BuddyBoss has several unique requirements that must be configured properly for optimal platform functionality.
Disable conflicting firewall rule for BuddyBoss app
In the file /var/www/conf/comodo_litespeed/26_Apps_WordPress.confremove or comment out the following (around like 73):
SecRule REQUEST_URI "@contains /wp-json/wp/v2/users" "id:225170,chain,msg:'COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)',phase:2,deny,status:403,log,t:none,t:urlDecodeUni,t:normalizePath,t:lowercase,rev:3,severity:2,tag:'CWAF',tag:'WordPress'"
SecRule &REQUEST_COOKIES_NAMES:/^wordpress_logged_in_[0-9a-fA-F]{32}$/ "@eq 0" "chain,t:none"
SecRule &REQUEST_COOKIES_NAMES:/^wordpress_[0-9a-fA-F]{32}$/ "@eq 0" "t:none"Then restart Litespeed on each app server or restart the entire application layer.
Enable GD support in PHP
In /usr/local/lsws/lsphp/etc/php.d/20-gd.ini uncomment line 2:
extension=gd.soThen restart LiteSpeed or the entire application server.
Enable ImageMagick support in PHP
In /usr/local/lsws/lsphp/etc/php.d/40-imagick.ini uncomment line 2:
extension=imagick.soThen restart LiteSpeed or the entire application server.
Configure OPcache
More info coming soon.