New Launch! Advanced Layered Navigation Extension for Magento 2

Continuing our momentum towards the effective releases of Magento 2 extensions, today we are announcing our next launch of Advanced Layered Navigation Extension for Magento 2. This extension helps your customers to easily navigate to their desired products available at your store.

Backed by multiple filters and some handy widgets, this Magento 2 extension directs your customers to find the products they look for. Besides having flexible back end settings, it is also integrated with Ajax loading technology product filtering process of your online store. Not only it will positively affect your customers’ shopping experience at your store, but it will also enhance your store’s search engine ranking.

This expertly coded, easy-to-use and feature-rich extension is packed with a comprehensive list of features that will enhance your store’s product search system. These features include:

             ●  Otimized price sliders and widgets

             ●  Custom filters like Stock filter, Rating filter and more

             ●  Shop by brand option

             ●  Highly configurable product tree

             ●  A facility to create short custom URLs

             ●  Flexible backend settings

             ●  Mobile friendly interface and much more

To know more about our Advanced Layered Navigation Extension for Magento 2, visit our store here at Envision Store. If you have any query regarding this new launch or need any kind of assistance, our Magento Certified Developers are ready to lend a helping hand to you.

Stay tuned for the next big release of Envision Ecommerce’s exclusive Magento 2 extension!

Is your eCommerce store ready for Black Friday and Christmas Sales?

Black Friday and Christmas are the two biggest days of the year. Although both days are known for the extended gratitude of merchants around the globe. Because research report shows that numerous online business brands doing a little more business during these holidays than non-holiday or other holiday months.

Researchers demonstrate that eCommerce holiday sales developed by near 4% in the previous year, and expected to increase 30% more income this year. So, keeping in mind the end goal, we’ve made a snappy “To Do” list for those who are in eCommerce, to enable them to increase their earning potential, and put them on fleek through these Black Friday and Christmas days 2017 as well!

Online Holiday Sales

Step 1 – Take a Glance at Your Site As a Customer

Before the huge shopping day arrives, take a gander at your site not as a business owner, but rather as a customer. Check the following things:

Is your content accessible?

Is it simple to navigate?

Will your site handle each one of those clicks?

And, most importantly, does your site look good on mobile, as well?

As these questions will help you not only focus on optimizing your website, but also make sure that your social media procedure echoes the content you need your clients to see, and generate a feeling of urgency to grab the attention of customers to make them shop more.

Step 2 – Create an Effective Advertising Campaigns

Try not to hold up until the last possible time! Just, begin getting the message out about your up and coming deals on both your social media and traditional media channels as quickly as time permits. Make sure to mention each and everything that is important to your customers like special offers, special products, delivery time and more.

In this regard, you can take a help of successful yet certified digital marketing team from Envision Ecommerce. As they help you:

Keep the site running – day in day out.

Adhere to the marketing strategy as well as goals.

Create a successful email or drip marketing campaign.

Entertain, inform, and inspire your audience by including popular content like phrases and keywords.

Optimize all of your Web pages and products.

Create an evocative visual content layout to keep your user engaged and give your site as well as social media profiles a cohesive look.

request-a-quote-button

Step 3 – Custom-Made Product Pages

 

It’s a holiday month, so don’t hesitate to adorn! Decorate your product pages with some enhanced features, like one step checkout Magento Extension, to help your customers get in a buying mood.

According to a study by Baymard, 27% of US customers leave their shopping basket abandoned due to a “too long / complicated checkout process”. In other words, we can say that 1 out of every 4 online shoppers leave their cart abandoned due to the complexity of multiple page checkout process. (Source: https://baymard.com/lists/cart-abandonment-rate)

Reasons for abandonment

This is where a One Step Checkout Magento extension” simplifies a complex checkout process of your store. It allows your customers to see, fill and update each checkout detail on a single page. It smooths out customers’ buying experience and result in lower cart abandonment rate along with 2x times higher conversion rates.

Add-to-Cart-Button

Step 4 – Be Mobile

 

Having a mobile-friendly site is not only a good solution, but it’s a prerequisite. According to ComScore, “Mobile has exceeded desktop Internet usage.” Nowadays, it has been noticed that people would love to shop more via smart phones rather than a website.

According to Statista, the number of smartphone users across the globe will touch 2.32 billion by the end of year 2017 and reach up to 2.87 billion by the year 2020. And, it can be easily expected that more than 2 billion people will prefer certain types of mobile commerce transactions over the course of this year.

number of smartphone users

So make sure to keep your site mobile friendly or convert it into a mobile app to get closer to your business goals. If you are currently running a Magento store and you need a mobile app that represents your complete store on mobile, you don’t need to build your own mobile app from scratch as you can convert your existing Magento store into a mobile app using MageIonic (a readily built solution for both Android and iOS platforms. To know more about MageIonic, visit: Mageionic- Magento Mobile App

Add-to-Cart-Button

Step 5 – Make a Regular Back-up of your Site

 

Keeping a regular database backup of the site is crucial for all eCommerce owners. As it helps you recover your corrupted or deleted data in just a few clicks that you may lose due to IT infrastructure failure, security breach, hacking, etc. And, it is more likely to happen in the holiday seasons due to the massive footfall in the store or the unwanted hackers.

Store backup works as an insurance or lifeline. If you’re running a Magento store and your entire business depends on this store, then you should be aware that a wrong Magento site backup can corrupt or delete your entire important customer data. Thus, it is wise to rely on certified Magento developers to have a worry-free Magento site backup, especially during the holiday season.

request-a-quote-button

Step 6 – Plan Your Content

Needless to say, Black Friday and Christmas holidays are the perfect time to build a solid relationship with your customers, and fetch a huge traffic towards your online store and increase sales volume. In order to do so, you have to create customer-centric, engaging, emotional, thought provoking and actionable content for your company’s blog, social media updates and website. Writing this type of content is not an easy job for a non-professional writer. If you are a non-professional writer and want a timeless content for your website or blogs, you can hire our inbound certified content writers.

Step 7 – Speed Up Your Website

Let your shoppers experience a hassle-free browsing experience at your store via instant page reloads and speedy checkout systems. Fast performing online store drives better sales and also helps in acquiring high search engine rankings.

Utilizing Magento website optimization services for your eCommerce store is an ideal way to make your store out-perform in every aspect including conversion rates, traffic, speed, and most importantly ROI. Though optimizing and speeding up your existing eCommerce website with a professional configuration can be of tremendous help. In regard of this, you can lend a helping hand from Envision’s Magento certified developers who will support you with Magento site optimization services and render you with the maximum results for your business.

request-a-quote-button

Get Set and Go Ready!

Now you have 7 effective eCommerce holiday marketing tips. Just utilize them to make your store ready for Black Friday and Christmas Sales. In this regard, you can take help from an experienced yet certified web development team of Envision Ecommerce, who will help you generate bespoke business solutions for not only the holidays but also throughout the time to put your brand name in front of your rivals. To know more about our services, feel free to contact us at  [email protected].

Magento Marketplace Approved ‘Quick login as Customer’ & ‘Product Question Answer’ Extensions for Magento 2!

We are thrilled to announce that two of our new extensions for Magento 2, ‘Quick login as Customer’ & ‘Product Question Answer’, were approved by Magento Marketplace. These extensions have successfully passed both technical as well as marketing review, and fulfilled the requirements of Magento team. The ‘Quick login as Customer’ & ‘Product Question Answer’ extensions are now listed in Magento marketplace, and easily recognizable by Magento 2 users.

The main highlights of our approved ‘Quick login as Customer’ & ‘Product Question Answer’ Magento 2 extensions are:

Quick login as Customer Magento 2 extension enables store owners to directly enter into any of their customer’s account without even asking them for grant login access. However, it facilitates admin to examine issues within the “My Account” area only. Plus, the store owner can also log into a customer’s account, enable or disable this particular extension with just a single click.

To know more in detail about Quick login as Customer & its features! Click here

On the other side, Product Question Answer Magento 2 extension enables customers to ask their product related queries on the product page itself. Plus, allows store owners to receive email alerts for just asked or unanswered questions, and answer them via admin panel to convert those questioners into buyers.

To know more in detail about Product Question Answer & its features! Click here

Stay tuned to our social media channels and blog posts for more updates on Magento 2 extensions!

How to Create Bundle Products In Magento 2?

There are several product options offered by Magento 2, and ‘Bundle Product’ is one of them. However, each product in the ‘Bundle Product’ option can be comprised of the following product types i.e. Simple Product & Virtual Product. But, most of the individuals have a few disarrays amongst Grouped products and Bundle products in Magento 2.

So before we get into ‘How to create Bundle Products in Magento 2?”, let’s first talk about the distinction between Magento 2 Grouped products and Bundle products.

Grouped products in Magento 2 offers a collection of products on one product page with a fixed price that users cannot customize it. While in Magento 2 Bundled Products, the product price is both; fixed as well as dynamic, and the user can customize the group by choosing the items from the given alternatives.

Now scroll down to learn, “How to create Bundled Products in Magneto 2?

Step 1: Open-up your store’s Admin panel and move to Products → Catalog

Products Catalog

Step 2: Tap on the Bundle Product via Add Product dropdown.

Bundle Product

Step 3: Fill out the details. Plus, facilitates you to set SKU, Price, Weight, and even dynamic price as per your requirement in the bundle product.

Note: We’ve mentioned the Product Name as Combo (Bag + Watch).

3

Step 4: Go to the “Bundle Items” section, and set “Ship Bundle Items” field whether together or separately.

4

Step 5: Then, tap on Add Option.

9

Step 6: In Option Title field, enter Bag and in Input Type field, select Radio Buttons from the dropdown, and then tap on Add Products to Option.

5

Step 7: Choose the products (Bag 1 and Bag 4) and then click on Add Selected Products field to add the particular product into it.

6

Step8: Similarly, you can add another product (Watch) to this option.

After adding all the products to the particular option, click on the Save button, given at the top of the page!

Step 9: Once you have done with all the above-mentioned steps, Go to the Bundle Product page and you’ll see the outcome, like the following screenshot.

7

Step 10: For customization, just tap on the Customize and Add to Cart field and your screen will appear the following options.

8

These are the steps that you carefully need to follow while creating Bundled Products in Magneto 2!

Though, if you face any difficulty or require more clarity regarding this “How to” or would like to add your own suggestions to this solution, just leave a comment below, or you can query at [email protected]. We have a Certified Magento Development team at Envision Ecommerce, who will provide a positive solution to all your Magento related queries with positive ROI!

Rebecca Brocton in Conversation with Envision Ecommerce

This week we caught up with another Magento extrovert, Rebecca Brocton. As someone who has been in the Magento world for over five years, Rebecca is known for her unconditional love for Magento. With a Magento certified solution specialist certificate under her belt, she works as a Partner Manager at Ingenico ePayments. She is one of the most devoted, youngest and passionate members of Magento community.

Magento certified solution specialist, partner manager, blogger, music lover and more, we wanted to know this lovely lady better and try to present her love for Magento.

So, without any further ado, please welcome Rebecca Brocton!

Envision Ecommerce: Rebecca, let’s start with your career journey. How did you enter the Magento world? How you came to the role of Channel Manager at Ingenico ePayments, the biggest challenges you faced throughout, and how you tackled them?

Rebecca Brocton: I was introduced to the world of Magento through a role as a junior web developer back in 2012, it feels like it’s been a long and random journey since then.

Becoming Channel Manager was all thanks to Magento Live UK 2016 and a pair of Beats. Ingenico ePayments were sponsoring the event and had a competition to win the headphones which I entered and won! I connected with the Channel Manager there at the time and a few months later he reached out about them looking for a new hire to work with him. The rest, as they say, is history.

The biggest challenges I’ve faced have always been either with bugs or with the client (usually because of the bugs!). Patience, honesty and good ol’ fashioned elbow grease is how I get through all the challenges I face, both professionally and personally.

Envision Ecommerce: Being a Channel Manager at Ingenico ePayments, what are your job responsibilities?

Rebecca Brocton: I prefer to use the term Partner Manager, as Channel Manager can seem a bit aloof and obscure. As Partner Manager, It’s my job to help current and potential partners across the UK provide the best payment solution to their clients and to advise on Ingenico products, services and values.

I am passionate about being more than a third party and instead being a new member of their team that is just as invested in their success as they are. I’m here give them access to the high-quality products and fast-track support that they need to help their businesses grow and together, we can offer merchants the ePayments that will help them sell more, sell globally, and protect their business.

Envision Ecommerce: Is there something you’d like to do differently if you were to start again with your career journey?

Rebecca Brocton: I wouldn’t change a thing now, but if I were to go down a different route it would have been one of film & video editing. When I was at college I studied film and television production and absolutely loved it! If I could pick another job I would go for music video editing or perhaps film scoring, music is another passion of mine and combined with video can have incredible effects on the viewer. Watch something without music and you may think it’s sad, add music and you will be balling your eyes out!

So yes, I could spend hours and hours in editing software, which is one of the reasons I started my YouTube channel, so I could exercise that creative muscle whilst still making it relevant to my work.

Envision Ecommerce: Being a Magento Certified Solution Specialist, what are the benefits of having such certification in your career? It would be helpful for students and young developers who want to pursue a career in Magento?

Rebecca Brocton: I would definitely recommend getting this certification, if for nothing else but to prove to yourself and others that you know what you are talking about when it comes to Magento, eCommerce and helping merchants.

Envision Ecommerce: How do you envision the future of Magento 2? What really excites you about Magento 2?

Rebecca Brocton: Magento has a huge footprint in the world of eCommerce platforms and Magento 2 has the potential to follow in those steps and create an even bigger dent. What excites me about Magento 2 are the endless possibilities, especially with the new technologies and legislations that are coming out like AI, Virtual and Augmented Reality, Conversational Commerce, PSD2, GDPR etc. that will really push companies to reach their full potentials when developing new products and services.

Envision Ecommerce: When you get stuck in your Magento project, do you Google first or prefer community? Our blog readers are eagerly waiting to know about the Magento learning resources you usually follow. Please share a book, a website or some other helpful resources with our audience?

Rebecca Brocton: Whatever the issue is my first reaction is to Google is and see which resource appears first, often its either the Magento Community Forums, StackExchange, Magento Docs or a post from one of the many awesome community members. If all else fails, I turn to my Magento partners in crime, Andrew Pemberton and Tom Williams.

Envision Ecommerce: Rebecca, as a tradition of our interview process, could you please share an image of your workstation or the best moment that you have captured in any events?

Rebecca Brocton: Here is my current workstation, aboard a Virgin Pendolino crossing some lovely countryside on the way to London town! The Ingenico ePayments offices are based in Paddington and so I am down there a few times a week which I really enjoy. I love the city!

rebecca-workstation

Envision Ecommerce: As per your experience with Magento, what are the pros and cons of using Magento in development? How do you compare Magento with other popular eCommerce platforms?

Rebecca Brocton: At the minute Magento 2 is going through what Magento 1 did before 1.7(ish). Slightly unpredictable with heavy changes with each release. These changes are great and wouldn’t be there if they weren’t trying to make the platform better and stronger, but they do cause headaches for developers and users alike. I can’t really comment on its comparison with others as I have been a bit sheltered from them in my experiences so far. However, just looking at the market, even in its infancy Magento 2 outshines the others.

Envision Ecommerce: We got to know that you received “Swag Bag Haul” from Magento Live UK 2017. Please share your experience. How many such Magento-centric events have you attended till now? What are the benefits of attending such events?

Rebecca Brocton: That is a good question! I’ve not actually counted how many but this year I have been to more than ever before thanks to opportunities from Ingenico, which is AWESOME. I love connecting with the community face to face, you can build so much stronger bonds than over social media and it really helps solidify the passionate and friendly spirit behind the platform. It also helps you see that those Magento all stars are human, lovely and want to give and get support just as much as you.

Envision Ecommerce: Let’s get aside from work life and move to your personal interests. How you spend your time besides work? Tell our blog readers about your interests and hobbies.

Rebecca Brocton: THERE IS TIME BESIDES WORK TIME?! Haha. I spend my time with my beautiful wife, shooting arrows at targets and missing, travelling, listening to music, reading (or being read to thanks to Blinkist), and having as much fun as possible! I have also just taken to DIY, my most recent project being cutting down a banister in order to get a king size headboard upstairs.

Envision Ecommerce: Name some people who are the real cornerstones of your life and inspired you in your life?

Rebecca Brocton: My wife, family and friends that I have met through all walks of life, professionally and personally. Everyone in the Magento community have such good work ethic and passion that you cannot help but be inspired by them and there are too many to list! I’ve turned to Guido Jansen, Andra Lungu and, of course, our wonderful Community Manager Sherrie Rohde so many times for advice. I know I could go to anyone in our #Magento space and they would be happy and willing to help, just as I am there to help anyone else.

Envision Ecommerce: Who would you recommend being interviewed next on Envision Ecommerce? Could you please recommend some names of your colleagues, friends, or people who have a core love for Magento like you?

Rebecca Brocton: I like to hear from Magento employees about where they see the platform and their career going from the inside. Perhaps their latest hire, David Manners? He’s a great guy and has lots of interesting opinions and experiences!

Envision Ecommerce: As a closing remark, can you please share your future plan or lifetime goals (personal or business) with our audience?

Rebecca Brocton: My future plan is the same thing I do every night, Envision… TRY AND TAKE OVER THE WORLD.

cartoon

Envision Ecommerce team would like to thank you for this interview and wish you good luck in your career. As for the rest, we will keep coming up with other inspiring interviews from more experienced industry leaders and well-reputed thought leaders. So stay tuned..!

Magento USPS First Class Mail Parcel Service Name Change

USPS’ First Class shipping service is commonly used by Magento merchants throughout the globe for shipping lightweight packages. This service was named as “First-Class Mail Parcel” by USPS. But recently they modified this naming convention from “First-Class Mail Parcel” to “First-Class Package Service – Retail.”

After this change in USPS service name, Magento 1.x and 2.x merchants are no longer able to see the first class shipping options on their checkout shipping methods’ area. Here Magento 1.x merchants include the users who are using any version of Magento Commerce 1.x and Magento Open source 1.x and Magento 2.x eCommerce merchants cover the users using Magento Open Source and Magento Commerce prior to Magento 2.1.9 or 2.0.16.

To avert these issues, Magento is offering different solutions for both Magento 1.x and 2.x eCommerce merchants:

Solutions for Magento 1.x eCommerce Merchants:

1.Temporary Workaround:

Magento 1.x users need to edit the Usps.php file to change this service name. This editing can be done by following this workaround:

a. Follow this path and navigate to Usps.php file:

app/code/core/Mage/Usa/Model/Shipping/Carrier/Usps.php

b. Find out the string “First-Class Mail Parcel” and its all occurrences throughout the file.

c. Modify all the occurrences of this string with “First-Class Package Service – Retail.”

d. Make sure to save these changes to Usps.php.

e. Now clear the Magento Cache.

2. SUPEE-10336 Patch

If you don’t want to implement this temporary workout, you can install a SUPEE-10336 patch for this issue. This patch is recently released by Magento in account for the same fix. To download this patch, navigate to MyAccount area and you can access this patch on the Magento Open Source Download Page. In a case, if you have already implemented above workaround, but want to install this SUPEE-10336 patch, please delete this workaround first before installing this patch.

Solutions for Magento 2.x eCommerce Merchants:

1. Temporary Workaround:

Magento 2.x users must edit the Carrier.php file to change this service name. This editing can be done by following this workaround:

a. Follow this path and navigate to Carrier.php file:

vendor/magento/module-usps/Model/Carrier.php

b. Find out the string “First-Class Mail Parcel” and its all occurrences throughout the file.

c. Modify all the occurrences of this string with “First-Class Package Service – Retail.”

d. Make sure to save these changes to Carrier.php.

e. Now clear the Magento Cache.

2. Magento 2.1.9 and 2.0.16 Releases

In addition to this temporary workaround, Magento 2.x merchants can upgrade to or install Magento 2.1.9 and 2.0.16 releases (just released yesterday by Magento – https://magento.com/security/patches/magento-2016-and-219-security-update). However, if you have already implemented this workaround, you should delete it first before applying these releases.

Our Verdict

These solutions will help Magento eCommerce merchants to bring back their USPS First Class options during the checkout process. If you also belong to such merchants and facing difficulty in implementing these solutions (workarounds, SUPEE-10266 patch or Magento 2.1.9 & 2.0.16) on your Magento store, contact us today. Our Certified Magento developers will implement these solutions in no time!

SUPEE-10266 Patch – A New Magento Security Advisory

Magento has just released a new security patch, i.e. SUPEE-10266 on its official website. This newest security patch addresses some critical security vulnerabilities affecting Magento Commerce prior to 1.14.3.6 and Open Source prior to 1.9.3.6. These vulnerabilities cover unauthorized data leak, cross-site request forgery (CSRF), authenticated Admin user remote code execution and many others.

We highly recommend all Magento store owners to upgrade to the latest Magento versions (Magento Commerce 1.14.3.6 and Magento Open Source 1.9.3.6) to address these vulnerabilities. Those who do not want to upgrade to these versions of Magento must apply the SUPEE-10266 patch to fix these same vulnerabilities. This release also provides fixes for issues regarding image reloading and payments via one-step checkout.

We at Envision Ecommerce have always been keen about the security updates and consider it as utmost required for your store. In a case, you find it a nightmare for you to apply to your Magento 1 store, we are here to make you apply the new SUPEE-10266 patch as soon as possible. We have already installed several security patches for over 200+ stores, and successfully done such security upgrades for many Magento sites earlier. Go ahead and let our Magento certified developers to maintain your store security with zero downtime.

For more details about the SUPEE-10266 patch, you can visit Magento’s official website. (https://magento.com/security/patches/supee-10266)

Interview with Magento Security & Mountaineering Expert Talesh Seeparsan

We’re back again with an interview from another Magento expert, Talesh Seeparsan. He is a Magento expert along with a knack for mountaineering. Since 2008 he has been working with Magento along with a keen interest in web security. He’s the founder of Bit79 (one of the first Canadian Magento eCommerce consulting firms), based in Toronto, Canada Area.

In his interview with Envision Ecommerce, he talks about his career journey, experience in the Magento world, Magento security, Magento 2 security, blogging secret, personal life and mountaineering experience. Let’s find out more about Talesh Seeparsan:

Envision Ecommerce: Just to start off we would love to know about your background and career journey that brought you to your current position of Bit 79’s Founder? What challenges did you tackle during your early days?

Talesh Seeparsan: I have been working with Magento for a long time and started my company shortly after working on my first Magento project. As you can imagine my big challenge back then was just working with Magento as there was zero to no information. Back then you had to learn by experimenting and breaking things. Granted if you overcame this challenge and became comfortable with the platform itself things got much easier.

Envision Ecommerce: Being a security guy and a consultant for so many years, focusing specifically on Magento, what effective tools and techniques would you recommend to eCommerce websites and merchants to defend their Magento sites?

Talesh Seeparsan: Ironically “tools” is the last thing you need to think about when you are stepping up the security of your website. You need to focus on two much more important (and possibly more difficult) things first before you even consider what tools to use. You need to focus on equipping your people with the knowledge to defend the sites and engendering a culture of security. After that, the next logical step is putting in (documented) practices in place to ensure that security is an ongoing concern and constantly revisited. Then only after that the tools that best fit your organization will come naturally.

Envision Ecommerce: What other important security tips do you recommend?

Talesh Seeparsan: Since you asked for tools and I didn’t give any specific examples in the last question. I would suggest at least starting with Magereport.com and the Magento Malware scanner which can be found on Magesec.org. Those are great starting points, however if you don’t have the people who understand how to use them or the importance of using them and especially the diligence for keeping up to date on them, then having access to these awesome free tools doesn’t help you.

Envision Ecommerce: Talesh, as a speaker, you have attended so many Magento Meetups, conferences and events, like Meet Magento Hrvatska 2017, Developer Paradise, MM15ES, etc. Please share your experience and what benefits do you get from such events? What has been your best event memory till now?

Talesh Seeparsan: My goal really is to step up the security maturity of the Magento world. I do a lot of tweeting but only a tiny percentage of the Magento world is on twitter, so reaching out to local communities working with Magento at these events has been key. It is hard to pick a best event memory, but I think my most cherished would be the first Magento Imagine in 2011 when I met Alan Storm and Ashley Schroder, and sat till wee hours of the night talking software and ethics with those two and realizing that Magento people was my people.

Envision Ecommerce: We know about your “MageDef – Building Defensible eCommerce”. What would you love to say about it?

Talesh Seeparsan: Magedef was originally started in 2015 because I realized in the Magento world there is this flurry of events in the latter half of the year, however in the beginning of the year there are few events leading up to Magento Imagine and I wanted to get information out to people on a more regular basis. So why not do a podcast? Unfortunately running a podcast is easy when you live in one place but shortly afterwards I started travelling which made it difficult to continue. Now that I am back in Canada, maybe it’s time to start it up again to bridge the gulf between the end of the year and Magento Imagine.

Envision Ecommerce: How do you see Magento 2 in terms of security compared to Magento 1?

Talesh Seeparsan: More care has been put into some areas of Magento 2 in providing the developer with better, or easier tools for extending the platform in a secure manner. However I think the most exciting part of the Magento 2 security maturity is that with the community engineering team in place and pull requests coming in from around the world we have even more people looking at the Magento 2 codebase critically.

Envision Ecommerce: As a part of our interview process, we request you to share a picture of your workstation or the best moment that you have captured in any events. Please share.

Talesh Seeparsan: Most of my favourite event photos are of people who we’ll need to start getting permissions before posting here. So instead I’ll share a photo of my old Linux workstation I ran my business from before leaving Canada to travel the world.

Talesh Seeparsan Workstation

Envision Ecommerce: Talesh, we know you have been blogging. So when did you start blogging? As you said, “Writing English isn’t my strong point” – in your recent blog post, so can you please share with our readers some of the secrets behind your blogging logic?

Talesh Seeparsan: My secret when it comes to blogging is to make friends with authors and ask their advice. Lately I’ve been reading a book called “Writing Tools” by Roy Peter Clark which was referred to me an author I know. It has helped a bit. Second secret is to get a keyboard you enjoy typing on. 😀

Envision Ecommerce: What would you say if you are asked to give a piece of guidance to those users who think their Magento site has been compromised?

Talesh Seeparsan: 1. Don’t panic.

2. Make non-destructive backups of everything right away.

3. Go to https://github.com/talesh/response for a response plan template to help guide you through the next steps. Ideally you would want to fill out the incident response plan for your own organization before getting compromised and then practicing it with your team (and modifying it accordingly) before you even get compromised. But that document provides some insight on next steps.

Envision Ecommerce: Could you please share your most memorable moments in your professional life till date?

Talesh Seeparsan: In my professional life I work as a consulting architect for companies that have big complex projects and need to get a handle on it and determine how Magento can be best modified to fit their needs. In that role I also end up training developers who have this thing called Magento shoved upon them, and always my most memorable moments are 3-4 months into a project when I need to tell developers who used to hate Magento that I trust their judgement now, there is no need to run their proposed solution by me. In short order they’re coming up with solutions that are even better than mine and it’s time for me to start looking for a new job because my work there is done.

Envision Ecommerce: As we all have some inspiring people in our lives, so who are the five most important individuals inspired you all through your career journey?

Talesh Seeparsan: I’ll choose from the Magento world so others can relate:

1. Vinai Kopp is simply one of the smartest, kindest and most helpful people I have ever met in my life. The vastness of complex information I have learned from him over the years is humbling.

2. Alan Storm is a sheer force of nature. There isn’t much else I can say.

3. I personally am awed by the critical deep thought Kristof Ringleff brings to any topic. I find myself noting down things in my phone after listening to him speak. His train of thought is sometimes more important than the actual content.

4. Andra Lungu really shows that you can be a kickass developer and still be an incredibly empathic person which I think is incredibly important that our community has grown so big. I’m really good at being a developer thing, but easily go into a caveman developer mode sometimes.

5. Interestingly the last person is Andra’s boss: Alessandro Ronchi. Again a very deep thinker and I am inspired every single time I have a conversation with him. You can tell he has looked at many ideas and concepts of running a business and without judgement or favouritism, distilled the best ones down into a science.

Envision Ecommerce: Besides your passion for raising the bar on security in the Magento community, how you spend your time besides work? Are you a family guy? 🙂

Talesh Seeparsan: There is a smiley face on this question because you know the answer to this one. 🙂 I fill my non-Magento, non-security time with hiking nature, photographing landscapes, climbing mountains and doing all sorts of crazy adventure things. So I’m not raising a family right now…. although if I were, I’d probably take them on crazy adventures anyway.

Envision Ecommerce: We know about your love for the Mountains. Please share your best mountaineering experience till date?

Talesh Seeparsan: There is this challenge in this little Canadian town of Canmore called the Canmore Triple Crown. Simply: you have to climb three mountains during the summer and you’ve achieved the Canmore Triple Crown. Last summer, I met a bunch of friends and we decided to climb all three in one day—and we did it. We even stopped in town for a lavish sit down breakfast in the middle yet still had enough time to make it to the final peak right at sunset. Getting to that summit is a memory I will never forget, however the suffering it took to achieve it, I’ve already forgotten.

How to Improve the Security of Magento 2 Store?

Magento 2 – the most prominent open-source ecommerce platform, is widely utilized by the global merchants. That’s why, today we have created this post to give some incredible tips to Magento 2 merchants, so that they can utilize to enhance the security of their Magento 2 store. As, ‘Security’ is the only thing that plays a significant role in the success of an e-commerce store.

If you’re running a Magento 2 based ecommerce store, then it is necessary for you to scroll down to know – “How you can actually secure your site as well as clients’ information?”

Set a Strong Password and Admin Name

It is highly recommended to Magento store owners to utilize only a complex admin name as well as password to forestall unauthorized access. You can simply utilize a combination of numbers, symbols, uppercase, and lowercase to generate a strong secret key or utilize a default name to try or login to your account. As, this technique will guarantee to make difficult for hackers to know your site’s sensitive detail.

Admin Name and Strong Password Magento 2

Regularly, Update Your Magento 2 Store With the Latest Version

To avoid any kind of security blunders, ensure that you’ve frequently update your Magento 2 store with its most recent adaptation. Because, each version of Magento enhances the security via patches and slaughtering known vulnerabilities, which makes difficult for hacker to attack your Magento 2 store easily.

Update Magento 2 Store Version

Utilize a Custom Admin URL

Rather than utilizing the default admin URL, it is exceedingly prescribed to change your Magento 2 admin URL to an innovative one. As, it is another great practice to secure your Magento 2 store.

Custom Admin URL

Make a Backup

In an advanced technological world where even hackers are more agile – essential to have a complete backup of your Magento 2 store, including file and database, so that you can easily restore your Magento 2 and keep it in good working conditions.

You can create backup of your store on the server, using magento website backup service.

Backup of Magento 2

Enabling Captcha

Enable this wonderful Magento 2 ‘Admin Login Captcha’ feature to keep hackers as well as bots away from your Magento 2 stores. If you think – How…? Then just follow the following steps:

– Through Admin Panel of your Magento 2 stores; Go to ‘Stores → Configuration’

– And, afterward under the ‘Advanced’ tab, click on ‘Admin’, so that you can unfold the section named ‘CAPTCHA’, where you’ll get the option to select ‘Yes’ via ‘Enable CAPTCHA’ in the drop-down menu of ‘Admin.’

– After that, you need to choose ‘Admin Forget Password’ from the ‘Form’ options, so that you can set the rest of the values as per your requirement.

– At last, save the settings by clicking on the ‘Save Config.’

Enable Captcha Magento 2

Protect Your Account via 2 Step Verification

When Login to the Admin Panel, additional or two-step verification is highly required to protect your account. As, this process, will allow you or admin to verify and access the admin panel with a security code that you or admin will receive at his/her email id or mobile phone, after signing in to the account. However, this act works as an extra security layer which makes troublesome for assailants.

Limit Store Admin Access to Your IP Address

If you want that no one can access your Admin panel, then simply restrict your store admin access by IP Address. However, this IP address will leave a considerable measure of programmers into hacker’s mind when they attempt to get to your Magento 2 store.

Secure Socket Layer Certificate

SSL (Secure Socket Layer) secures a site by setting up a scrambled connection between a web server and the browser. It is highly important for all sites, especially who deals in online payment transactions. As, SSL will keep the ‘Data’ private that goes between this link. So, add Secure Socket Layer certificate to your Magneto 2 stores to improve its security and protect the sensitive detail of your users like login credentials, credit card information, and other data.

Utilize Dependable Sources for Extensions

Extensions are the most crucial things for any Magento 2 stores. So, make sure the extension you are installing, has been created by a dependable or certified Magento developer, and has a great track record. You can get authorized yet reliable Magento 2 extensions for all your business needs at most competitive prices from the India’s leading Magento Based Company – EnvisionEcommerce.

Configuration of Action Log

Configuring ‘Action Log’ is one of the best feature, if you use Magento 2 Enterprise Edition. As, this element will encourage you to track the activity of administrator and see the entire log history as well. Plus, it also facilitates you to check the source (along with IP) of all the activities in your administration panel. If you use Magento 2 community edition, then you need to install 3rd party extension for the specific feature.

That’s it! Now utilize the above-mentioned tips to secure your Magento 2 stores and increase your ROI with no stresses of security slips.

You can take professional help in this regard. Contact us at Envision Ecommerce for all your Magento e-commerce needs. Yes, we at Envision Ecommerce have a highly qualified and certified team of Magento experts, who will keep the security of your Magento 2 store at the top of their list and help you achieve all your designated business goal. Contact us for more information.

Use Facebook Sign-In with Ionic and Firebase

10 million of people use Facebook Login everyday to sign-in to applications across the entire web – as per Facebook. By integrating a fully working Facebook sign-in process with your app, your users will have a safe, authentic and consistent experience. They even don’t need to go through such monotonous credentials re-entering process to sign-in to your application. Having this easy and reliable Facebook Login functionality generates a win-win situation for both users as well as developers. That’s why you should include Facebook Login functionality in your application. As this “Why” is clear to you, so let’s proceed to “How” to use Facebook sign-in with Ionic and Firebase to make the development process even easier.

First-off, let’s have a look on the brief of this “How to” process:

1. Sign-in and navigate to your Facebook developer account. Now, create a new app and supply the credentials.

2. Enter into your Firebase console and authorize Facebook authentication for app with the credentials from the aforementioned step.

3. Writing the code to get user authorization from the Facebook and then authentication of that user into Firebase app.

After this brief, let’s start with an in-depth explanation of each step:

1. Facebook Developer Account

Firstly, you have to create a new application via Facebook developer account. So navigate to https://developers.facebook.com/apps. Register yourself as a developer (if not registered yet) and create a new application.

Create New App

 

A short form will pop out as you click on “Create App Id” button. Add a “Display Name” for your app and a contact email address that will be public to your users.

 

Create a New App ID

 

Once after completing “Create App Id” process, you will land to the app’s dashboard. Here you can notice the “APP ID” at the top of the page, adjacent to “View Analytics” option. Note it down as you will require it during Facebook plugin installation.

 

App ID

 

Cordova Plugin Installation

Once you have done with your new app creation on Facebook, it is the time to proceed with the Cordova plugin installation in your Ionic app to make the app calling the Facebook Sign-in widget. So, start off with the opening of your terminal and write the following (everything in the same line):

$ ionic plugin add cordova-plugin-facebook4 --variable APP_ID="168934381" --variable APP_NAME="ABCApplication"

Now replace the values of APP_ID & APP_NAME with your actual credentials. Both of these values can be found under your Facebook Developer Dashboard. Dealing with Cordova plugin is quite difficult. Big thanks to the Ionic team who gave birth to Ionic Native (a TypeScript wrapper for the Cordova plugins) that can be used in a more Ionic way for adding any native functionality in the app as per your needs.

It is the time to install Facebook package from Ionic Native. For that, you need to again open your terminal and write the following:

$ npm install --save @ionic-native/facebook

Once after completing the installation process, now let your app to utilize it. You can do this via importing it in your app.module.ts file.

import { SplashScreen } from '@ionic-native/splash-screen';
import { StatusBar } from '@ionic-native/status-bar'
import { Facebook } from '@ionic-native/facebook'

@NgModule({
...,
providers: [ SplashScreen, StatusBar, Facebook ]
})
export class AppModule {}

Add Platform to Facebook

All is set up under development environment. Right? Now lets Facebook know which platforms would you prefer. For example, you’re considering two platforms, iOS and Android. To add both these platforms, navigate to your Facebook dashboard and tap the settings option. There you will notice a button “Add Platform” just right under the app’s information. Click on this button.

Add Platform to Facebook

 

After clicking on this button, you can notice several options for the platforms you’re adding. Let’s first begin with iOS platform. Here you will have to fill the value for “Bundle ID” option.

 

iOs

 

In case you don’t know the Bundle ID, check your default package name while creating an Ionic App (under your config.xml file). You can use this same name for your Bundle ID.

widget id="co.ionic.facebook346" version="0.0.1" xmlns="http://www.w3.org/ns/widgets" xmlns:cdv="http://cordova.apache.org/ns/1.0">

We recommend you to replace “co.ionic.facebook346″ (or what you see there) with something which is much more “On Brand” in tune with your app or business. After adding Bundle ID, carry on with the app creation process and follow the same process for the Android platform. This process differentiates itself in the only way of calling it “Google Play Package Name” in place of “Bundle ID”.

 

Android

 

2. Facebook Authentication Under Firebase Console

As all has been set up under Facebook developer console, you need to navigate to Firebase control for Facebook authentication for your app.

To authorize Facebook sign-in, navigate to your Firebase Console and find the app you’re making use of. Under the app’s dashboard, follow this path:

Authentication > Sign-In Method > Facebook, and click on “Enable” toggle option.

Facebook Sign-In in Firebase

 

Once you’ve clicked it, you will see some field boxes asking for some information, like your Facebook App ID and App secret key. If you don’t know the value for these field boxes, you can find both these under your Facebook console, inside the settings of your app.

3. Users Authentication

You can authenticate your users in whatever step of your app’s process you want. Here is the code that you can utilize by just copying into whichever page you’re using. The foremost thing is to avail the authorization from Facebook. For that, you have to import Facebook plugin from Ionic Native and request your users to sign in.

import { Facebook } from '@ionic-native/facebook'

constructor(public facebook: Facebook){}

facebookLogin(): Promise<any> {
return this.facebook.login(['email']);
}

That function is totally responsible for opening the Facebook native widget and requests the users for app authorization to utilize their data for sign-in objectives.

Now is the time to deal with function response. It will outcome a Facebook access token that should be passed to Firebase.

import firebase from 'firebase';
import { Facebook } from '@ionic-native/facebook'

constructor(public facebook: Facebook){}

facebookLogin(): Promise<any> {
return this.facebook.login(['email'])
.then( response => {
const facebookCredential = firebase.auth.FacebookAuthProvider
.credential(response.authResponse.accessToken);

firebase.auth().signInWithCredential(facebookCredential)
.then( success => {
console.log("Firebase success: " + JSON.stringify(success));
});

}).catch((error) => { console.log(error) });
} 

To easily understand the development process, let’s break down this aforeshared code:

const facebookCredential = firebase.auth.FacebookAuthProvider
.credential(response.authResponse.accessToken);

This coding line is used to create a credential object that can be passed to Firebase. After creating such credential object, pass this to Firebase:

facebookLogin(): Promise<any> {
return this.facebook.login(['email'])
.then( response => {
const facebookCredential = firebase.auth.FacebookAuthProvider
.credential(response.authResponse.accessToken);

firebase.auth().signInWithCredential(facebookCredential)
.then( success => {
console.log("Firebase success: " + JSON.stringify(success));
});

}).catch((error) => { console.log(error) });
}

This coding line “firebase.auth().signInWithCredential(facebookCredential)” ensures about your user’s account creation under your Firebase app. Plus, it also authenticates the user under the Ionic app and stores some data related to authentication inside local storage. This authentication details may include tokens, provider information, tokens and other information.

We at Envision Ecommerce have developed Facebook login ionic app:

https://github.com/envisionecommerce/FBAppDemo

Regardless of this, our highly qualified app development team is there for you. Envision Ecommerce, best mobile app development company, provides the utmost support to customers in developing their Ionic based hybrid business apps at affordable prices. Feel free to contact us at [email protected] or visit: https://www.envisionecommerce.com/blog/store/