.


@Ikoshkin, @Imac - while there were consultations about product variations design I was rising concerncs about buy together and product bundles. After long time you acknowledged the issues (my first ticket about problems was submitted almost 2 years ago). Now you're releasing this.


I'm dissapointed and shocked.


I am just annoyed they still didn't implement them as separate products. 

#344452 Cs-Cart 4.15 Future Plans

Posted by harmsmitsdev on 09 December 2021 - 04:04 PM

Yes, CS cart has problems but it has improved so much since the early days of version 1.


I am not sure the reason why the owners don't listen carefully to their customers - but again they are getting much better...


Currently CsCart V4 is in a good place.

- Proper product reviews, good promotional options (bundles, cart discounts, quantity discounts, etc).

- Checkout works well-ish, although we have been using only custom checkouts for 2 years now.

- A lot of performance improvements have been made through 4.10, 4.11, and 4.12


However, there certainly are downsides, especially when it comes to how 'shipping' is handled currently. Like that code is just 100% spaghetti.

#344435 Cs-Cart And Multi-Vendor 4.14.1 Released

Posted by harmsmitsdev on 08 December 2021 - 06:27 PM


I have upgraded my dev site. A bit tested and after a few days tried upgrade my live site.


Got error:


2021-12-07 04:21:43: Downloading "core" upgrade package
2021-12-07 04:21:44: Cannot download the upgrade package
2021-12-07 04:22:02: Downloading "core" upgrade package
2021-12-07 04:22:03: Cannot download the upgrade package
And the upgrade disappear from upgrade center. How come that I was able to get upgrade on my dev site but cannot download upgrade on my live site? Or I miss something?



They stopped updates due to an error they found.

#343602 Is This A False Positive?

Posted by harmsmitsdev on 04 November 2021 - 08:57 PM

There is obfuscated code in your js/tygh/checkout.js http://www.cctvkits....ygh/checkout.js If you need any support removing this or doing an audit, feel free to contact me. We will first need to start a procedure to determine what this obfuscated javascript does, and if it's malicious, contact the authorities and inform them of a breach (GDPR).

#342972 Security Issues

Posted by harmsmitsdev on 06 October 2021 - 11:19 AM

1. Passwords are hashed using password_hash (https://www.php.net/...ssword-hash.php)

2. This depends heavily on the payment integration you have selected. One thing to note, is that credit card information is *always* encrypted using the secret key set in your `config.local.php` file.

#342756 Can Images Folder Be Hosted On Amazon S3

Posted by harmsmitsdev on 28 September 2021 - 09:10 AM

Is there any other way to integrate s3 bucket to cs-cart?


Currently not. Best is probably to use the CsCart integration and hire a dev to check it out for you.

#342682 Simple Queue Add-On With Workers

Posted by harmsmitsdev on 24 September 2021 - 09:23 PM

I am currently reworking a part of this to be more robust (with failed job loggin). I am also checking whether there is a way for me to re-initialize the store context in some way, or whether I need to kill the worker after each job executed to reduce context leaking.

#342658 Cs Cart Multi-Vendor Experience - 3 Month Review - The Good, The Bad And The...

Posted by harmsmitsdev on 24 September 2021 - 09:48 AM

We do work with a trust factor in this case. Customers that have been using add-ons for over a month automaticaly get un-obfuscated updates from our update server. This is a perfectly fair balance. I don't know how other companies do this though.

#342568 How To Compose Core.js File?

Posted by harmsmitsdev on 22 September 2021 - 09:10 AM

You will need to install NPM, then you just execute the following in the 'js/core' folder.

npm install
npm run prod

Perhaps read up on webpack / nodjes / npm.

#342540 Cs Cart Multi-Vendor Experience - 3 Month Review - The Good, The Bad And The...

Posted by harmsmitsdev on 21 September 2021 - 07:03 AM

Third Party Encoded Addons


This I can understand though. Add-ons get 'nulled' a lot of the time. Besides a lot of people just cancel their payment, get their money back, and keep the add-on.

#342487 Simple Queue Add-On With Workers

Posted by harmsmitsdev on 18 September 2021 - 12:05 PM



Seeing as a lot of people these days seem to be relying on cronjobs, I went ahead and wrote a worker implementation for CsCart. I have been using it the past few years and it works really well, especially for e.g. sending mail asynchronously, processing images, synchronizing product changes, etc.


Feel free to add functionality where needed.




Kind regards,

#342422 Shipping Software Solution

Posted by harmsmitsdev on 15 September 2021 - 07:18 PM

I can offer a full sendcloud integration for 250. Feel free to contact me in the mail below.

#341508 Meet The New Vendor Panel!

Posted by harmsmitsdev on 07 August 2021 - 02:56 PM

Pretty sure they are not. The new ultimate license prices are changing, which was pretty long due in my opinion as its just a one time purchase for larger companies. And seeing what you get, its a no brainer.

#340788 How Hackers Are Placing Xyz.php Files In Public Directory?

Posted by harmsmitsdev on 08 July 2021 - 07:45 PM

And for this very exact reason I really don't like it when people obfuscate their code

#339836 Upgrade To 4.13.1 Error

Posted by harmsmitsdev on 03 June 2021 - 04:29 PM

Have you defined your environment to be 'development'? Because that is quite literally the only way this error could show. Furthermore, this error does not occur on a fresh install. So I think something more than just the upgrade is going on here.