{"id":1185,"date":"2015-11-09T13:17:11","date_gmt":"2015-11-09T11:17:11","guid":{"rendered":"http:\/\/www.h-hennes.fr\/blog\/?p=1185"},"modified":"2015-11-09T13:17:11","modified_gmt":"2015-11-09T11:17:11","slug":"magento-application-du-patch-supee-6788","status":"publish","type":"post","link":"https:\/\/www.h-hennes.fr\/blog\/2015\/11\/09\/magento-application-du-patch-supee-6788\/","title":{"rendered":"Magento : Application du patch SUPEE-6788"},"content":{"rendered":"<p>Le dernier patch de s\u00e9curit\u00e9 releas\u00e9 par Magento le 27 octobre dernier \u00e0 apport\u00e9 de nombreuses corrections.<br \/>\nMais il entraine \u00e9galement des effets de bords relativement nombreux sur les modules tiers.<\/p>\n<p>J&rsquo;ai trouv\u00e9 sur github un outil tr\u00e8s pratique qui m&rsquo;a permis de r\u00e9aliser l&rsquo;application de ce patch plus facilement :<\/p>\n<p>Magento\u00ae SUPEE-6788 Developer Toolbox :\u00a0 <a href=\"https:\/\/github.com\/rhoerr\/supee-6788-toolbox\">https:\/\/github.com\/rhoerr\/supee-6788-toolbox<\/a><\/p>\n<p>Les scripts doivent \u00eatre ex\u00e9cut\u00e9s dans le dossier shell\/<br \/>\nPour commencer il faut analyser les probl\u00e8mes rencontr\u00e9s via la commande :<\/p>\n<pre lang=\"bash\">php -f fixSUPEE6788.php -- analyze<\/pre>\n<p>Les r\u00e9sultats de l\u2019analyse sont disponibles dans le fichier var\/log\/fixSUPEE6788.log<\/p>\n<p>Plusieurs types de probl\u00e8mes sont relev\u00e9s :<\/p>\n<ul>\n<li>Ancienne configuration du router adminhtml des modules<\/li>\n<li>D\u00e9placement des controllers admin pour \u00e9viter les confit ( avec changement du nom des classes )<\/li>\n<li>Blocks qui ne sont pas dans la withelist.<\/li>\n<li>Variables qui ne sont pas dans la withelist<\/li>\n<li>Modules \/ fichiers \/ impact\u00e9s ou qui posent probl\u00e8mes.<\/li>\n<\/ul>\n<p>Si vous souhaitez appliquer directement les correctifs list\u00e9 dans le fichier de log, vous pouvez lancer la commande suivante :<\/p>\n<pre lang=\"bash\">php -f fixSUPEE6788.php -- fix<\/pre>\n<p>Personnellement je ne l&rsquo;ai pas fait, car cela impactait des modules Tiers dont j&rsquo;attends la mise \u00e0 jour officielle.<br \/>\nJ&rsquo;ai donc appliqu\u00e9 manuellement les correctifs sur les modules locaux.<\/p>\n<p>En revanche vous pouvez ex\u00e9cuter sans risque la commande suivante pour corriger la withelist des blocks et des variables emails<\/p>\n<pre lang=\"bash\">php -f fixSUPEE6788.php -- fixWhitelists<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>Le dernier patch de s\u00e9curit\u00e9 releas\u00e9 par Magento le 27 octobre dernier \u00e0 apport\u00e9 de nombreuses corrections. Mais il entraine \u00e9galement des effets de bords relativement nombreux sur les modules tiers. J&rsquo;ai trouv\u00e9 sur github un outil tr\u00e8s pratique qui m&rsquo;a permis de r\u00e9aliser l&rsquo;application de ce patch plus facilement : Magento\u00ae SUPEE-6788 Developer Toolbox [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[246],"tags":[150,398,399],"class_list":["post-1185","post","type-post","status-publish","format-standard","hentry","category-magento-2","tag-magento","tag-patch","tag-supee-6788"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/1185","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/comments?post=1185"}],"version-history":[{"count":1,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/1185\/revisions"}],"predecessor-version":[{"id":1186,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/1185\/revisions\/1186"}],"wp:attachment":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/media?parent=1185"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/categories?post=1185"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/tags?post=1185"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}