Paul

Password scores can be useful to end-users by simply making them think about their password selection. If they want to choose something we arbitrarily deem as "poor" security-wise, then at least they are making a conscience decision about it. It may nudge people into creating a better password, and save us the headache of a breached account. In terms of arbitrary, the link Jonathan posted -- https://tech.dropbox.com/2012/04/zxcvbn-realistic-password-strength-estimation/ probably best fits with our understanding of secure passwords. Length is better than special characters, and passwords that are difficult for computers to guess but easy for people to remember. Worth considering.

Originally it was not a password field, which meant you could see the generated password. Admittedly, it is now less useful. We created CORE-552 to create a modal box where the password will be generated and displayed, then saved to the form as is now.

Open a ticket and I'll issue a dev license to your account. If you have an owned license, it'll be permanent, if monthly, then it'll expire after 6 months but can be extended.

For addons ordered for existing services within the client area? Please see CORE-1228 and CORE-1229 including my recent comments on each task.

What if you're not logged in, and now you can't login because of a MySQL error?

Most FTP programs can upload the files in ASCII or Binary depending on the file extension, automatically. In FileZilla's Settings under Transfers > File Types the Default transfer type: should be "Auto" (Other options are ASCII and Binary). Below is a list of filetypes that are treated as ASCII. Make sure "php" is listed. Then, just upload in Auto mode, and Filezilla should sort it out for you.

You can still link to a specific package, please see http://docs.blesta.com/display/user/Order+System#OrderSystem-LinkingtoaSpecificProduct I'll send you a link via PM for an example on your order form.

The demo is running v3.4.0 now. It will be helpful if we can pre-populate some KB articles and other data, but that's a task for another day.

This is certainly a possibility. Blesta uses SwiftMailer and there are various transports available for it. New transports could be written to add support for services that are not currently supported. It looks like Mandrill is supported http://help.mandrill.com/entries/23738427-How-do-I-send-with-SwiftMailer-PHP-

If the check did not go through, change the transaction from Approved to Returned. I recommend Returned for bounced checks, as that's effectively what happened. Voiding it as Mike describes will work as well. Once the transaction is no longer Approved, it will be unapplied from the Invoice automatically, re-opening it.

I'm assuming you are using an Ajax style template. Normally when someone visits /order/, if it's the default order form, and click one of the packages, it will scroll down to the configuration section. If it's scrolling automatically then I'd love to take a look at. Feel free to post the link, or if you prefer to keep it private, send me a PM or email sales.

When using a different hostname for each company, the hostnames all simply need to point to the same document root. So, if you have Blesta installed at /home/username/public_html/, then all hostnames for all companies need to point to this server path in your web server configuration. If you're using Apache, then in your httpd.conf, all the virtualhosts would have the same docroot. Please see http://docs.blesta.com/display/user/Creating+Companies#CreatingCompanies-ConfiguringCompanyHostnames for a sample configuration. We highly suggest that if you are going to use multicompany that you install at a sub-domain. For example, billing.domain.com, account.domain.com, my.domain.com, etc. The reason is that you can have an actual website off domain.com as part of a different virtualhost. If you have Blesta installed in a sub-directory, and both domains have the same docroot, then they would also display the same website content. I hope that helps!

I would say so, but feel free to keep nudging us If it were a simple fix, it'd be done already. We gots to put our thinkin' caps on.

Hey, welcome! I'll see if I can get the demo upgraded in the next few days. If you haven't already, download and install the trial. It's better than the demo because you have full control and can evaluate features in more detail without anyone else in the way.

Looks really great, nice work!

All of the links in Blesta should be relative, including POST URLs, so at no time if you're accessing Blesta over https should it switch to http. I would open up the inspector in your browser and try to trace that down.

Yup, cancel the recurring item, then edit the invoice and delete the line item. All the other line items will remain linked to their respective services, should the invoice remain unpaid they will be suspended.

Also, if you move your install, make sure you re-issue the license key in the client area. Also, update the paths in the settings under Settings > System > General after the move.

Any such code would likely work similar to a passphrase that is not stored within Blesta anywhere, but can be confirmed by Blesta when entered. Personally, I don't like the idea. It weakens 2FA. But, it's good if you have a lot of customers opening tickets because they lost their 2FA tokens.

Those are good places to frequent, and the free advertising on WHT's advertising forum shouldn't be overlooked.. but you're likely to see most of your new customers from referrals. Start with friends and family and branch out from there. People trust what their friends recommend more than an ad on the Internet.

You may be interested in CORE-1449. It allows for client permissions to add or edit. If add is granted, they can order it during checkout. If edit is granted, they can change it in the client area after its active.

We are partnered with e-onlinedata, see http://e-onlinedata.com/blesta/ They have good rates, and can set you up with Authorize.net included, which works well with Blesta. If you are not in the US, then they may not work for you yet.. but I hear they have plans to expand into Europe.

You can to some extent. Tools > Logs: Account Access shows what staff accessed who's credit card. Support system tracks who updated tickets, and I'm sure there are other various records kept about what admin did what. If you'd like to suggest a specific list of actions to log, I would suggest starting a feature request thread in the Feature Request forum.

I would like the sort data to be stored for particular staff, so that it is the same as you left it. Similar to the search options, as well as widget locations and layout. We also initially had plans to allow additional columns to be selected and sorted, which would be staff specific as well. In the future.

I never saw that before, but based on when it was published it wouldn't take into account contacts. I wonder if the author would be interested in updating it so that it does.