NextGen Gallery 2.0 Tutorial

Nextgen Gallery 2.0 Tutorial
How to Whitelist NextGen Gallery in a few steps.
Upon NextGen Gallery install/activation, BPS Pro should have picked up the Java (js) whitelist rules and added them automatically.
However Nextgen needs a Admin Query whitelist and php file whitelist that have to be added manually.

However use this guide to check.

STEP 1

Check your plugin firewall for the following Java (JS) Files:
/nextgen-gallery/products/photocrati_nextgen/modules/frame_communication/static/frame_event_publisher.min.js
/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_admin/static/ngg_progressbar.min.js
/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_admin/static/gritter/gritter.min.js

If some are missing you can use the BPS Pro cURL Scanner Pro-Tool to get all Plugin Firewall whitelist rules manually.

Do these steps below and see if they fix whatever problem is going on with AutoPilot Mode:

1. Go to the Plugin Firewall page.
2. Select the Deactivate Plugin Firewall BulletProof Radio button and click the Activate|Deactivate button.
3. Delete all of your Plugin Firewall whitelist rules out of the Plugins
Script|File Whitelist Text Area.
4. Click the Save Whitelist Data button.
5. Click the Create Firewall Master File button.
6. Select the Plugin Firewall BulletProof Mode Radio button.
7. Click the Activate|Deactivate button to activate the Plugin Firewall.
8. Turn on AutoPilot Mode to 1 minute.
9. Clear your WordPress Cache, Browser Cache
10. Check your site and click on all main website pages: contact form page, home page, login page, etc.
11. Recheck the Plugins Script|File Whitelist Text Area and you should see new Plugin Firewall whitelist rules have been created.
Check that the following files Java (js) files have been created by the Firewall plugin.

STEP 2

Or “Manually” Add the Java whitelist rules files or use the Wildcard.

/nextgen-gallery/products/photocrati_nextgen/modules/frame_communication/static/frame_event_publisher.min.js, /nextgen-gallery/products/photocrati_nextgen/modules/nextgen_admin/static/ngg_progressbar.min.js, /nextgen-gallery/products/photocrati_nextgen/modules/nextgen_admin/static/gritter/gritter.min.js

Plugin Firewall Manual Setup Steps
1. Copy and paste plugin scripts/whitelist rules above to the Plugins Script|File Whitelist Text Area.
2. Click the Save Whitelist Data button.
3. Click the Create Firewall Master File button.
4. Select the Plugin Firewall BulletProof Mode Radio button.
5. Click the Activate|Deactivate button to activate the Plugin Firewall.

Or

Use the Java (js) Wild Cards:

/nextgen-gallery/products/photocrati_nextgen/modules/(.*).js

STEP 3

Manually Add the following PHP file whitelist rules to Firewall Plugin or use the Wildcards rules

/nextgen-gallery/products/photocrati_nextgen/modules/ngglegacy/admin/rotate.php, /nextgen-gallery/products/photocrati_nextgen/modules/ngglegacy/admin/edit-thumbnail.php, /nextgen-gallery/products/photocrati_nextgen/modules/ngglegacy/admin/showmeta.php

Plugin Firewall Manual Setup Steps
1. Copy and paste plugin scripts/whitelist rules above to the Plugins Script|File Whitelist Text Area.
2. Click the Save Whitelist Data button.
3. Click the Create Firewall Master File button.
4. Select the Plugin Firewall BulletProof Mode Radio button.
5. Click the Activate|Deactivate button to activate the Plugin Firewall.

Or

Use the Php Wild Cards:

/nextgen-gallery/products/photocrati_nextgen/modules/ngglegacy/admin/(.*).php

STEP 4

Query String skip/bypass whitelist rule in Admin Firewall

1. Copy the wp-admin plugin skip/bypass rule below to this BPS wp-admin Custom Code text box: CUSTOM CODE WPADMIN PLUGIN FIXES: Add ONLY WPADMIN personal plugin fixes code here

NOTE: If you already have a wp-admin S=2 skip rule in use in Custom Code then make this skip rule S=3 and add it above skip rule S=2

# NextGen Gallery Query String wp-admin skip/bypass rule
RewriteCond %{QUERY_STRING} page=nggallery-manage-gallery(.*) [NC]
RewriteRule . - [S=2]

2. Click the Save wp-admin Custom Code button.
3. Go to the BPS Security Modes page and activate wp-admin Folder BulletProof Mode.

• This topic was modified 10 hours, 6 minutes ago by  rafaelmagic.
• This topic was modified 10 hours, 5 minutes ago by  rafaelmagic.
• This topic was modified 10 hours, 4 minutes ago by  rafaelmagic.
• This topic was modified 9 hours, 59 minutes ago by  rafaelmagic.
• This topic was modified 9 hours, 54 minutes ago by  rafaelmagic.
• This topic was modified 9 hours, 53 minutes ago by  rafaelmagic.