Maintenance update

• Bug fixes
  • Fixed a broken link in the first-install wizard.
  • Fixed: plugin created the file non_mirrored_events.log even when no mirrors were configured.
  • Fixed: Logger path was wrong (in some cases it was generating a log file in /wp-admin/)

Maintenance + 4.4.3 follow up update

= 4.4.3.1 (2023-01-12) =

• Plugin & features improvements

  • Better support fo the Nextend Social Login and Register plugin - plugin keeps a log of all logged in sessions, including those signing in via third parties services such as Google and Facebook.
  • Added additional checks for the plugin setting "write directly to mirror" to address a number of PHP warnings.

• Bug fixes

  • Fixed: Error reported when trying to edit a revision of a post on some particular setups.
  • Fixed: All plugin log files had the .php extension, instead of only the non mirrored logs log file.
  • Fixed a number of PHP warnings which were being reported when the plugin is run in an environment using PHP8.
  • Fixed: Uncaught error in "FS_Admin_Notices" reported in some cases when plugin is used with MainWP child.
  • Fixed: PHP fatal error reported on some membership based websites when users try to log in.

Announcing WP Activity Log 4.4.3

Release notes: Announcing WP Activity Log 4.4.3

• New activity log event IDs

  • 6060: an event ID was enabled or disabled.

• New features & functionality

  • MemberPress activity log extension - keep a log of the changes that happen on your MemberPress powered website.
  • Plugin can now read v4 IP addresses that are mapped to v6.

• Plugin & features improvements

  • Major database queries improvements to optimize the reading of activity log events from the database.
  • Improved display of extension events (as well as special sub-options) within the Enable/Disable events view.
  • Adjusted CSS for a more responsive activity log viewer.
  • Improved login sensor to improve compatibility with most custom login forms.
  • Improved logic handling when creating custom notifications.
  • Activity Log events sorted by event ID in Enable/Disable Events section.
  • UI improvements to the Enable/Disable events view.
  • Activity log event metadata is now consistently an array for efficiency and better data management.
  • Silencing admin notices in the activity log viewer page.
  • Event data inspector styling improvements.
  • Removed the Freemius SDK from the Free edition plugin.
  • Plugin now displays the user role name instead of the slug.
  • Improved the plugins internal logging class/system.
  • Applied several new checks and improvements to improve the reliability of the archiving connection module.
  • Improved the logic of event ID 1000 (user login) to avoid duplicate events when a user logs in via WooCommerce.
  • Improved the "ordering and organizing" of the event ID lists in the Enabled / Disable Events section.
  • Updated the Freemius SDK to version 2.5.3
  • Improved compatibility with the MemberPress plugin (addresses a number of errors etc).

Maintenance release + 4.4.2 follow-up build

• Bug fixes
  • Fixed: Fatal error when a WooCommerce file download is triggered.
  • Fixed: Only users with administrator role shown as logged in on a multisite network.
  • Fixed: Event IDs 5010 - 5018 wrongly enabled by default.
  • Fixed: A number of upgrade errors caused because of possibly outdated files.
  • Fixed: Disabled event IDs disabled at multisite network level were activated back when accessing child sites.
  • Fixed: Upgrade notice shown on a multisite network even when it is a new install.
  • Fixed: Fatal error triggered due to incorrectly named files (wrong capilitazion).
  • Fixed: Error in Alert formatter triggered during the upgrade process.

More reports white labelling options & statistics reports

Release notes: More reports white labelling options & statistics reports

• New activity log event IDs

  • ID 2133: user taken over a post from another user.

• New features & functionality

  • A number of new activity log statistics reports such as number of newly created users, user profile changes, password changes and password resets, page views, and more.
  • Added a number of new whitelabeling options in the activity log reports. Users can now add the business name, contact details, business logo and more in the reports.
  • Users can now change the report title, add comments etc.
  • Tags for Loggly & AWS Cloudwatch: add tags to the WordPress activity logs mirrored to your logs management system.

• Plugin & features improvements

  • Users can now specify the number of hours when configuring a timeout for idle sessions.
  • Automatic plugin and theme updates are now detected and reported in the activity log (event ID: 5004).
  • Improved the logic of event ID 4029 - the user triggering the password reset request is now reported as the user who did the action.
  • Added the format of the generated report in the periodic reports list.
  • Draft posts can also be included in reports criteria.
  • The function to import / export plugin settings replaced with our own library (to be used in other plugins).
  • Plugin now uses the hook 'deleted_theme' to detect deletion of installed themes.
  • Removed the multisite tab from built-in notifications when installed on single site.
  • Added a check so the name of a mirroring connection cannot be empty.
  • Plugin now checks if there is an existing mirroring connection with the same name so not to overwrite existing ones.
  • Removed redundant "Save" button from the "Delete activity log data" page.
  • Improved the Integrations wizard - catered for a number of conflicts with other plugins and themes such as Divi.
  • Reviewed and improved the text in the WordPress users' sessions management module.
  • Reports generation errors now contain details of why reports failed instead of generic errors, helping the user identify what the issue might be.
  • When deleting data about an IP address or a user from the logs, the user is now asked if they want to delete the events about the user / where the IP address is mentioned, or events generated from that user or IP address.
  • Optimized the way licensing data is stored on a multisite network.
  • Premium plugin advert in activity log viewer is now fixed - it does not interrupt user.
  • Added a new filter to specify which long data fields should be truncated in the activity log viewer.
  • "Email Notifications" section renamed to "Email & SMS Notifications".
  • Reviewed and rewritten the help text in the Sessions module to advise users to terminate current sessions before restricting sessions.
  • Applied a number of UI/UX tweakts to the Enable/Disable events section making it neater and easier to use.
  • Post titles are now reported and linked to the post in the daily update email.

• Bug fixes

  • When user changes multiple plugin settings the plugin now is reporting all the changes and not just one.
  • Fatal error reported when running certain activity log searches.
  • Event ID 6310 no longer incorrectly reported with every plugin setting change.
  • Fixed: activity log retention settings deleted and rewritten to database on page reloads.
  • Fixed: some premium features such as the "link to view all users activity" available in the free edition.
  • Fixed: New notification help text shows HTML code rather than formatted message.
  • Fixed: Clicking the expand data in activity log viewer resets the view and redirects the user to top of the activity log.
  • Fixed: Reports filter "Post type" was not finding events about posts with some custom post types.
  • Fixed: Changes in activity log retention settings not correctly reported in event ID 6052.
  • Fixed: When a user changes a post's title and content, only the title change is reported.
  • Fixed: Deleting of activity log events by severity is not deleting the events.
  • Fixed: Excape characters in password cause authentication with third party services to fail.
  • Fixed: The setting "Cleanup expired session data" cannot be disabled.
  • Fixed: Step 2 in the integrations wizard is not "scrollable" if you go back to it while configuring a connection.
  • Fixed: changes in built-in email notifications are not saved in some specific scenarios.

Support for MainWP extension updates + maintenance update

= 4.4.1 (2022-03-23) =

Release notes: Out now: Activity Log for MainWP 2.0 & WP Activity Log 4.4.1

• Improvements & changes

  • All of the plugin's code is now using the WordPress coding standards.
  • Removed the reporting and search code from the free edition plugin that was used by the MainWP extension.

• Bug fixes

  • Fixed: Reports filter "By post title(s)" not working.
  • Fixed: Users couldn't set up a MySQL connection because of "unknown connection type" error.
  • Fixed: The daily activity log summary email cannot be enabled again after disabled.
  • Fixed: PHP fatal error when index.php file is saved in the custom sensors directory.

New Reports engine with more criteria, reports management & more

Release notes: New Reports engine with more criteria, reports management & more

• New activity log event IDs

  • ID 6059: Changed the site's title.
  • ID 4021: Changed the website URL in the user profile.
  • ID 4013: User has been activated on a multisite network.

• New features & functionality

  • Hooks to allow users to change the columns in reports or ad value from non-default columns. Refer to the list of hooks in WP Activity Log for more information.
  • New UI for "Enable/Disable event IDs" with search and filtering functionality.
  • New filter that allows user to add metadata to user information popup. Refer to the List of hooks in WP Activity Log for more information.
  • The new Activity Log for TablePress extension.

• Improvements

  • Changed the database schema for improved storing of data, and faster writing and reading. After the upgrade the plugin will launch the upgrade process which might take some time to complete, depending on the amount of data in the activity log.
  • Improved the coverage of changes done to a website via REST API.
  • Removed obsolete code used for advertorial events in the activity log viewer.
  • All plugin settings now have the wsal_ prefix automatically added to them.
  • Rewritten some of the settings help text in the plugin to better explain the settings.
  • Removed obsolete settings & code of the old file integrity scanner (now part of Website File Changes Monitor plugin).
  • Removed obsolete reference to the old file changes scanner in the daily summary email.
  • Made a number of JS strings available for translation.
  • Removed a number of plugin settings from autoload for improved performance.
  • Improved the plugin's metadata and added the licensing information.
  • Long URL strings in activity log events are now automatically truncated. Full URL can be seen with just a click.
  • Removed forced database table collation: plugin now uses the default WordPress table collation.
  • Updated the "Help & Contact Us" page; improved text and added more relevant information.
  • Improved several UI sections in the Third Party Connections module.
  • Improved the check for writing activity log to external database; now it is less restrictive and faster.

• Security fix

  • Upgraded the Freemius SDK to version 2.4.3.

• Bug fixes

  • Fixed: Database error when trying to log in with a non-existing user and a login notification is enabled.
  • Fixed: In some edge cases the plugin was creating an empty "external database" connection string.
  • Fixed a number of typos in the text of activity log events.
  • Fixed: Auto complete in the Delete activity log data section was not returning the correct list of objects.
  • Fixed: Wrong object reported for event ID 5029.
  • Fixed: Event ID 4000 not reported when front-end sensor is disabled.
  • Fixed: "Unknown connection type" reported back setting up a third party connection on specific versions of WordPress.
  • Fixed: Event ID 6320 (added / removed connection) reported instead of event ID 6321 (modified connection).
  • Fixed: Function that was running on "add_filter" instead of "add_action" - Support ticket.
  • Fixed: PHP warning about OPCacheUtils.php in specific setups.
  • Fixed: Edge case in which other plugins couldn't be installed or updated when WP Activity Log was activated.

Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous versions of the WP Activity Log plugin.

Preparing for 4.4

Release notes: the improvements in this update are required to prepare for WP Activity Log 4.4. Therefore it is important to install this update in preparation for update 4.4.

• Improvements
  • Removed opcache purging
  • Improved error handling during plugin upgrade

Bug fix - incompatibility issue with PHP 7.2

Merge pull request #605 from wpwhitesecurity/develop

Hotfix 4.3.3.1

Enterprise-grade features & more in latest release

Release notes: WP Activity Log 4.3.3: Plugin setting importer & exporter & support for REST API

New activity log event IDs
* ID 5028: Enabled or disabled automatic updates for a plugin.
* ID 5029: Enabled or disabled automatic updates for a theme.

New activity log event IDs for notifications in the plugin
* ID 6310: Changed the status of the "Daily activity log summary email".
* ID 6311: Modified the list of recepients of the "Daily activity log summary email".
* ID 6312: Changed the status of a built in notification.
* ID 6313: Changed the recepient(s) of a built in notification.
* ID 6314: Added a new custom notification.
* ID 6315: Modified a custom notification.
* ID 6316: Changed the status of a custom notification.
* ID 6317: Deleted a custom notification.
* ID 6318: Modified the default notification template.

New activity log event IDs for integrations & activity log mirrors
* ID 6320: Added a new integration connection.
* ID 6321: Modified an integration connection.
* ID 6322: Deleted an integration connection.
* ID 6323: Added a new activity log mirror.
* ID 6324: Modified an activity log mirror.
* ID 6325: Changed the status of an activity log morror (disabled/enabled).
* ID 6326: Deleted an activity log mirror.
* ID 6327: Changed the statues of the setting "Logging events to database".

New features
* Plugin settings exporter & importer: easily export and import the plugin's settings configuration for backups, migration etc.
* Options to delete specific data from the activity log, such as all events about a user, or an IP address.
* Plugin keeps log of authenticated user changes done to the website via the REST API.
* New button to only terminate the users' sessions that match the search criteria in Logged in users' session.
* Added the new {first_name} and {last_name} tags to the custom notifications template.
* New hook to edit the activity log event data before it is sent to mirrors.

Improvements
* Logs from subsites on multisite networks can be mirrored to AWS Cloudwatch as individual log streams.
* Activity log retention policy can now be specified by the number of days.
* Plugin now reports user role changes done via the "Members" plugin (by Memberpress).
* Event ID 2010 (user uploaded a file) now includes a link to the uploaded attachment.
* Added "Blog ID" and "Site URL" to mirrored activity log events.
* Hover over prompt for users entries in activity log viewer now displays more information about the user.
* Improved the handling of post meta changes (support ticket).
* Renamed menu entry "BD & Integrations" to "Integrations" to better reflect its purpose.
* Contact us link in install wizard now points to contact us page on website instead of homepage.
* Auto complete filters in Reports now check up to 100 records.
* Added additional database checks to ensure all data is removed from database upon uninstall on a multisite network.
* Improved coverage for the Members plugin - plugin now reports user role changes done via the Members plugin.
* Updated the "Help" link in the first time install wizard.
* change the "wsal_inactive_sessions_test" database override to a filter.
* Improved in-context help messages in plugin settings and ensured all titles are uniform.

Bug fixes
* Fixed a PHP warning which happened when visiting the plugin's settings pages (support ticket).
* Fixed PHP notice which happened when visiting an archive page (support ticket).
* Event IDs for "integration connections" changes wrongly reported for changes in "activity log mirroring connection" changes.
* Fixed: Activity log retention policies appearing twice in some scenarios.
* Fixed: Activity log retention settings and archive settings popup logic.
* Added the missing argument in a multisite network that were creating a PHP error during plugin uninstall.
* Setting the setting "Remove all data on uninstall" to "No" no longer leaves no option selected.