Membership protecting checkout page

Hello

I have Membership 3.4.6 and MarketPress 2.8.9 installed.

If a not logged in user browses to a product, then puts it in their basket and then clicks checkout, the get the default 'Protected Content' page [/protected/]

They can browse products but can't checkout or view their order status

Logged in users can checkout as normal.

I have no URL groups or positive/negative rules set up which could affect this.

Could you help, please? It's important as the go live date for this site is fast approaching.

Much Appreciated
Pete

  • petemurray

    Hi Jack

    Okay, I have some information....

    I selected a subscriptions and account page, which stopped the checkout page being protected. Good.

    I'm using the User Meta Pro plugin for registration forms so I want to point users towards that form, not the Membership one, but if I select a User Meta Pro account form page as the account page in Membership Options, I get a page containing two forms - the UMP one and the Membership one beneath.

    About the rules for visitors, what rules do you suggest I set up? I want visitors to see all pages as a default, and I want to protect a handful of special pages.

    Thanks
    Pete

  • Jack Kitterhing

    Hi there Pete,

    That's great news, glad that worked.

    For the dual form issue, make sure membership registration form in that case is on a separate page, which page does user meta pro use by default?

    For the rules, what I'd recommend is actually using negative rules across all levels, you can then just set the items you want to protect, as if you use positive, you'd have to allow everything if that makes sense?

    Thank you!

    Kind Regards
    Jack.

  • petemurray

    Here you go

    suPHP_ConfigPath /home/earlyart/public_html
    
    Redirect 302	/resources/87	/resources
    Redirect 302	/research/86	/research-and-evidence/
    Redirect 302	/meet-the-network/map	/
    Redirect 302	/resources/singing-and-music	/free-resources/singing-and-music
    Redirect 302	/experiences/mapexperiences	/
    Redirect 302	/resources/dance-and-movement	/free-resources/dance-and-movement
    Redirect 302	/resources/construction-and-modelling	/free-resources/construction-and-modelling
    Redirect 302	/resources/drawing-and-colouring	/free-resources/drawing-and-colouring
    Redirect 302	/resources/visual-arts-and-crafts	/free-resources/visual-arts-and-crafts
    Redirect 302	/contact-details	/about-us/contact-us
    Redirect 302	/resources/family-learning-in-museums	/free-resources/family-learning-in-museums
    Redirect 302	/consultancy	/about-us
    Redirect 302	/research/international-curricula	/research-and-evidence/international-pedagogies/
    Redirect 302	/about-us/our-services	/about-us
    Redirect 302	/resources/puppetry-and-masks	/free-resources/puppetry-and-masks
    Redirect 302	/advertise-with-us	/about-us
    Redirect 302	/resources/photography-video-ict	/free-resources/photography-and-video
    Redirect 302	/about-us/our-values	/about-us
    Redirect 302	/about-us/our-impact	/about-us
    Redirect 302	/become-a-champion	/about-us
    Redirect 302	/research/research-and-evidence	/research-and-evidence
    Redirect 302	/experiences	/
    Redirect 302	/earlyarts-coverage	/earlyarts-media-coverage
    Redirect 302	/earlyarts-media-pack	/about-us/press-media/
    Redirect 302	/news/newsflash	/earlyarts-news/
    Redirect 302	/blog/latest	/blog
    
    RewriteEngine On
    RewriteRule	^news/item/1426-earlyarts-launches-a-new-range-of-creative-eyfs-teaching-resources$	/earlyarts-launches-new-range-creative-eyfs-teaching-resources/ [R=302,NC,L]
    RewriteRule ^news/item/*	/earlyarts-news/	[R=302,NC,L]
    RewriteRule ^join-the-network/*	/subscribe-to-earlyarts	[R=302,NC,L]
    RewriteRule ^join-us/*	/subscribe-to-earlyarts	[R=302,NC,L]
    RewriteRule	^training/unconference-2012	/unconference/earlyarts-unconference-2012 [R=302,NC,L]
    RewriteRule ^training/*	/events	[R=302,NC,L]
    RewriteRule ^consultancy/*	/about-us	[R=302,NC,L]
    RewriteRule ^ruths-blog/*	/blog	[R=302,NC,L]
    RewriteRule ^creative-practice-in-action/*	/	[R=302,NC,L]
    RewriteRule ^meet-the-network/*	/	[R=302,NC,L]
    RewriteRule ^log-in/*	/	[R=302,NC,L]
    #RewriteRule ^resources/*	/	[R=302,NC,L]
    RewriteRule ^blog/entry/*	/blog	[R=302,NC,L]
    
    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ - [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]
    </IfModule>
    
    # END WordPress
    
    # protect wpconfig.php
    <files wp-config.php>
    order allow,deny
    deny from all
    </files>
    
    # protect the htaccess file
    <files .htaccess>
    order allow,deny
    deny from all
    </files>
    
    # disable the server signature
    ServerSignature Off
    
    # limit file uploads to 10mb
    LimitRequestBody 10240000
    
    # disable directory browsing
    Options All -Indexes
    
    #block script injections
    Options +FollowSymLinks
    RewriteEngine On
    RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
    RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
    RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
    RewriteRule ^(.*)$ index.php [F,L]
    
    # block requests to author pages - it gives away admin username
    RewriteEngine On
    RewriteCond %{QUERY_STRING} ^author= [NC]
    RewriteRule .* - [F]
    
    ## BROWSER CACHING ##
    <IfModule mod_expires.c>
    ExpiresActive On
    ExpiresByType image/jpg "access 1 year"
    ExpiresByType image/jpeg "access 1 year"
    ExpiresByType image/gif "access 1 year"
    ExpiresByType image/png "access 1 year"
    ExpiresByType text/css "access 1 month"
    ExpiresByType application/pdf "access 1 month"
    ExpiresByType application/javascript "access 1 month"
    ExpiresByType application/x-javascript "access 1 month"
    ExpiresByType text/javascript "access 1 month"
    ExpiresByType application/x-shockwave-flash "access 1 month"
    ExpiresByType image/x-icon "access 1 year"
    ExpiresDefault "access 2 days"
    </IfModule>
    ## BROWSER CACHING ##
    
    # BEGIN GZIP
    <ifmodule mod_deflate.c>
    AddOutputFilterByType DEFLATE text/text text/html text/plain text/xml text/css text/javascript application/x-javascript application/javascript
    </ifmodule>
    # END GZIP
    
    <Files 403.shtml>
    order allow,deny
    allow from all
    </Files>
    
    deny from 69.65.42.235
    deny from 77.222.128.221
    deny from 23.20.135.126
    deny from 173.208.168.14
    deny from 23.20.204.133
    deny from 46.182.24.195
    deny from 98.126.12.2
    deny from 67.198.143.58
  • petemurray

    Hi Jack

    Thanks for that. I've chosen just to browser cache images and media, but not HTML. I guess that will be okay here?

    Can you give me some pointers how to speed up a Membership / MarketPress site?

    Cacheing seems out of the question and I've had problems with minifying, see (https://premium.wpmudev.org/forums/topic/membership-breaking-minify-with-w3-total-cache) What do you suggest?

    Thanks
    Pete

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.