699 comments found.
Hello Team
I would like to inform you that the customer fills out the form from our website and the fields are encrypted by using Gravity Form Encryption, but due to some issues website didn’t send any notification email to us. In this way, we miss the email notification, if that email comes then we can see the actual data filled by the customer because for email body we used {gfef_decrypt_ALL+}
Now, how can we see the encrypted fields data of that customer. Please let me know asap
Thank you!
Hello
Could you please further clarify what “some issues” are so that we can help resolve the problem?
Could you describe what settings you are using to send the notification email?
-
Are you sending the email to an email address that is encrypted.. either single or as part of a group of emails?
If you are encrypting the email address field for the users email and then using a field selection or merge tag for that field in the “send to” address, you need to use a decrypted merge tag for that email field. This is covered in initial setup instructions and further detailed in the decrypted merge tag setting instructions. There is also a video tutorial section on using a decrypted merge tag for the “send to” email field if you are going through the video instructions.
Assuming you have the decrypted tags already set up, just use the decrypted tag for the users email instead of the standard tag, because the standard tag will fill in “ENCRYPTED FIELD RESTRICTED” or whatever you have set for the restricted view, which is not a valid email address. The decrypted tag will print the proper email in after decrypting the data.
Hello
I just want to inform you that we didn’t receive the email once customer submit the form. We have checked the SMTP Error and the error is due to heavy file. Refer to this screenshot – https://prnt.sc/5ZlLzhu2CkKP
When, I am trying to resend the email again to check the filled data in the email but the email is also showing encrypted data.
Refer to this screenshot – https://prnt.sc/MhVruWdeyWrG
Email shows encrypted data of that particular customer – https://prnt.sc/VhUDT5xxw85A
Please let me know how to decrypt the data of this customer.
Please help check
Let me know if you got the point now
Hello
I see that you cannot see the data in the gravity forms entry view or in the email. It appears you may not have completed the setup instructions in full. They detail how to decrypt the data in the notification emails and how to set up view permissions to be able to view the data in the. Gravity forms entry views in WP admin.
Please read and follow the setup instructions completely on the plugin settings page. Settings -> GF Encrypted Fields
See the Top of the page for the setup and operation instructions. Click the button to expand the instructions.
After completing setup you should be able to see the information as decrypted if you have view permissions in the gravity forms entries views and you would have set up decrypted merge tags to send out decrypted data in your notification emails.
There are video tutorials there as well.
The error about the email being “too big to send” and being rejected by the smtp server is highly unlikely to be e encryption related. Are you sending file(s) as well? You need to limit the total files sizes you are accepting to less than your SMTP server can easily send including the size of the text and headers etc for the email.
Okay, this was already used in the email body to get the decrypted fields once customer submitted the form {gfef_decrypt_ALL+}
You know the email was failed due to big file size, otherwise we are getting other customers emails without any issue.
Only for this customer, we didn’t get the email otherwise we are getting decrypted data in the email when forms submitted by the customer because we are using this is email body – {gfef_decrypt_ALL+}
Refer to this screenshot – https://prnt.sc/fn7iNISlylmk
Now, the main concern is how to get the decrypted values of this customer only.
How to decrypt the encrypted values? Please advise
So to clarify:
1. Please confirm that this is a test/staging environment where you are configuring your setup before deploying it live, or that the form page is private for testing during this period if this is on a live site.
2. Are The decrypted merge tags “unlocked” for use per instruction on the plugin settings page?
3. Do other NEW entries for this same form give you proper decrypted and readable data in the notification emails?
1. It is live website 2. https://prnt.sc/iiDHdYcZRZDE 3. Yes
Let me know how to decrypt the data of particular past entry
If this is just one single entry having an issue there are only 2 probable scenarios.
1. The encryption website key or pass were changed from what they were when that single entry was saved/submitted. This would be most likely if that entry is the oldest from when encryption was activated. This could happen if you were made changes to the pass or key when the site was live after the entry was already saved under the previous ones. Or changed it temporarily and the entry was submitted or saved during that time. -the solution is to restore the previous pass/key combo to view that the entry was submitted or saved under. You could manually decrypt then following all instructions of the option at bottom of settings page then change back to new keys and re-encrypt using the same manual encryption tool. This should all be done while the forms using encryption are NOT live, so that you don’t recreate the same issue by saving any submitted entries during the process under the old pass / key while they are active.
2. The actual saved data for that entry is exactly as it is showing because the originally entered data was overwritten by the encrypted restricted display. This can happen if you were using “encryption verification mode” on a live site while the forms were accessible and an entry came in or was re-saved from the backend while you were using that mode. The setting strictly warns against this stating this possible outcome of using it while the site/forms are live or being edited. You can check this by checking the raw data in your DB for this entry or using “encryption verification mode” ..again this mode should only be done while the site AND encrypted forms are NOT live and accessible. This mode shows you the raw data stored for the field. If it is a random encrypted string like the other entries data, you are just using the wrong key/pass to access it decrypted. If the data says the same restricted text.. the data IS the restricted text and was overwritten when using “encryption verification mode” while leaving the site/forms live and either the entry was submitted then or resaved when the mode was active.
-the solution is to safely backup your current DB And then restore a DB backup which includes that entry from before the data was overwritten. you would then just export the entry and can then revert back to the current DB and import the missing entry and delete the bad one. If the entries data is not encrypted it can be manually encrypted using the tool at bottom of settings page.
Is there any option in the settings to decrypt the encrypted data? I think so Restoring or backup will not work in this case
Yes. It is described in solution #1 above.
But you need the same correct pass/key combo to view the data to decrypt it. If you are not currently able to see it decrypted, it will not decrypt properly for you using the manual decryption tool.
1. If the reason have you determined that you can’t see the data is that the password or website key was changed when the site was live etc. and you do NOT have a record of the pass/key that the data was saved with there is no way to view that data. Otherwise you can just enter the correct pass/key to view/export/decrypt the data.
2. If you determined that you were using encryption verification mode (requires non live forms and no form data entry/editing/saving) and resaved the entry when using it, you can restore a DB backup from before using encryption verification mode when the data was changed and follow #2 above.
3. If you determined you were using encryption verification mode (requires non live forms and no form data entry/editing/saving) when the site/forms was live and the entry was submitted and was overwritten there is no way to recover the data as there is no saved correct version of the data in a backup and the data IS the restricted display.
Hello
Will this option work for decrypt the past encrypt form – https://prnt.sc/qzM_5-1_0Gij
I didn’t find any quick and fast way. You should have a way to decrypt the encrypted data. Please advise
Hello
That tool is for manually adding or removing encryption quickly and easily, it only functions to remove when you have the proper keys to decrypt the data back to normal readable data.
So you don’t have efficient or standard way to decrypt the past form data? Correct
Hello
This is incorrect.
You can use the manual encrypt / decrypt tool to either add or remove encryption from existing form data.
With the tool, you can easily target that specific form ID and entry ID and even only specific fields if you want.
To successfully remove encryption from the entry you have to have the correct encryption keys that it was encrypted with. There is no way around this. You cannot remove encryption without the correct keys. As stated by the manual encryption tool, you must be able (have permissions) to see the data and be using the proper keys first to verify the data is readable to you in gravity forms entries views before you perform manual encryption removal on the data. Doing otherwise will possibly destroy your data.
With this particular form entry being the only one with the issue of not being able to see the data it is unclear what was done where the data is not viewable but the only possible scenarios have been stated above. We have not received any answer as to what specific actions were taken of these scenarios. To further assist you we need responses to the questions asked previously of our support team to determine the cause of your scenario.
Please answer each of the following questions.
1. Can you see all OTHER entries data as readable in the gravity forms entry views?
2. If you resend OTHER entries data notification emails do they come through readable.
3. Were any of the settings for our plugin (encryption keys / encryption verification mode) possibly being changed or tested when this live entry with the issue was submitted?
Okay, I am answering your questions -
1. Can you see all OTHER entries data as readable in the gravity forms entry views? Answer – Yes, I am able to see the readable entries for other entries. Some of entries are readable and some are encrypted. I am not sure but most of the past entries are readable. Answer – Yes, the other entries data in notifications emails are readable. I have already checked this
2. If you resend OTHER entries data notification emails do they come through readable.3. Were any of the settings for our plugin (encryption keys / encryption verification mode) possibly being changed or tested when this live entry with the issue was submitted? Answer: No, we didn’t change anything in the settings of the plugin.
NOTE – Mainly this issues comes when email did not send due to this error -
WordPress was unable to send the notification email. SMTP Error: data not accepted.SMTP server error: DATA END command failed Detail: Error: message file too big SMTP code: 552 Additional SMTP info: 5.3.4
After that if you resend the notification email for the same entry it will show you the encrypted values of the submitted form fields.
How to use manual encrypt/decrypt tool? Let me know if it works
Please let me know how to fix this issue
Thank you!
1. A dev could log in and check your system if you have a testing/dev site to use. Is this possible?
2. If there is not a test/dev site to work with, can you please take all your forms OFFLINE momentarily (just switch them off from the gravity forms forms page) and then turn on encryption verification mode and view one of the entries that has data you normally CAN NOT read and reply with what is seen in the data fields that have encryption turned on.
3. What other gravity forms plug ins and / or add ons are you running?
There is no any dev site for this website right now Here are the Gravity forms add-on we are using -
Gravity Forms Gravity Forms Custom Javascript Gravity Forms Encrypted Fields Gravity Forms Mailchimp Add-On Gravity Forms Partial Entries Add-On Gravity Forms Stripe Add-On Gravity Forms User Registration Add-On Gravity PDF Gravity Perks GravityImport
You are providing the plugin support and you should have a valid solution to fix this? Come on guys this is needed on urgent basis.
Please let me know how to decrypt the encrypted past entries. Is there any documentation or screenshot help in this case? Please take this on urgent basis
Please
Also, is there any way to see the encrypted entries from the WordPress dashboard? Please let me know
hello
In order to assist you we have to understand what is actually happening, and in order to determine that we have to have answers to our questions to narrow down the scenario and understand why you are experiencing what you are.
Normally, there are NO extra steps to viewing encrypted data in admin. You just log in and look at the entries assuming you have the view permissions to do so. You can already see all your other presumably encrypted entries data correctly and that is how it should be for all of them assuming everything is set up and processing normally. However we do not know that your permissions are set up properly or that your encryption is even set up and functioning yet.
We have been over how to remove encryption from the past entries many times using the encrypt/decrypt tool and it is available for you to use at any time according to its instructions. However, at this time we are uncertain if your data is even being encrypted, or if it has perhaps been corrupted or overwritten by previous actions on your part using the manual tool or other options outside of guidelines.Without any testing for setup and operation having been done in a test site that we can look at for the same settings we need to rely on you to check the things we would in order to determine if your live plugin has been set up properly in order to know if encryption is actually taking place and what is causing the results you are seeing. When we understand this we can try to help you resolve the issue by understanding how to solve it. Knowing what other plugins you are running assists in understanding the flow of data and how it is being processed.
If you can provide us with the following.
1. Is your system check all good for plug-in on plugin settings page?
2. Is encryption turned on for these fields and did you perform #2 as requested above to verify that encryption is taking place by using encryption verification mode? Please verify there are encrypted strings for the data when viewing with this . They should start with gfef… then have long random strings after. Check both an entry that you can see encrypted data normally in admin and one that is having the issue. We need to know if you’ve actually set encryption up and it is ruining. Please copy a data sample from each
3. What are your view permissions set to for the fields? Are they per field in the form editor, or global in the plugin settings page, and what is their exact setting?
4. Because it appears linked to a failed smtp notification email, to resolve this issue moving forward please limit your total file size allowed in your files upload fields to less than what your smtp client safely allows per email. -As a note the notification emails are fired AFTER the form data is saved and would normally not do any processing of the stored entry object so this failing notification should have zero effect on the form data so to be transparent this is interesting as it should have zero effect on the stored data. This is what we need to understand what other plugins are attempting to do any further processing. On that note, e we also need to know if you have any custom code running which affects gravity . .. However small the snippet may be. For example, if you are doing something during notifications or email it could simply be accessing the entry wrong and causing the issue with the data
Hello
Do you want to access the backend of the website and see if the required settings are okay? Let me know
Thank you!
Is there any way to show the decrypted data on the attached PDF for future entries? Please let me know
Hello
If you want to give us access to check out the setup you can by clicking our user name and using the “author contact form” To give us sign in credentials privately.
Yes. You can use the provided decrypted .pdf template or create your own to have a decrypted .pdf. See the setup and operations instructions under “USING WITH GRAVITY PDF”
Hello Team
We are unable to fill the Gravity Intake form when the Gravity Forms Encrypted Fields add-on plugin is active
On checking further Gravity Forms Encrypted Fields & Gravity Forms User Registration Add-On both are conflicting with each other. If both plugins are active then the Gravity form is not working, currently Gravity Forms User Registration add-on is enabled so that at least form can be submitted successfully.
Please check this on priority
Please update to latest plug-in version and b select to be notified of plugin updates. I believe the conflict is always resolved in latest plug-in version
Hi Team
I haven’t not any further update of this plugin Gravity Forms Encrypted Fields, is this the latest update for the plugin Gravity Forms Encrypted Fields Refer to the attached screenshot – https://prnt.sc/kME5M0KCx2oR Currently the plugin is disabled, because if we activate this plugin, it is not allowing to submit the Intake Gravity forms. But we need to fix this at the earliest.
Please advise
Thanks!
Hello
The latest version is 6.2.1
You can see the latest plug-in version and notes on this on the plug-in’s information page at the bottom of the plugin description here on code canyon, and in your code canyon downloads you can select to be notified about updates to the plugin. This is also where you can download the latest plugin version. The envato marketplace plugin also notifies you of new plugin versions automatically. Please be sure to follow the plugin update instructions in the .readme file.
Okay, thanks! Is there any specific role for Website Key that is used in plugin Gravity Forms Encrypted Fields settings? Please advise Thanks!
Also, how can we add a new update on the plugin notification in CC email as well. Please let me know how to add the another email for getting plugin update notifications. Thank you!
Hello
1. Could you clarify this question please? It is unclear what you are asking regarding the website key. “Is there any specific role for Website Key that is used in plugin Gravity Forms Encrypted Fields settings?” Unless temporarily required due to website migration etc. this setting should be using the auto key as it instructs. Hopefully that is how it was set up.
2. We do not send out the update notification emails. They are handled by envato/codecanyon as new plugin versions are sent to their platform. You can use your email provider to set up forwarding rules to copy other addresses in on emails you recieve from them.
3. If you have not done so yet you should set up a development site to thoroughly test all new plugin and WP updates as well as server PHP updates or changes before rolling them out live on your live site. Once any unforeseen conflicts or issues are resolved from any updates on your dev site you can roll them out to your live site. you will notice pretty much every plugin has fixes for random issues and/or possible conflicts with other plugins etc. in updates here and there and you can save your live site from having to go through any that are potentially more detrimental if you are testing on your dev site for stability before installing live.
Hi I got it Thanks!
After updating the Gravity Forms Encrypted plugin I am able to decrypt the encrypted past entry from the plugin setting by using Form id and Entry Id. As we are using Gravity form user registration add-on for user registration and activation, if the user activate his account, then we are unable to decrypt the entry after user activate his account. Is there any glitch for this issue? or this is due to security issues. Please advise
Hello
It is unclear what you are doing.
When you say “decrypt the entry” are you performing manual decryption of an entry using the encrypt/decrypt tool on the plug-in settings page?
There is no operational difference to manually decrypt an entry based on whether the user is logged in or anonymous or registered or not.
If you are performing manual decryption , may I ask why you are manually decrypting the entry?
Otherwise if you are referring to just viewing the entry decrypted in the gravity forms entry views , there is also no difference based on whether the user is registered or not, UNLESS you have assigned the fields as user owned in their encryption settings in the form editor ..in which case only the original logged in user has view access to that field data.
Hi
I have done complete research and R&D and finally I find out the decryption issue, it is not decrypting the past entry due to register user activation. Once the user is activated, we can’t decrypt that entry, but until the user is not activated we can decrypt or encrypt without any issue. We are using Gravity Form Registration Add-on for registering users.
Below is the completed scenario -
When the user is registering on the website by using Gravity Form User Add-on, the user details name, email, phone number, DOB with other 11 fields are being encrypted, but when users is getting the activation email, user click on activate link on his email and it shows the this error – An error occurred during the activation Could not create user Ref. Screenshot – https://prnt.sc/km0eN_5Wchnd
This is happening only when the encryption is ON for Name, Email, Phone Number & DOB, if we turned OFF the encryption for these fields, and submitting the form again, then the users are successfully activating the account and able to login to the website but in this case we are unable to decrypt the other fields of that entry. In one form we have 15 fields including Name, Email, Phone Number & DOB and we are unable to decrypt those encrypted fields. This is happening only once the user is activated, until the user is not activated of that entry we can do the decryption for the encrypted fields of that specific entry without any issue.
Note: I am using the Encrypt/Decrypt Tool to decrypt the specific entry of the Gravity Form by choosing FORM ID & ENTRY IDs. Refer to this screenshot – https://prnt.sc/xnXAThWRQqTv
It might be the issue when Name, Email, Phone Number & DOB are encrypted and when the user getting the email notification to activate his account, the email field is also encrypted and email is not authorized or validated to activate the user account because the email field is Encrypted and it is showing as Encrypted Field Restricted in the Gravity Form Entries. It can be the issue?
Why does the decryption not work after the user activates his account by email?
Can you please look into this? Please get back to me with the solution
Thank you!
Hello
1. You cannot encrypt user registration data. As in the instructions, you cannot do that. WP does not know how to decrypt it to utilize it for users. You can use the plugin to delete the gravity forms field data used for user registration data after the submission is complete where the user is already created, but you cannot try to pass encrypted data to WP to use for users information. WP has no native way of understanding or handling that encrypted data. Even if possible to encrypt after submission is processed with immediate user activation on submission, WP stores it unencrypted anyway so you would only be storing an encrypted copy of it in GF.
You can encrypt any other supported field data on the form that is not being used for user registration.
Again this is covered in the setup instructions.
2. I am unsure why you are encrypting data on submission and then manually permanently removing the encryption to view it using the encrypt/decrypt tool. That tool adds or removes encryption from existing entries.
If you just want to view encrypted data you just open up the gravity forms entry view and look at/export etc. the entries like you would normally. As long as you have proper view permissions the data in the view is decrypted for you to read normally while the data at rest always remains encrypted.
If you can’t see the encrypted data normally in your GF entry VIEW screens you haven’t set up the plugin properly for encryption or view permissions.
It could be worth going back through the setup and operation instructions and video tutorials as it sites not seem that your setup and/or usage is possibly not as the plugin is intended to function.
I am going to pass some info to the devs to clarify the purpose of the encrypt : decrypt tool in its description if possible
Can you send me the setting to setup the encryption correctly? So that I can view the encrypted data normally in Gravity Form entry? Please
Hello
Please first update to the latest plugin version 6.2.2 which was just released (this version has slightly improved instructions), then follow the complete numbered setup and use instructions which are located at the very top of the settings page under the notice in the “SETUP / OPERATION INSTRUCTIONS” section by clicking on the button labeled “Click Here For Setup and Operation Instructions”. This will expand full insructions including video tutorials on expected opereration of the plugin and how to properly set it up step by step. There are videos to follow on setup as well.
Okay, please let me know if there is anyway to show the decrypted data on the Gravity Form Entry. In the setup instruction it is not clearly mentioned, please let me know if we can do it or not. Currently data is showing like this – https://prnt.sc/iWSc3EG8ssqw
Please help me on this and let me know asap.
Thank you!
1. The instructions cover complete setup. Please go through each step carefully. By default, if you have placed no restrictions on viewing the encrypted data, then anyone logged in with access to the gravity forms views can see and read the encrypted data normally. This indicates that somewhere in your setup you have placed a view permission restriction that prevents you from seeing the data. You should be able to find where the restriction is by going back through each setup step and checking the settings.
2. What encryption type are you using? Is it asynch mode? Or standard OpenSSL?
I have pasted in the following from the instructions: HOW THE PLUGIN WORKS: This plugin encrypts data at rest in the database at the time of form submission (or on entry update if the field data is changed) and displays both encrypted and non encrypted submitted field data properly whether or not encryption is turned on for a field at any time. This means that when you configure the plugin, it encrypts the data at rest, and for users you give permission to it displays it as normally readble in the gravity forms entry views/exports/etc., and for those without permission it shows a customizable restricted message. You just use gravity forms normally once setup is complete, and the suite of permissions tools and options helps you decide when, where, and to who it displays any encrypted data normally vs restricted. A simple video demonstration of this is HERE.
This plugins encryption and view permissions operate transparently to normal Gravity Forms operation. This means that once setup is complete and newly submitted (or manually encrypted) field data is saved encrypted in the database, the field data will be automatically decrypted and normally readable for users/roles with view permissions when viewing in all Gravity Forms Core admin interfaces and export options. This means that you should NOT ever expect to see encrypted stings such as “GFEncrypt: 7w72gGhfgRZkdnZmQ2dz09” in the admin interface. Encrypted/hidden field data should always either be returned as normally readable for users with view permissions, or should return the restricted display for the type of data restriction occurring (encrypted/hidden) for users without view permission to that specific field data. So if you can still read encrypted/hidden field data as normal, it is because you have the user or role view permissions to do so. If you use the higher security “Async Mode”, users must additionally log in to Async Mode after logging into the site to view, export, or send out decrypted data, as any decryption is impossible without logging in to the mode.
7. By default, ALL users that can view form entries have view permissions to an encrypted field’s data unless a field has anything entered into its “User View Permission” setting in the Gravity Forms form editor in the fields “Advanced” tab. Once any usernames/roles are entered into a field’s “User View Permission” setting, only those users/roles will have view permisions to the field’s encrypted or hidden data, and all other users not listed will be restricted unless they have an overriding view permission. The “User View Permission” is per individual field and hovering over the help icon there will detail how it works as well as point to additional global permissions for more control.
8. You can optionally use the “Limit User/Role View Permission Lists” list below to enter comma separated user names to globally restrict what user names are valid when entered into any fields “User View Permission” list.
9. You can optionally use the “User Lockout List” below to enter comma separated user names to globally BLOCK individual user view permissions for ALL encrypted or hidden field values, regardless of individual fields “User View Permission” settings. To quickly lock out all users enter “lockdown” in the “User Lockout List”.v
10. You can optionally use the “User/Role Access List” below to enter comma separated user names to globally ALLOW individual users/roles view permissions for ALL encrypted or hidden field values, regardless of individual fields “User View Permission” settings and “User Lockout List” settings.
I can help point you to the exact settings for setting view permissions/restrictions, but that said I am not sure that your plugin is configured properly and functioning as it should and strongly reccomend you complete the full setup instructions again.
The places to set/ check for view restrictions are:
1. The individual fields view permissions settings.
2. The type of encryption used for the individual fields . (Should not be user owned or only the user who submitted can view)
3. The Limit User/Role View Permission Lists restriction setting on settings page.
4. The user lockout list on settings page
5. The user access list on settings page
Again, it is highly recommended that should complete following the complete instructions again to understand the function and use as intended and be sure you installation is actually functioning by completing the system check and encryption verification tests.
If you are the only admin on the site just remove anything you have placed in ALL permission settings and enter “administrator” in the global access list,and “lockdown” in the global user lockout list”. this will only allow any administrator to view the data normally. -this quick method is covered in complete setup guide
This is added please check if it is okay – https://prnt.sc/kz4frnvLInQU
You have placed “Administrator” in the “limit user/role view permission lists” option.
You should delete that and place “administrator” in the global access list.
The A is not capitalized. You can review the instructions for the global access list to see a list of available role slugs you can use in there. They should all be lower case.
Okay, please check it now – https://prnt.sc/W8n9x_8EiDYb
But I am unable to see the decrypted fields in the dashboard., it is still encrypted – https://prnt.sc/Y4uF0xVQORyuLet me know please how to fix this urgently
Hello
You have repeatedly not followed the instructions of the plug-in or our support staff.
We cannot assist you further if you do not read and follow instructions. You are welcome to submit to envato for a full refund of the product.
- Remove EVERYTHING you have placed in ALL OTHER permission settings and enter “administrator” in the user/role access list, and “lockdown” in the global user lockout list”.
Hello
We are using this plugin on our website. I have read the documentation multiple times and if there is any bug or issue we are facing during setup or configuration so I would request you to help us until it is resolved. Thank you for your prompt help!
I am able to see the decrypted entries only for those users who have not activated their account yet, else those who have activated his account are still showing encrypted entries to me. I remembered you said that we cannot encrypt user registration data. As in the instructions, you cannot do that. WP does not know how to decrypt it to utilize it for users.
I have sent an email to the User Registration add-on but they said -
You’ll need to contact the developer of the encryption add-on for support with this issue, it shouldn’t be encrypting the values used during add-on feed processing.
Now, the main concern is that if the email initially fails to be sent, then it will be encrypted in future emails sent for that entry.
What is the alternate solution you would like to suggest in this case? We want registration form as well as with the other form fields so let me know how to fix this and any alternate solution for this?
Thank you!
Hello
The plug-in has decrypted merge tags which allow you to send decrypted information in the notification emails.
They are covered in depth for using them and how to set them up in the plugin instructions including a complete video guide.
Yes, I know and it is already added in the message body – {gfef_decrypt_ALL+} Refer to the attached screenshot – https://prnt.sc/xm5H5TLKmLvU
The data coming in the email is decrypted,not an issue with that.
Only the concern is that if email notification fails and it happens sometimes so how would be decrypt the data once the user has been activated. That’s the main concern.
Do we have an option to show decryption of specific field only in the GF entry? Or any other suggestions you have to fix this issue
You are Encryption expert, you can have alternate way to fix this.
Please help, this is really important for us
Thank you!
Those decrypted merge tags decrypt all the time. You can resend the notification and it should be decrypted. If it is not there is an issue with setup.
Can you please show us an updated image of these settings you posted earlier.
https://prnt.sc/W8n9x_8EiDYbAnd also post an image of the encryption settings for a field you are encrypting from the form editor ..fields advanced tab encryption settings.
Here is the updated settings as per your request – https://prnt.sc/oVDKOyStC-GK
Setting of field in the form – https://prnt.sc/_209LdsHrsoi
Same settings for all fields
Can you send as an image of your “encryption type” setting from the plugin settings page.
Are these fields being passed to any feeds or ad-ons?
Also, the decrypted merge tags did not decrypt mail notification all the time, it is decrypting the mail first time or until the user is not activating his account, after activating the account, all fields in the GF entry are showing “Encrypted Field Restricted” and same encrypted fields are sending in the email when we are trying to resend an email. That’s the concern Refer to this screenshot – https://prnt.sc/gK5yq0IQJfqw
Is there any settings that would allow to send decrypt email even the data in the GF Entry is encrypted.
I am very thankful to you for your prompt response.
Please help us in this case as you know this is big concern for us.
Thank you!
Can you send as an image of your “encryption type” setting from the plugin settings page.
I removed your screenshot because it contains your encryption passwords. Please do not post sensitive information in this public forum. You can send to us privately if needed. We can still access it.
I have update it already, please refresh it and checked again
Can you post image of system check from settings page please.
And can you send screenshot of the encryption verification and testing expanded window?
Please check here – https://prnt.sc/NAngd180JeGI
Can you please enter custom data into the verification and send screenshot of result after saving.
What do you mean by custom data into the verification? Please help what you want me to do?
You can see there is an input for custom data to test encryption. Please enter something there and save changes to test out the encryption/decryption on custom data.
Please check here – https://prnt.sc/ptp8ejFCcV-c
Ok – after correcting your permissions set up, so far there is only one thing we have noticed that is off, but do not want to focus on that until we understand the entire scenario. Without this being on a test/dev site where we can just log in and fix the setup issue quick we’ll have to have you do what we would do for you.
The next 2 things we want to try are 1. Make a new test form on a test page that is private . Only make a few encryption supported fields in the form and turn on encryption for them. Standard encryption for 2 ( select only to turn encryption on) and “encrypt after submission is processed” for the third.( requires selecting encryption to turn on AND also selecting “encrypt after submission is processed”. There should be 2 options in encryption turned in for that one). – Do NOT enter anything into individual field permissions. With your permissions now set globally you should be able to submit some test data in a few submissions and view it all and export it all normally in GF entry view screens. You can also test notifications with it if you wish by using the decrypt all+ merge tag in confirmation/notification for the test form.
Let us know the results.
The second thing we will do if needed past this is to look further into your existing forms setup and encryption and user registration feed settings. It seems there may be a corrupted form with it.
So, you want me to create a test form on this website and make test according to your suggestions and see if it works? Correct?
Can you tell me more briefly about this decrypt all+ merge tag, I have already added this in the mail body but the issue is that once the user activated all fields showing encrypted data and same thing sending in the mail.
I know you are expert and checked all the settings and it seems perfect according to you.
As you are saying might be need to see user registration settings, can I send you the screenshot of user registration settings? Please advise
Thank you!
Hello.
Yes, we should be able to narrow down what is happening is we know if a simple form is working properly.
Please do the following:
Make a new test form on a test page that is private . Only make a few encryption supported fields in the form and turn on encryption for them. Standard encryption for 2 ( select only to turn encryption on) and “encrypt after submission is processed” for the third.( requires selecting encryption to turn on AND also selecting “encrypt after submission is processed”. There should be 2 options in encryption turned in for that one). – Do NOT enter anything into individual field permissions. With your permissions now set globally you should be able to submit some test data in a few submissions and view it all and export it all normally in GF entry view screens. You can also test notifications with it if you wish by using the decrypt all+ merge tag in confirmation/notification for the test form.
Let us know the results.
Okay – Just quick question, I am using this setting for all the field encryption, please confirm if these settings are okay for all fields
https://prnt.sc/r8LgVBxv54wq https://prnt.sc/goY9gVmYNYuC https://prnt.sc/ZHD4dQYinOSoThank you!
Hello
1. Are you setting this in the test form, or your live form? The test form should have settings according to instructions sent.
2. If this is the live form you should not need to use the “encrypt after submission is processed” option unless you are using another feed or add-on to process these specific fields aside from the user registration add-on. If you are using the user registration add-on to process these fields .. again, you should not have encryption on them at all as WP stores these values unencrypted anyway. You can delete the entries after the submission is processed to get rid of extra GF copies of that data or use a plugin like gravity view to create user profiles with our encrypted data stored as GF data instead of WP user data.
I had send the screenshots of existing live form. Can you try to implement the same thing at your end on the demo site, because you know better about the Gravity Form Encryption fields plugin and its settings? Please advise
Thank you!
We can look further into your live form after you do the following:
Make a new test form on a test page that is private . Only make a few encryption supported fields in the form and turn on encryption for them. Standard encryption for 2 ( select only to turn encryption on) and “encrypt after submission is processed” for the third.( requires selecting encryption to turn on AND also selecting “encrypt after submission is processed”. There should be 2 options in encryption turned in for that one). – Do NOT enter anything into individual field permissions. With your permissions now set globally you should be able to submit some test data in a few submissions and view it all and export it all normally in GF entry view screens. You can also test notifications with it if you wish by using the decrypt all+ merge tag in confirmation/notification for the test form.
Let us know the results.
Hello
I have tried everything but same thing is happening again and again, I tried what you have suggested but same output is coming, once user activated all fields are showing encrypted. It seems the issue with the User registration add-on, when the customer is activating his account by click on the link get on their email after activating from there the the encryption is showing for all fields, but I noticed one more thing, if I am activating the user from the WordPress dashboard then there is no issue, everything seems okay, decryption fields are showing correctly even that user is activated but from admin WordPress.
I am not sure what is happening? Can you please help again
Thank you!
Hello, the following instructions do not instruct to do anything with user registration. Do not use that add-on in any way while making your test form. Only do what is instructed in the following:
Make a new test form on a test page that is private . Only make a few encryption supported fields in the form and turn on encryption for them. Standard encryption for 2 ( select only to turn encryption on) and “encrypt after submission is processed” for the third.( requires selecting encryption to turn on AND also selecting “encrypt after submission is processed”. There should be 2 options in encryption turned in for that one). – Do NOT enter anything into individual field permissions. With your permissions now set globally you should be able to submit some test data in a few submissions and view it all and export it all normally in GF entry view screens. You can also test notifications with it if you wish by using the decrypt all+ merge tag in confirmation/notification for the test form.
Let us know the results.
Hello
I again tried the same thing after creating the form but same issue is occurring again and again so please look into this issue deeply as this is major concern now for us. Please help check
Thank you!
Hello
How is the same issue occurring if you are not registering users?
Can you please explain what is happening exactly on the simple form as instructed to test.
Hello
There is no any issue without registering user, the data is showing decrypted for all other fields except the registering users fields like name, email, phone number passwords etc
So, it seems the issue is with only the user registration fields encryption only, how can we fix this issue? We must need to register users and activate their accounts accordingly. What can we do?
Thanks!
Hello
The plug-in is functioning properly.
You are not supposed to be attempting to encrypt user registration data. I recall that support has covered this multiple times previously and it is covered in the plug-in instructions, but I will cover it for you again.
You CANNOT encrypt user registration data. As in the instructions, you cannot do that. WP does not know how to decrypt it to utilize it for users. You can use the plugin to delete the gravity forms field data used for user registration data after the submission is complete where the user is already created, but you cannot try to pass encrypted data to WP to use for users information. WP has no native way of understanding or handling that encrypted data. Even if possible to encrypt after submission is processed WITH IMMEDIATE USER ACTIVATION on submission, WP stores it unencrypted anyway so you would only be storing an encrypted copy of it in GF.
Hello
This is one of plug-in dev. Support notify us of issue. Please understand storing gravity forms copy of the user data encrypted ..right next to word press copy of the user registration data which is not encrypted in the same database is not protecting the data at all.
Our plugin is for encrypting gravity forms data. It is not used for encrypting WP user data.
You can create “user profiles” in gravity view or similar which can be entirely encrypted data or just use a plugin such as “Encrypt WP” or “All In One WP Security and Firewall.” to encrypt actual WP user data at rest. We do not support these plugin. Only notify you that they are available to you.
Hi
Gravity form itself has registration form field, I am using those fields which are available in Gravity forms, Even i have tried not to encrypted the registration fields but it did not work.
Hello
Gravity forms does not have “registration” form fields. It has other fields types that can be optionally used for user registration when run using the “user registration” addon. You simply cannot encrypt them when using them this way to hand the data to that addon.
You have already confirmed the following:
“There is no any issue without registering user, the data is showing decrypted for all other fields except the registering users fields like name, email, phone number passwords etc
So, it seems the issue is with only the user registration fields encryption only, how can we fix this issue?”
You cannot fix that issue unless you stop trying to do it. And it does not make sense to do it. You can use it plug-in to Delete the entire submission after it is complete but AGAIN this may only work if IMMEDIATELY ACTIVATING the user. This means there is no email step for confirmation prior to activation. The user must be activated immediately on submission.
If you do not want the plugin for other GF data encryption please request a refund through your envato account.
Hi
Okay, Let me check what can we do in this case.
Thank you!
Hi
I have find out the solution, and the issue with the activation process if we skip the activation process for registration user than it seems perfect. Now, when the user will registration, he will get a notification email on their email that you have been registered on the website, please reset the password and login to your account dashboard.
Is that okay?
Thank you!
Hello
Yes. Our support team previously stated it was possible when immediately activating the user multiple times. However, It still does not make the data secure to bother encrypting the user data copy stored in gravity forms when it is stored unencrypted in the same database in the WP user table. If you are not using a recommended solution through gravity view or encryptWP, Deleting the GF copy is again considered the best alternate option as you look and search for users in the WP user admin interface anyway.
I have changed the domain name for my site. How can I change the license to my new domain? I no longer have access to the old domain.
Hello
You can send us a private message by clicking our user name and using the author contact form. Include your purchase code and explicitly list the exact website you would like to deactivate, and we can deactivate it for you from our end. Any deactivated site will cease to function for decryption and other accessibility of encrypted data. DO NOT list purchase code here .. only in the private email form.
Hi
I have been using the repeating fields code for Gravity forms found here: https://docs.gravityforms.com/repeater-fields/, but the encrypted fields module causes an error on submission (even though these fields do not have encryption on them).
I think this is caused by the repeating fields part of the form being sent to submissions as an array, and your encryption module requires a string. When i dont add any content to these fields i do not receive an error.
Here is the part of the error
Fatal error: Uncaught TypeError: substr(): Argument #1 ($string) must be of type string, array ….
.../wp-content/plugins/gravity-forms-encrypted-fields/gfef.php on line 757
Any ideas on how I can fix this?
Thanks
Jonathan
Hello
Repeater fields are not currently a supported fires type.
Hello
You should be able to try this form again using repeating forms without encryption on them but able to enter data. This issue has been corrected in later plug-in versions so updating to latest plugin version should correct the issue for you
Hello,
We are interested in potentially purchasing this plugin however we need to know the following:
Are upload fields supported for the encryption capability?
Hello
First let me specify that our plug-in does not encrypt uploaded files for storage on the server. There are already great fast solutions out there for encrypted file storage and sharing/access. Read below for more information.
If you are asking about how a file is protected while in transfer from the users machine to your server on initial upload, this is the same as the data entry is protected and is done by simply using https for the connection. Https is a secured SSL encrypted connection between client and server.
As far as once it’s on your server you can use the gravity forms Dropbox add-on or a third party solution like GDrive file uploader to have the files moved to secure storage on those platforms and delete any local copy (Both are encrypted storage and offer robust sharing and access options). Or you can likely transfer to other storage and access solution via other plugins, or use a different solutions API etc. with custom programming.
If you wanted to skip the files ever being on your server at all you can use solutions like driveuploader or a google form with file upload field or another encrypted file upload solution directly within your gravity form by just embedding them in an html field in your gravity form.
I hope this helps 
I’m interesting in purchasing this plugin to comply with cybersecurity requirements. My client is asking me how the process collects and packages a file upload for transfer. We want to make sure that there is no trace of the file on our server once it is emailed via the notification and deleted. Can you give me some details there?
Hello
First let me specify that our plug-in does not encrypt uploaded files for storage on the server. There are already great fast solutions out there for encrypted file storage and sharing/access. Read below for more information.
If you are asking about how a file is protected while in transfer from the users machine to your server on initial upload, this is the same as the data entry is protected and is done by simply using https for the connection. Https is a secured SSL encrypted connection between client and server.
As far as once it’s on your server you can use the gravity forms Dropbox add-on or a third party solution like GDrive file uploader to have the files moved to secure storage on those platforms and delete any local copy (Both are encrypted storage and offer robust sharing and access options). Or you can likely transfer to other storage and access solution via other plugins, or use a different solutions API etc. with custom programming.
If you wanted to skip the files ever being on your server at all you can use solutions like driveuploader or a google form with file upload field or another encrypted file upload solution directly within your gravity form by just embedding them in an html field in your gravity form.
I hope this helps
Thank you this is helpful. Can you provide any details about how the local copy of the file is deleted? Is there a possibility that even though the file was deleted it could still be accessed in the “trash”? Or is it deleted in such a way that it is gone forever?
I appreciate your help here.
Hello
Files uploaded through Gravity forms are stored in non indexed ways with obscured file names. They are deleted from the server without any “trash” option.
For more information on GF files, check the gravity forms documentation on file uploads security. You can programmatically set parameters like requiring login or certain WP permissions before download is possible on top of deletion after processing/submission so the file is further protected during processing
https://docs.gravityforms.com/security/#h-file-upload-securityHi, I have encrypted the email field in the form and one of my notification email is sending the email to the filled email but it seems like the email is failed to send because of the email field is encrypted. Please advise how we can pass the email as decrypted data for notification email.
Here’s the setting for your reference: https://snipboard.io/QmKYPz.jpgHello
Please read in full and follow the plug-in instructions listed in the plugin settings page under top button “ Setup and Operation Instructions”
Step #12 covers this in detail with pictorial reference and guide video.
You must use a decrypted merge tag in this field while selecting the “enter email” option for the notification email. The field data (email address) is encrypted so it must be decrypted to make a readable email to send to.
Hi, I have tried to add my user role to User/Role View Permission in form editor but it doesn’t let the user with the added role to view and export the entries with normal data. Please advise.
For your reference, my user role is Donation Form User with slug donation_form. I have added donation_form to the field but it doesn’t work.
Hello
What type of encryption is being used?
SSL or SSL Asynch mode? Is the field user owned?
We are using SSL Async mode and the field is not user owned. If I adding the username, the user will able to view in normal data
Hello
Asynch mode requires the Asynch login on top of the user/role permissions. Is the user logging into Asynch as well?
For the role slug check the role slugs listed in the tooltip of the fields permissions setting. This lists the roles slugs as required for entry, without additional spaces after separating commas.
If this role should have access to ALL encrypted data you can just use the global user access list on the plug-in settings page to give them access to all encrypted form fields (still requires asynch login)
Realistically fit most setups you do not have to use individual user permissions when using asynch as only logged in people with the asynch password can access, so you just only give the pass to users that should have it, but if you have a need for complexity beyond that for specific fields/forms it is there as well.
Apologies, just realised we are using SSL mode instead of SSL Async mode
Within normal OpenSSL mode it would be the same. Check the available role slugs. The role slugs are listed in the tooltip of the fields permissions setting. This lists all of the available roles slugs as required for entry, without additional spaces after separating commas.
We have checked the role slug is correct and there is no space after the separating commas when we set in User/Role Permission field. It only works when I set the role slug in User/Role Access List
Can I check if we can export the csv file with readable data when using Entry Automation? Currently, the data is encrypted when we schedule to auto export with Entry Automation
Hello
There is a setting on our plug-in settings page called “Limit User/Role View Permission Lists”. If you put anything in it it limits valid usernames and roles allowed in the field settings view permissions options . If anything is in here please be sure you either also add the role you are trying to use , our remove all restrictions listed in the option and save the setting blank to have no restrictions or it won’t work.
If you can schedule the export to run under a user account that has access it should be decrypted. Otherwise there is no logged in user with access performing the action if the system does it itself so there is no authorized decryption.
If the plugin does not allow for user account spoofing to export, you would have to do some custom programming to run the export and decrypt the data or be run while the system spoofs a user that has access.
There is no input in Limit User/Role View Permission Lists, you can see my setting here : https://snipboard.io/Uu9Jov.jpg
In User/Role Permission setting, this is what we input which donation_form is the role slug: https://snipboard.io/sjbaf9.jpg
How is the role you are using created? Programmatically or a plugin?
The role is created from User Role Editor
Hello
Do other roles work when listed in the fields view permissions option?
You should not use the gfef_decrypt function directly. There are developer functions available to use and well documented listed at the bottom of the plugin settings page setup and operation instructions.
The recommended function is : gfef_developer_decrypt($entry_id, $field_id, $format) - Returns decrypted Gravity Forms field value or false, and can optionally attempt to have Gravity Forms format the display.
You would use this function within an available hook that lets you augment the individual field data before returning it to be exported. We do not assist with custom programming. But you would basically only need to pass the entry id and field id to the variables and return the resulting decrypted field data.
hi Does it encrypt the information before submission, so the http payload is encrypted already ?
Thanks
Hello
No. Encrypting the http transmissions is simply done by using HTTPS instead of HTTP. HTTPS uses SSL/TLS to encrypt communication between your clients and your server. Our plugin encrypts the data on submission for storage in the database at rest.
I am creating a job application for a client. The Gravity Form saves the encrypted data. I installed GravityPDF, https://gravitypdf.com/, but the PDFs will not display the decrypted data. Do you know how I can achieve that?
Hello
Please see the setup instructions further down under the gravity pdf section. There are instructions and even links a starter custom template for decrypted PDFs.
In short you need to use a custom pdf and then use the decrypted merge tags in it to print decrypted information. You can stick to the provided basic template or create your own with html/php based on existing ones etc.
Which page for setup instructions? I am looking on the PDF page under my form’s settings tab. This is where I enabled password security and set a password for the PDF.
Which template is the one provided? The options I have listed are Blank Slate, Focus Gravity, Rubix, and Zadani in the template drop-down box on the PDF page.
Hello
The setup instructions for our plug-in on the plugin settings page.
Settings-> GF ENCRYPTED FIELDS
Open button for setup instructions at top of page. Scroll down to gravity pdf section.
If you have not yet read the instructions completely please follow through to disclose other important info for setup and usage
Hi,
We have this plugin configured for our form and so far everything is working good. Recently we noticed an issue with notifications.
When an user submit a form, we send 2 notification – one to the admin and another to the user.
While the admin notification seems to work good, user notification fails with the below error message.
WordPress was unable to send the notification email. Cannot send email because the TO address is invalid.
How do we configure this plugin to process all notification emails before encrypting the data?
Thanks
Hello
If you are encrypting the email address field for the users email and then using a merge tag for that field in the send to address, you need to use a decrypted merge tag for that email field. This is covered in initial setup instructions and further detailed in the decrypted merge tag setting instructions. There is also a video tutorial section on using a decrypted merge tag for the “send to” email field of you are going through the video instructions.
Assuming you have the decrypted tags already set up, just use the decrypted tag for the users email instead of the standard tag, because the standard tag will fill in “ENCRYPTED FIELD RESTRICTED” or whatever you have set for the restricted view, which is not a valid email address. The decrypted tag will print the proper email in after decrypting the data.
Hi Can you pls confirm if the plugin ver. 6.1.9 works with latest WP 6.4.1? Need confirmation before I update. The dashboard says WP 6.4.1 support is ‘unknown’
Hello
The last update to WP 6.4 is tested with latest plug-in version (6.1.9). 6.4.1 is a minor release and should present no significant changes. In our dev and live environments for the plug-in it has presented no issues to date.
However, as always, you should test any upgrades to any plugin and / or WP version in a dev environment before committing the updates to a live site.
Hi. We have just launched our client site but we are now unable to deregister the previous testing URL we were using because it is no longer accessible. Would you be able to help?
Thank you.
Hello
Since the previous domains still exist and are reachable the plugin will not let you do it yourself after the fact. For future, you can self unregister through the plugin at any time before changes are made to make this not possible at any time to open the slot up.
Clock our user name and send us an email using the author contact form including your purchase code and the exact url to de register. That site will no longer have available usability for decryption or data output with the plugin.
How do we change the purchase code for a website. I had a client buy some keys for their stuff and we need to change the key on one website to use the new key?
Hello
Expand the top button on settings page that lists “LICENSING AND DEACTIVATION”
Select the checkbox to “ Deactivate License For This Website” and save changes to deactivate the current license. Then enter the new purchase code on the license activation screen that comes up next and relicense the plugin using the new purchase code.
I was hoping to use this plugin to securely accept Driver’s License photos from my customers. The goal would be to immediately delete the file as soon as I have forwarded it to Dropbox. So far I cannot get it to send the file. It deletes the entry before it has a chance to get to the Dropbox. Do you have a way that I can handle this?
Hello The short answer for doing that is that the Dropbox add-on itself should have an option to delete local file after upload. Our plugin immediately deletes the file after submission and notifications etc, but the transfer to Dropbox is asynchronous and continues beyond that.
I have set up this plugin and copied the Settings Page LOCKOUT three times to a text file to ensure it was correct. Now I cannot access the settings. Can you tell me a procedure to reset the plugin?
Hello
The settings page lockout password instructions specify that it only accepts between 8-16 characters when you are setting it up. Anything entered or pasted in longer than this would be truncated to the first 16 characters. Without wiping and reinstalling the plugin, you should first try only entering the first 16 characters of whatever you have stored that you pasted into the settings page lockout password field which is assumed longer than the accepted length.
Please let us know if you need further assistance with the settings page password.
You are a genius, that worked. Thank you much.
Glad to help
We have updated the instructions for the settings page lockout password on the settings page to specify that longer entries are truncated.
Hello, we recently changed the domain of a website that had the license key attached to it and we were about to add the plugin to another website and use the license key on there but was told we reached our limit and it listed the domains. Is there anyway to remove one of those domains that it says it’s in use on? It’s the one we switched the domain from so we don’t have access to the backend anymore. Thank you in advance for your help!
Hello
Since the previous domains still exist and are reachable the plugin will not let you do it yourself after the fact. For future, you can self unregister through the plugin at any time before changes are made to make this not possible at any time to open the slot up.
Clock our user name and send us an email using the author contact form including your purchase code and the exact url to de register. That site will no longer have available usability for decryption or data output with the plugin.
Thank you for your prompt response! We have sent the email.
Done
Wow that was fast! Thank you very much it is truly appreciated! Probably the best customer service we’ve every had honestly.
Happy to help
Hi all – what is the difference between the HIPAA FORMS WordPress plugin by Code Monkeys, and this plugin? My Gravity Form submit is already encrypted in transport, but I need the form data encrypted in storage, at rest.
Hello
Although we are not experts in the HIPPA FORMS plugin, the details of our plug-in and functionality are listed in the description for you to compare products.
Mainly the other is a 3rd party service for encrypted data storage, and ours is a local storage encryption solution with robust user access control and display tools. Our plugin can certainly fill the need to encrypt the data at rest in steps to achieve a compliant system setup.
This is great news – I appreciate the quick response, and detail you provided. Will make the purchase!
When trying to activate the plugin we’re getting this error:
Fatal error: Unparenthesized `a ? b : c ? d : e` is not supported. Use either `(a ? b : c) ? d : e` or `a ? b : (c ? d : e)` in /site/wp-content/plugins/gravity-forms-encrypted-fields/gravity-forms-encrypted-fields.php on line 2356
Can you please help/fix? Thanks!
Hello
It sounds like you may be trying to activate an old version?
What version of the plugin are you using and what version: Gravity forms PHP Word press
Also, I see it does not list your user as having purchased the plugin. Please send us an email (click our user name and use author contact form) with your purchase code so that we can assist further with plug-in version. DO NOT list your purchase code here publicly.
Yeah it’s for a client it wasn’t through my account. I’m not sure if we can get access to the account where it was purchased but I’ll try. The client has Version 4.4.2 installed. Is that current or old?
Also Gravity Forms is currently Version 2.7.16 and latest version of Wordpress. PHP 8.2
Hello
Current version is 6.1.8
You should only have to upgrade to the current version to resolve the issue. To do that you will need to access the account with the purchase code to download new version and license.
Oh wow it’s way old. Okay thank you I’ll work with the client on that.
We got the client to log in and download the latest version, but we’re having trouble activating. As shown in this screenshot I’m trying to activate it on a domain that it’s already validated for, but it’s not activating: https://i.imgur.com/Zhlzt6m.png
How can I deactivate it if it’s not even giving me the option to?
Interesting. Are you using a proxy or other connection method which could alter the connecting url?
You can send us a private message by clicking our user name and using the author contact form. Include your purchase code and explicitly list the exact website you would like to deactivate, and we can deactivate it for you from our end. Any deactivated site will cease to function for decryption and other accessibility of encrypted data.
Hello
It is the www added to your domain. You could change this back in your WP settings very briefly to match exact URLs again to deactivate or activate. Only writing for others benefit to resolve any similar issue. We already deactivated via your email from the contact form.
Once we updated the plugin, one of our forms started sending blank CC information – before the update, any user with permissions could see the encrypted info. Please advise.
Hello
Hello, did you recently migrate the site or update the plugin? Please check your encryption website key. This is almost always due to using a custom website key and not checking it after an update to be sure it did not revert to the auto key from update where it did not correctly repopulate or after migrating the site. Or if you migrated the site the auto key would change based on the new WP installation. Replace it with the correct key you originally used to encrypt the data.
We strongly advise against ever using a custom website key over the auto key for this reason as warned against doing during setup unless you have to from a site migration. We would advise to manually decrypt any data under it and re encrypt under the auto key. Or you can check the website key for correct repopulation after any of this plugins updates to be sure it is correct and did not revert to the auto key.
Additionally our plug-in does not encrypt CC info as gravity forms does not even store it. Did you have some custom programming done to store and encrypt this data?
We use an auto key and no custom programming was done. We can see the encypted data on the other forms but not on the one. We could see the infromation before we updated the plugin.
Please check your key to be sure it matches the one the plug-in was set up with.
Are you referring to credit card data? And is this on the site viewing entries, or in email notifications?
What version did you upgrade from-> to?
How would I know if its the same one? Referring to viewing the data as well as emails. We are using the latest version of the plugin. As stated earlier, we can see the encypted info for other forms, just not the one.
Hello
You would check the current one against the one copied and securely backed up from setup.
If you can see all other forms data it is unlikely that the key is off though, so this is likely not the issue.
You can take the form down publicly while you work though the issue as a suggestion if possible.
If the form having issues uses a different type of field that has changed in gravity forms you may want to try removing encryption from the field or adding a new field to replace it and re adding encryption.
Please answer the following to help us assist.
1. Are you referring to credit card field data?
2. Are you speaking about old data or also the new data from newly submitted entries.
Referring to CC field data This refers to old and new data.
Is the CC field data the only field having an issue?
The CC field is blank when we look at entries for this particular form
Our plugin does not process or change CC fields in any way. They are not a supported field type for our plugin and it does not interact with them. Unless some type of PHP error is happening directly from our plug-in preventing the CC data to be printed there would not be a connection. Are there any errors being reported in the WP or gravity forms logs or onscreen when processing a form submission?
A suggestion to fix any possibly corrupt field would be to try replacing the CC field by deleting it and re adding a new one with the same config. The CC field (stripe and others) changed somewhat recently with gravity forms and could be corrupted on that form from the update of gravity forms or the CC add on plugin update.
As always, making a backup before any changes is recommended
That doesn’t make sense. Are you saying that the CC field has to be a text/number field? It was working fine before the plugin was updated. There have been no errors either.
Hello
We are suggesting replacing the existing CC field by deleting it and replacing it with a new CC field of the exact same type and configuration in its options added to the form in the exact same place as the existing field may be corrupt.
From our plug-in side. The CC field has never been supported or able to add encryption to. It is not an option to encrypt CC fields because gravity forms does not actually store CC data. It interacts with the processors on submission via SSL and then drops the data so there is nothing to encrypt.
Are you using some type of add-on to retain/store the CC data?
To try to help with what I presume you are seeing, The most you should see for CC card data from Gravity Forms is the last 4 digits of the card # and the rest is covered in x’s, ie: XXXXXXX
But again this is not from our plug-in. Gravity forms does this and it does not even have the rest of that data behind the Xs. This is done for PCI compliance and Xs are only there for display to show you are only seeing the last 4 digits. This is documented on Gravity Forms documentation here:
https://docs.gravityforms.com/credit-card-field/Without using an additional plugin to retain the full card data (unnecessary for even recurring payments etc, and strongly never recommended) this is never stored, and either way our plug-in would not ever interact with the card data.
If the above is what you are experiencing. The CC field data the field is not corrupt. This is normal operation.
I cannot say how you could have ever viewed the cc data previously without an additional add-on or plugin to do so, but we can say it is independent of our plug-in.
We are using YOUR plugin to decrypt the information. So certain users can see the information while for the rest its decrypted. Are we even on the same page here?
While the other forms show the decrypted information for the form fields with no issues, this one particular form after the update shows just a blank space. No information period – either decrypted or encrypted.
Hello
To restate.
The credit card field type is not encrypted or able to be encrypted, and our plugin does not directly interact with the CC field type in any way whatsoever.
You have stated that all of the other fields on the form that our plug in does actually interact with are all working correctly, and that you have no reported errors of any kind with our plug-in or otherwise in processing forms. The issue is both in notifications and in viewing entries on the website.
It appears that the you first noticed this issue after an update of our plug-in so the assumption is that it is due to our plug-in. However, most times multiple plugins are updated at a time or some were very recently, and the point of noticing an issue on plugin update is not necessarily the time it started or the plugin it is related to.
There are some easy ways to verify this or at least narrow it down.
1. Is it verified that it was working immediately before update of this plugin alone, and stopped immediately after?
2. Have you tried the general gravity forms solution we recommended of simply replacing the CC field with an identical field? Without implementing any suggested solutions, we cannot resolve any issue.
3. Have you tried updating if available gravity forms, your CC processing add-on, and WP to be sure you are running the latest versions with all fixes etc.?
4. Have you tried just rolling back our plugin version and testing again, or perhaps temporarily disabling our plugin and testing? If it is directly caused by our plugin, even without any error being listed , this should resolve the issue to just revert to the previous version and can be verified after updating again.
I was able to see the encrypted data and now it remains encrypted even on my login with any changes to our settings. I need help seeing the data.
Hello
Hello, did you recently migrate the site or update the plugin? Please check your encryption website key. This is almost always due to using a custom website key and not checking it after an update to be sure it did not revert to the auto key from update where it did not correctly repopulate or after migrating the site. Or if you migrated the site the auto key would change based on the new WP installation. Replace it with the correct key you originally used to encrypt the data.
We strongly advise against ever using a custom website key over the auto key for this reason as warned against doing during setup unless you have to from a site migration. We would advise to manually decrypt any data under it and re encrypt under the auto key. Or you can check the website key for correct repopulation after any of this plugins updates to be sure it is correct and did not revert to the auto key.
