harmsmitsdev

Haha, I've just discovered that everything is made via promotions mechanism which are hidden in promotions.manage. *** In this sentence I would make a joke about poor architecture but I'm afraid to get banned ***  Let me explain why the mechanism is ridiculous :

 

Let's say that I sell men's cloths (jackets, trousers, shoes, shirts). I want to create a product bundle with a complete look. Below are the products and their variations:

 

a) jacket - 6 sizes/3 colors

trousers - 6 sizes/3 colors

c) shoes - 6 sizes/3 colors

d) shirts - 6 sizes (height)/6 collar sizes/3 colors

 

Guess what will do cs-cart under the hood when you create a product bundle for the above products... Ready for some cool magic? Tadam!!! Cs-cart will create single promotion foreach of the possible combination! Awesome! Let's do some math: 6 * 3 *6 * 3 * 6 * 3 * 6 * 6 * 3 = 629 856 different combinations!

 

After each add to cart event the system will check if cart content meets the requirements of any of 629 856 promotions that were created!

 

I know that my example is extreme but I've just tested it on my dev site where I wanted to create a product bundle for 2 products:

Product A - 8 fabric colors/2 frame colors

Product B - 25 fabric colors/2 frame colors

 

And it produced 800 new promotions. Just for a single product bundle!!!

 

I will also mention, that the UX is terrible. If you change the variation (e.g. choose different color) then the thumbnails doesn't update so the customer doesn't know what kind of bundle he's adding to cart.

 

If you were compalining about the issues with speed and performance of cs-cart than just be aware of what kind of architecture cs-cart is proposing.

 

@Ikoshkin, @Imac - while there were consultations about product variations design I was rising concerncs about buy together and product bundles. After long time you acknowledged the issues (my first ticket about problems was submitted almost 2 years ago). Now you're releasing this.

 

I'm dissapointed and shocked.

I am just annoyed they still didn't implement them as separate products. 

Yes, CS cart has problems but it has improved so much since the early days of version 1.

 

I am not sure the reason why the owners don't listen carefully to their customers - but again they are getting much better...

Currently CsCart V4 is in a good place.

- Proper product reviews, good promotional options (bundles, cart discounts, quantity discounts, etc).

- Checkout works well-ish, although we have been using only custom checkouts for 2 years now.

- A lot of performance improvements have been made through 4.10, 4.11, and 4.12

However, there certainly are downsides, especially when it comes to how 'shipping' is handled currently. Like that code is just 100% spaghetti.

 

I have upgraded my dev site. A bit tested and after a few days tried upgrade my live site.

 

Got error:

 

2021-12-07 04:21:43: Downloading "core" upgrade package

2021-12-07 04:21:44: Cannot download the upgrade package

2021-12-07 04:22:02: Downloading "core" upgrade package

2021-12-07 04:22:03: Cannot download the upgrade package

 

And the upgrade disappear from upgrade center. How come that I was able to get upgrade on my dev site but cannot download upgrade on my live site? Or I miss something?

 

They stopped updates due to an error they found.

There is obfuscated code in your js/tygh/checkout.js http://www.cctvkits....ygh/checkout.js If you need any support removing this or doing an audit, feel free to contact me. We will first need to start a procedure to determine what this obfuscated javascript does, and if it's malicious, contact the authorities and inform them of a breach (GDPR).

1. Passwords are hashed using password_hash (https://www.php.net/...ssword-hash.php)

2. This depends heavily on the payment integration you have selected. One thing to note, is that credit card information is *always* encrypted using the secret key set in your `config.local.php` file.

Is there any other way to integrate s3 bucket to cs-cart?

Currently not. Best is probably to use the CsCart integration and hire a dev to check it out for you.

I am currently reworking a part of this to be more robust (with failed job loggin). I am also checking whether there is a way for me to re-initialize the store context in some way, or whether I need to kill the worker after each job executed to reduce context leaking.

We do work with a trust factor in this case. Customers that have been using add-ons for over a month automaticaly get un-obfuscated updates from our update server. This is a perfectly fair balance. I don't know how other companies do this though.

You will need to install NPM, then you just execute the following in the 'js/core' folder.

npm install
npm run prod

Perhaps read up on webpack / nodjes / npm.

Third Party Encoded Addons

This I can understand though. Add-ons get 'nulled' a lot of the time. Besides a lot of people just cancel their payment, get their money back, and keep the add-on.

Hey,

Seeing as a lot of people these days seem to be relying on cronjobs, I went ahead and wrote a worker implementation for CsCart. I have been using it the past few years and it works really well, especially for e.g. sending mail asynchronously, processing images, synchronizing product changes, etc.

Feel free to add functionality where needed.

https://github.com/b...brands/bb_queue

Kind regards,

I can offer a full sendcloud integration for 250. Feel free to contact me in the mail below.

Pretty sure they are not. The new ultimate license prices are changing, which was pretty long due in my opinion as its just a one time purchase for larger companies. And seeing what you get, its a no brainer.

And for this very exact reason I really don't like it when people obfuscate their code

Have you defined your environment to be 'development'? Because that is quite literally the only way this error could show. Furthermore, this error does not occur on a fresh install. So I think something more than just the upgrade is going on here.