Huge, isolated, animated slideshow

I really like these themes for focusing almost exclusively on one’s portfolio. They feature a massive, animated slideshow that keeps the visitor’s attention on the images. In some cases, a shadow underneath the slideshow, combined with the animation, creates a 3-D effect to put the portfolio right in the visitor’s face.

• http://themeforest.net/item/black-eve-wordpress-version/full_screen_preview/93185
• http://themeforest.net/item/novatorix-10-in-1-business-portfolio-and-blog/full_screen_preview/111717
• http://themeforest.net/item/iportfolio/full_screen_preview/75877
• http://themeforest.net/item/display-3-in-1-business-portfolio-wordpress-/full_screen_preview/74542
• http://themeforest.net/item/7-in-1-business-success-wordpress-theme/full_screen_preview/88463
• http://themeforest.net/item/flexolio-porfolio-blog-business-cms-wp-theme-/full_screen_preview/81146
• http://themeforest.net/item/discovery-wordpress/full_screen_preview/83792
• http://themeforest.net/item/assurance-wordpress-cms-theme/full_screen_preview/84092

Confined slideshow

These themes are a bit more modest than the first collection. They still accentuate a portfolio of images, but in a less flashy way. The slideshow exists within a defined banner area, so the look is a little more traditional. These templates would be a better fit for businesses.

• http://themeforest.net/item/vulcan-minimalist-business-wordpress-theme-4/full_screen_preview/111625
• http://themeforest.net/item/creation-minimalist-business-wordpress-theme/full_screen_preview/113734
• http://themeforest.net/item/corporate-business-portfolio-wordpress-theme-/full_screen_preview/81507
• http://themeforest.net/item/luxury-wordpress-template/full_screen_preview/83220
• http://themeforest.net/item/tylium-premium-wordpress-theme/full_screen_preview/68229
• http://themeforest.net/item/shapeshifter-one-page-infinite-possibilities/full_screen_preview/75759
• http://themeforest.net/item/delericon-businessportfolio-template-wordpress/full_screen_preview/76635
• http://themeforest.net/item/twicet-business-portfolio-wordpress-5-in-1/full_screen_preview/49773
• http://themeforest.net/item/benzo/full_screen_preview/50977
• http://themeforest.net/item/creative-wordpress-theme-9-in-1/full_screen_preview/84549
• http://themeforest.net/item/levitation-wordpress-business-portfolio-4-in-1/full_screen_preview/60299
• http://themeforest.net/item/mapollo/full_screen_preview/60268
• http://themeforest.net/item/elite-force-premium-wordpress-theme/full_screen_preview/84456

Partial-banner image rotation

These themes use only part of the banner to display a rotating group of images, leaving an area for text next to the images. This allows a short message or tagline to get equal placement. These are the most conservative themes.

http://themeforest.net/item/designer-portfolio-elegant-template-wordpress/full_screen_preview/96810
• http://themeforest.net/item/bluelight-wordpress-20-portfolio-and-blog/full_screen_preview/40433
• http://themeforest.net/item/quadro-wordpress-version/full_screen_preview/79966
• http://themeforest.net/item/concept-wordpress-a-premium-wp-theme/full_screen_preview/53845
• http://themeforest.net/item/lightcorners/full_screen_preview/82046
• http://themeforest.net/item/concise/full_screen_preview/66396
• http://themeforest.net/item/spotlight-portfolio-theme-wordpress-edition/full_screen_preview/80959
• http://themeforest.net/item/transformer/82402
• http://themeforest.net/item/scroller-wordpress-theme/full_screen_preview/83162
• http://themeforest.net/item/advantage-wordpress-theme-4-in-1/full_screen_preview/88112
• http://themeforest.net/item/durable-5-in-1-business-portfolio-wordpress/full_screen_preview/84440
• http://themeforest.net/item/equator-global-community-wordpress-theme/full_screen_preview/65549
• http://themeforest.net/item/oxygene-clean-environment/full_screen_preview/62657
• http://themeforest.net/item/foliothemes-portfolio/full_screen_preview/66448
• http://themeforest.net/item/eclectic-premium-wordpress-theme/full_screen_preview/63212
• http://themeforest.net/item/bitwork-portfolio-and-business-wordpress-theme/full_screen_preview/87092
• http://themeforest.net/item/business-showcase-corporate-layout-html/full_screen_preview/50191
• http://themeforest.net/item/corpomino/full_screen_preview/63883
• http://themeforest.net/item/photography-and-portfolio-wordpress-theme/full_screen_preview/82048
• http://themeforest.net/item/kava-wp-theme-for-cms-business-portfolio-blog/full_screen_preview/82551

Creative themes

This last group of themes break with the conventions of the above themes and use full-screen-width or otherwise larger-than-normal images that rotate behind the other elements of the site. Undeniably attention-grabbing, but also slower to load.

• http://themeforest.net/item/the-architect-wp-edition/full_screen_preview/113414
• http://themeforest.net/item/photome-photography-and-portfolio-template-wp/full_screen_preview/113474
• http://themeforest.net/item/wp-portfolius-v9/full_screen_preview/81863
• http://themeforest.net/item/photo-graphic-studio-wordpress/full_screen_preview/36070
• http://themeforest.net/item/desktop-press-creative-wordpress-theme/full_screen_preview/87968
• http://themeforest.net/item/luna-premium-wordpress-theme/full_screen_preview/85233

Single page

These are single-page web sites. These types of pages are great as business cards or resumes, or as place holders while a larger site is developed.

• http://themeforest.net/item/galeria-single-page-wordpress-portfolio/full_screen_preview/105848
• http://themeforest.net/item/path-finder-keyboard-navigation-wordpress-theme/full_screen_preview/109983

I’m a big fan of Akismet, but I also want to block as much spam as possible before it is caught by Akisment in order to reduce the number of database entries.

One thing this method does not do is rename and hide the path to the form processing script, but it makes that technique obsolete, anyway.

In the timestamp handshake method, a first timestamp is generated and written as a hidden input field when the post page loads. When the comment is submitted, a second timestamp is generated by the comment-processing script and it and the page-load timestamp are saved as variables. If the page-load timestamp variable is blank, which should be the case if the spambot uses any other page to populate the comment, the script will die. The page-load timestamp is then subtracted from the comment-submission timestamp. If the comment was submitted less than 60 seconds after the post page was loaded, the script dies with a descriptive error message. Hopefully, this will separate the bots’ comments from those left by thoughtful human visitors who have taken the time to read your post. If a human visitor does happen to submit a comment within 60 seconds of the page loading, he or she can click his or her browser’s back button and try resubmitting the comment again in a few seconds.

One drawback is that this method does involve editing a core file – wp-comments-post.php. You’ll have to re-edit it each time you upgrade WordPress, which is a nuisance, I know. The good thing is that if you forget to do this, people can still comment – you just won’t have the anti-spam protection.

Note that the instructions in the following steps are based on the code in WordPress version 2.3 and the Kubrick theme included with that release. You may need to adjust for your version of WordPress.

Step 1 – Add the hidden timestamp input field to the comment form

Open the comments.php file in your current theme’s folder and find the following lines:

<p><textarea name="comment" id="comment" cols="100%" rows="10" tabindex="4"></textarea></p>

<p><input name="submit" type="submit" id="submit" tabindex="5" value="Submit Comment" />

Add the following line between them:

<p><input type="hidden" name="timestamp" id="timestamp" value="<?php echo time(); ?>" size="22" /></p>

Step 2 – Modify the wp-comments-post.php file to create the second timestamp and perform the comparison

Open wp-comments-post.php and find the lines:

$comment_author       = trim(strip_tags($_POST['author']));
$comment_author_email = trim($_POST['email']);
$comment_author_url   = trim($_POST['url']);
$comment_content      = trim($_POST['comment']);

Immediately after them, add the following lines:

$comment_timestamp    = trim($_POST['timestamp']);
$submitted_timestamp  = time();

if ( $comment_timestamp == '' )
	wp_die( __('Hello, spam bot!') );

if ( $submitted_timestamp - $comment_timestamp < 60 )
	wp_die( __('Error: you must wait at least 1 minute before posting a comment.') );

That’s it; you’re done.

Credits

Thanks to Jonathan Bailey for suggesting the handshake in his post at http://www.plagiarismtoday.com/2007/07/24/wordpress-and-comment-spam/.

From my observations, it seems that the spambots are first given a keyword phrase to hunt down. They go through the search engine results for pages with that keyword phrase, and follow the link to each page. If the page happens to be a WordPress post, they pass their spammy content to the comment form. Apparently, they do this in a few different ways. Some bots seem to inject their content directly into the form processing agent, a file in the blog root named wp-comments-post.php, using the WordPress default form field IDs. Other bots seem to fill in any fields they come across before submitting the form. Still others seem to fill out the form, but ignore any unexpected text input fields. All of these behaviors can be used against the spammers.

One anti-spam technique that has been used for years is to rename the script that handles the form processing. If you look at the HTML of a WordPress post with comments enabled, you’ll see a line that reads:

The ‘wp-comments-post.php’ file handles the comment form processing, and a good amount of spam can be avoided by simply renaming it. Many bots will try to pass their content to directly to that script, even if it no longer exists, to no effect.

More sophisticated bots will look through the HTML for the URL of the form processing script, and in doing so will learn the URL of the newly renamed script and pass their contents to that script instead. The trick is to prevent these smarter bots from discovering the URL of the new script. Because it seems that the bots aren’t looking through external JavaScript files yet, that’s where we will hide the URL. (If you do use this technique, it would be very considerate to tell your visitors that JavaScript is required to post comments.)

Step 1

Rename the wp-comments-post.php file to anything else. Using a string of random hexadecimal characters would be ideal. Once you’ve renamed the file, enter the address of the file in your browser. The page should be blank; if you get a 404 error, something is wrong. Make a note of that address, because you’ll need it later. Verify that the wp-comments-post.php file is empty or is no longer on your server.

(Because I was curious about how many bots were hitting the wp-comments-post.php file directly, I replaced the code with a hitcounter. Sure enough, bots are still hitting the file directly, even though there is no longer any path leading to it.)

Step 2

Open up the ‘comments.php’ file in your theme directory. Find the line:

and change the value of the action attribute to a number sign (or pound sign, or hash), like so:

Any bots that come to the page and search for the path to your comment processing script will just see the hash, so they will never discover the URL to the real script. This change also means that if a bot or a visitor tries to submit the form, the form will fail, because a WordPress single post page isn’t designed to process forms. We want the bots to fail, but we’ll need to put things right for humans.

If you are tempted to designate a separate page for the action value, note that the only people likely to ever see this page are visitors without JavaScript enabled who fill out the form.

Step 3

Create a new JavaScript file with the following code.

function commentScriptReveal() {
	// enter the URL of your renamed wp-comments-post.php file below
	var scriptPath = "http://yourdomain.com/renamed-wp-comments-post.php";
	document.getElementById("commentform").setAttribute("action", scriptPath);
}

Enter the address of your renamed file as the value for the variable scriptPath. The function commentScriptReveal, when called, will find the element with the ID ‘commentform’ (that’s the comment form) and change its action attribute to the URL of the renamed file, allowing the form to be successfully sent to the processing agent.

Save the file as ‘commentrevealer.js’ and upload it to the /scripts/ directory in your blog’s root. Add the script to your theme’s header.php file:

Now we just need to decide how to call the commentScriptReveal function.

Step 4

The ideal method of calling the function would be the one where the human visitor always calls the function, and the bot never calls it. To do this, we need to know something about how the bots work.

Step 4a — For spam bots that ignore unexpected text input fields:

If the bots ignore unexpected text input fields, we can simply add a field, label it ‘required’, and attach the script revealer to that field with one of the following event handlers:

• onchange triggered when the user changes the content of a field
• onkeypress triggered when a keyboard key is pressed or held down
• onkeydown triggered when a keyboard key is pressed
• onkeyup triggered when a keyboard key is released
• onfocus triggered when an element gets focus
• onblur triggered when an element loses focus

I’m intentionally vague about how to trigger the function commentScriptReveal because this technique will be efficacious longer if different people use different events. Furthermore, the text input field doesn’t necessarily need to do anything, its contents will just be discarded when the form is processed. In fact, it doesn’t even need to be a text input field. It can be any form control—a button, a checkbox, a radio button, a menu, etc. We just need human visitors to interact with it somehow. Those bots that skip over the control won’t trigger the revealer event, and your visitors (who always follow directions) will.

If everyone goes about implementing this method in a slightly different way, the spammers should find it much more difficult to counter.

For further reading on JavaScript events: QuirksMode – Javascript – Introduction to Events.

Step 4b — For spam bots that add text to every input field they come across:

If the bots are hitting every text input field with some text, follow Step 4a, and then create a second JavaScript file, named ‘commentconcealer.js’, with the following code:

function commentScriptConceal() {
	// enter the URL of your renamed wp-comments-post.php file below
	var scriptPath = "#";
	document.getElementById("commentform").setAttribute("action", scriptPath);
}

The function commentScriptConceal re-rewrites the action attribute back to “#“.

Upload the file and add the script to your theme’s header.php file:

Add another text input field somewhere below the one you added in Step 4a. Hide this field from visitors with {display: none;}. Call the function with an onfocus (or onblur, etc.) event on the second input field:

OMG Don't Touch This Field!?!?

The legitimate visitors will never trigger this, but any bot that interacts with every field on a page will.

Step 5

If you chose to use a text input field in Step 4a, consider making that a challenge-response test. It’s always a good idea to use a server-side check to back up a client-side check. I like to ask the question “What color is an orange?” as a tip of the hat to Eric Meyer. This challenge-response test can be integrated into wp-comments-post.php, so that if the user fails the test, the form submission dies in the same way it would if a required field were left blank.

For this example, let’s ask the question “What color is Kermit the Frog?” The answer, of course, is green.

Open your wp-comments-post.php file, and (in WP version 2.2.2) somewhere around line 31 add:

$comment_verify = strtolower(trim($_POST['verify']));

This will trim any whitespace from the answer to the challenge question, and convert the characters to lowercase.

Around line 45, find the lines:

} else {
	if ( get_option('comment_registration') )
		wp_die( __('Sorry, you must be logged in to post a comment.') );
}

And add the following lines to them, as so:

} else {
	if ( get_option('comment_registration') )
		wp_die( __('Sorry, you must be logged in to post a comment.') );
	if ( $comment_verify != 'green' )
		wp_die( __('Sorry, you must correctly answer the "Kermit" question to post a comment.') );
}

This will check the visitor’s answer against the correct answer, and if they don’t match, the script will stop and the comment won’t be submitted. The visitor can hit the back button to change the answer.

Now we need to add the challenge question to the theme file comments.php. Find the lines:

Website

And right below them, add the following lines:

What color is Kermit the Frog? (anti-spam) (required)

(You may need to update all the tabindex numbers after you add this field.)

That’s it, your visitors will now have to correctly answer the Kermit the Frog question to submit the form.

Further customization

The methods described here just scratch the surface of what can be done to obfuscate the comment handling script. For example, the URL could be broken up into parts and saved as multiple variables. It could have a name comprised of numbers, and the commentScriptReveal JavaScript could perform math to assemble it.

I can’t imagine I’m the first person to come up with this, but… the user could be required to complete a challenge-response question, the correct answer to which would be used as part of the name of the script—the URL to the script doesn’t exist anywhere until the visitor creates it.

But, there are some people who don’t want to impose even a minor inconvenience on their visitors. If you don’t like challenge-response tests, what about using JavaScript to invisibly check the screen resolution of the user agent? And we haven’t even considered using cookies yet.

Credits

Many thanks to Jeff Barr for demonstrating how to put a challenge-response test into the wp-comments-post.php file in his post WordPress Comment Verification (With Source Code). I had been using only JavaScript for validation up until that point, shame on me.

Many thanks also to Will Bontrager for writing a provocative explanation of how to temporarily hide the form processing script using JavaScript in Spamming You Through Your Own Forms.

Huge thanks to Eric Meyer, who wrote a pre-plugin, challenge-response test script called WP-Gatekeeper for a very early version of WordPress.

I’ve described two similar methods for defeating contact form spam by hiding the webmail script in an eariler post.

I’ve fixed some errors that I was experiencing with version 2.0 (dated 2007-02-02) of the Sociable WordPress plugin by Peter Harkins. Specifically, when running WordPress 2.2+, I would get the following warnings when saving changes:

Warning: implode() [function.implode]: Bad arguments. in PATH\wp-content\plugins\sociable\sociable.php on line 651

Warning: Invalid argument supplied for foreach() in PATH\wp-content\plugins\sociable\sociable.php on line 762

For each button, I’d get another error:

Warning: in_array() [function.in-array]: Wrong datatype for second argument in PATH\wp-content\plugins\sociable\sociable.php on line 797

I think I’ve narrowed the cause down to the way the plugin was writing the newly selected options to the database.

In addition to fixing those warnings, I also corrected a few behaviors:

1. The StumbleUpon button didn’t send the URL to the correct address at http://www.stumbleupon.com/. The button now works correctly, and also sends the page’s title.
2. In Options -> Sociable, leaving the field for “text displayed in front of the icons” blank now results in no extraneous code being inserted into the page. Leaving the field blank also eliminates the popup “These icons link to social bookmarking sites…” text.
3. The links to the social networking sites are now all rel="nofollow".

Recently

• 07.30Ardamis.com’s Google Page Speed score is 93/100
• 07.21Ardamis.com is HTML5
• 07.17How to send the correct headers to leverage browser caching
• 07.14I want this Microsoft LifeCam Cinema webcam
• 07.13One million inbound links

Usage

1. Upload and activate the plugin
2. Edit your theme, replacing wp_get_archives('type=postbypost') with ard_get_archives();

The function ard_get_archives(); replaces wp_get_archives('type=postbypost'), meaning you don’t need to specify type=postbypost. You can use all of the wp_get_archives() parameters except ‘type’ and ‘show_post_count’ (limit, format, before, and after). In addition, there’s a new parameter: show_post_date, that you can use to hide the date, but the plugin will show the date by default.

show_post_date
(boolean) Display date of posts in an archive (1 – true) or do not (0 – false). For use with ard_get_archives(). Defaults to 1 (true).

Customizing the date

By default, the plugin displays the date as “(MM/DD/YYYY)”, but you can change this to use any standard PHP date characters by editing the plugin at the line:

$arc_date = date('m/d/Y', strtotime($arcresult->post_date));  // new

The date is wrapped in tags, so you can style the date independently of the link.

How does it work?

The plugin replaces the ‘postbypost’ part of the function wp_get_archives, and adds the date to $before. The relevant code is below. You can compare it to the corresponding lines in general-template.php.

	} elseif ( ( 'postbypost' == $type ) || ('alpha' == $type) ) {
		('alpha' == $type) ? $orderby = "post_title ASC " : $orderby = "post_date DESC ";
		$arcresults = $wpdb->get_results("SELECT * FROM $wpdb->posts $join $where ORDER BY $orderby $limit");
		if ( $arcresults ) {
			$beforebefore = $before;  // new
			foreach ( $arcresults as $arcresult ) {
				if ( $arcresult->post_date != '0000-00-00 00:00:00' ) {
					$url  = get_permalink($arcresult);
					$arc_title = $arcresult->post_title;
					$arc_date = date('m/d/Y', strtotime($arcresult->post_date));  // new
					if ( $show_post_date )  // new
						$before = $beforebefore . '' . $arc_date . '';  // new
					if ( $arc_title )
						$text = strip_tags(apply_filters('the_title', $arc_title));
					else
						$text = $arcresult->ID;
					echo get_archives_link($url, $text, $format, $before, $after);
				}
			}
		}
	}

The lines ending in ‘// new’ are the only changes.

So you want the date to appear after the title? Edit the plugin to modify $after, instead:

	} elseif ( ( 'postbypost' == $type ) || ('alpha' == $type) ) {
		('alpha' == $type) ? $orderby = "post_title ASC " : $orderby = "post_date DESC ";
		$arcresults = $wpdb->get_results("SELECT * FROM $wpdb->posts $join $where ORDER BY $orderby $limit");
		if ( $arcresults ) {
			$afterafter = $after;  // new
			foreach ( $arcresults as $arcresult ) {
				if ( $arcresult->post_date != '0000-00-00 00:00:00' ) {
					$url  = get_permalink($arcresult);
					$arc_title = $arcresult->post_title;
					$arc_date = date('j F Y', strtotime($arcresult->post_date));  // new
					if ( $show_post_date )  // new
						$after = ' (' . $arc_date . ')' . $afterafter;  // new
					if ( $arc_title )
						$text = strip_tags(apply_filters('the_title', $arc_title));
					else
						$text = $arcresult->ID;
					echo get_archives_link($url, $text, $format, $before, $after);
				}
			}
		}
	}

Download

Get the files here: (Current version: 0.1 beta)

Download the DateMe WordPress Plugin

This plugin allows you to add information from your Halo 3 Service Record to your WordPress blog.

The plugin displays your emblem, rank and grade, but with a little editing it could also display total the total number of games played, the date and time of the last game played, and any other information on the Halo 3 Service Record page at Bungie.net.

Installation

The download includes:

• ardamis-halo3.php (put this in your /plugins/ directory)
• halo3stats.css (copy and paste the contents into your theme’s style.css)

The plugin attempts to create a text file (halo3_cache_YOURTAG.txt) for use as a cache in your blog’s root folder automatically. Some server configurations may not permit the plugin to create this file and you’ll see resultant errors; in this case, you may have to manually create a file with that name and upload it to your blog’s root (and perhaps set permissions).

Usage

The plugin accepts one argument: your gamertag.

Insert the code:

<?php if (function_exists('ardamis_halo3')) ardamis_halo3('YOURTAG'); ?>

into a template file wherever you want the Service Record to appear, replacing YOURTAG with your actual Xbox Live gamertag, ex.:

<?php if (function_exists('ardamis_halo3')) ardamis_halo3('ardamis'); ?>

Download

Get the files here: (Current version: 1.0 beta)

Download the Halo 3 WordPress Plugin

How can I add the Service Record to a post?

Thanks to a really neat plugin, The Execution of All Things, you can call functions from any activated plugin from within a post. Once you have both the Halo 3 Service Record plugin and the wp-exec plugin installed, you can include the sig in a post with the line:

<exec type="function" name="ardamis_halo3" params="YOURTAG" />

WordPress version 2.3 introduces native support for ‘tags’, a method of organizing posts according to key words. Apricot has been updated to use this native tag system. The tag cloud will appear in the sidebar and the tags for each post appear above the meta data.

I used Apricot on this site for over a year, making little tweaks and adjustments the whole time, so the theme is pretty thoroughly tested in a variety of different browsers and resolutions. While the markup is derived from the WordPress default theme, Kubrick, I’ve added a few modifications of my own. I’ve listed some of these changes below.

header.php

• Title tag reconfigured to display “Page Title | Site Name”

single.php

• Post title is now wrapped in H1 tags
• Metadata shows when the post was last modified (if ever)
• Added links to social bookmarking/blog indexing sites: Del.icio.us, Digg, Furl, Google Bookmarks, and Technorati
  I’ve published a fix for the Sociable plugin, which I’m now using instead of hard-coded links
• If the Other Posts From Cat plugin is active, the theme will use it
• Comments by the post’s author can be styled independently

page.php

• Displays the page’s last modified date (instead of date of publication)

index.php

• Displays the full text of the latest post and an excerpt from each of the next nine most recent posts
• Native support for the_excerpt Reloaded plugin, if active

sidebar.php

• Displays tag cloud, if tags are enabled

search.php

• If no results found, displays the site’s most recent five posts

404.php

• Displays the site’s most recent five posts

footer.php

• Archive and index page titles + blog name wrapped in H1 tags

Screen shot

Search engine optimization

Apricot takes care of most of the on-page factors that Google values highly. It places the post’s title at the beginning of the title tag and in a H1 tag near the top of the page. It is free of extraneous markup and the navigation is easily spiderable. It generates what I think is a pretty logical site structure from the various post and category pages, though I have yet to study the effect of the new tagging system.

I’ve had a few top-ranked pages with this and other structurally similar layouts. Your mileage with the search engines may vary, but the layout uses fundamentally sound structural markup, which should give your site a good start.

Download

Download the Apricot WordPress Theme (40kb)

What if I want to use an image as a header?

Lots of people would rather use a graphic as a header, including me, but the WordPress guys insist on each theme uploaded to http://wordpress.org/extend/themes/ display the blog title and tag line.

If you want to replace the blog title and tag line with an image, download this zip file and follow these instructions (also included in readme.txt).

1. Make a PNG image, name it “header.png” and upload it to the /wp-content/themes/apricot/images/ folder. It should be 800px wide by 130px tall, or less.

2. Replace the original Apricot theme’s header.php file with the header.php file from this folder.

Download the Apricot Image Header (4kb)

This plugin allows you to add an XHTML and CSS Halo 2 Stats sig to your WordPress blog, which you can then style to fit your layout. The plugin displays your emblem, your level in each of the ranked game types, and your overall rank, which is equal to the highest ranked gametype. If Bungie calculates this differently, I can’t tell. It also displays the total number of games played and the date and time of your last game. By default, the plugin uses the background from your profile page at Bungie.net: http://www.bungie.net/Account/Profile.aspx?player=ardamis. You can change this in your profile preferences.

It’s a pretty neat set up already, but the best part is that because it’s all XHTML and CSS, it is completely customizable. Change the font or the colors, move the elements around, even hide some of them, whatever, to suit your site. If you’re comfortable with PHP, you can even edit the plugin to display more or less information. I’ve written a brief explanation about how the plugin grabs the data in the post at Xbox 360 Gamercard WordPress Plugin.

Installation

The download includes:

• halo2stats.php (put this in your /plugins/ directory)
• halo2stats.css (copy and paste the contents into your theme’s style.css)

The plugin attempts to create a text file (halo2_cache_YOURTAG.txt) for use as a cache in your blog’s root folder automatically. Some server configurations may not permit the plugin to create this file and you’ll see resultant errors; in this case, you may have to manually create a file with that name and upload it to your blog’s root (and perhaps set permissions).

Usage

The plugin accepts two arguments: your gamertag and ‘nolinks’, a parameter to hide links to this page, the detailed game stats from Bungie.net, and the recent games RSS feed.

Insert the code:

<?php if (function_exists('ardamis_halo2')) ardamis_halo2('YOURTAG'); ?>

into a template file wherever you want the sig to appear, replacing YOURTAG with your actual Xbox Live gamertag, ex.:

<?php if (function_exists('ardamis_halo2')) ardamis_halo2('ardamis'); ?>

If you don’t want to display the various off-site links, add the ‘nolinks’ argument:

<?php if (function_exists('ardamis_halo2')) ardamis_halo2('YOURTAG',nolinks); ?>

Limitations

The data we are interested in is served as HTML, not RSS. Incorporating an RSS feed into a page is pretty simple. Bungie does offer an RSS feed of recent game stats, but the feed is missing some crucial player stats, such as overall rank, rank by game type, games played and won per game type, and percentage experience needed for the next rank. All of this information, except the overall ranking, is available on Bungie’s player stats page. I don’t need all of this data, but I would like to be able to see my overall ranking. Unfortunately (there always seems to be an unfortunately), the Bungie player stats page doesn’t always provide accurate and complete information (you’ll often see an incorrect “No Games Played” message in place of your rank for a specific game type), and each change Bungie makes to that page has the potential to break the plugin. This is because the regular expression matching method I use to extract it expects to see specific lines of HTML code in the page. Should the layout change, the plugin might not find what it’s looking for, and so the whole system is both unreliable and fragile. For example, the plugin would have broken when Bungie changed the site around to add a section for Halo 3 stats, and it broke when the stats were reset and the new maps added on May 10, 2007. I’ll try to maintain this thing and quickly update it if/when Bungie’s changes break it, but I’m making no promises about future performance or usability.

The plugin takes the ranking for each game type and then sorts through them to find the highest one. The highest individual game type ranking is displayed as the player’s overall ranking. If Bungie has a more sophisticated method of determining overall rank, I’m not aware of it. But because of the occasional “No Games Played” message, the overall ranking might be incorrect.

Download

Get the files here: (Current version: 1.4 beta)

Download the Halo 2 Stats WordPress Plugin

Can I get this as a WordPress Widget?

Honestly, the plugin is much more flexible than a widget. Widgets are limited to your sidebar, while the plugin can be used in any template. Furthermore, this thing is 420 pixels wide, is that going to fit in your sidebar? Maybe some day when I have nothing else coming down the pike I’ll modify my plugins to be used as widgets, but not today.

How can I add the stats to a post?

Thanks to a really neat plugin, The Execution of All Things, you can call functions from any activated plugin from within a post. Once you have both the Halo 2 stats plugin and the wp-exec plugin installed, you can include the sig in a post with the line:

<exec type="function" name="ardamis_halo2" params="YOURTAG" />

How can I add the stats to a non-WordPress site?

I’ve been asked a few times for a way to get the same functionality outside of WordPress. I’ve put together a PHP script that you can include from any page with the line:

<?php include 'FULL-PATH-TO-SCRIPT/halo2stats-standalone.php?h2tag=YOURTAG'; ?>

Obviously, you’ll replace ‘YOURTAG’ with your gamertag. If you have spaces in your gamertag, replace each space with %20.

Download the Halo 2 Stats Standalone Script

I’m getting an error message

If your server does not have cURL enabled, you’ll get an error message that reads something like Fatal error: Call to undefined function curl_init() in PATH\wp-content\plugins\halo2stats.php on line 64. The best solution is to ask your host to recompile PHP with cURL. If that option is unavailable, I’ve provided an alternative plugin that uses the function file_get_contents(), but a number of hosts have disabled the URL retrieving capabilities in file_get_contents() for security reasons. Download the FGC Halo 2 Stats WordPress Plugin only if you are getting an error message with the regular download.

If you are trying to use the stand-alone script, but getting an error message similar to Warning: include(halo2stats-standalone.php?h2tag=YOURTAG) [function.include]: failed to open stream: Invalid argument in PATH, you are not using the full URL in the path to the stand-alone script. You must use the full URL in your include whenever you use variables in the URL. Otherwise, the server looks for a file named halo2stats-standalone.php?h2tag=YOURTAG instead of executing the file halo2stats-standalone.php with the variable ?h2tag=YOURTAG.

I’ve put together a WordPress plugin that will display a customizable XHTML and CSS Xbox 360 gamer card. There are plenty of sites out there that will make good looking gamer cards using image files, but this method will give you complete control over the appearance. It also acts like a gamer card, with a link to your Xbox Live profile and “compare to” links to your five most recently played games, something the image file cards can’t do.

For those of you who want a raw PHP script with the same functionality, I’ve included one farther down in the post.

°ardamis

Rep:

5485Gamerscore:

RecreationZone:

How the plugin works

The plugin uses cURL, a command line tool for transferring files with URL syntax, to read the contents of your Xbox Live gamer card from http://gamercard.xbox.com/YOURTAG.card into a string, and then uses the PHP function preg_match to perform regular expression matching on that string. The various elements of your gamer card are extracted and then assigned to variables for later output.

The plugin attempts to create a unique text file for each gamertag (gamercard_cache_YOURTAG.txt) for use as a cache in your blog’s root folder automatically. This is done to reduce the number of times the target HTML page must be accessed and parsed and therefore reduce server load and page load time. Some server configurations may not permit the plugin to create this file and you’ll see resultant errors; in this case, you may have to upload a file with that name and perhaps set permissions on the file. You can edit the plugin to adjust how old the cache can grow before the script refreshes the information from gamercard.xbox.com.

Usage

The plugin accepts two arguments: the first is your gamertag; the second, which is optional, toggles whether the recently played games are displayed.

Insert the code:

<?php if (function_exists('gamercard')) gamercard('YOURTAG'); ?>

into a template file wherever you want the gamer card to appear, replacing YOURTAG with your actual Xbox Live gamertag, ex.:

<?php if (function_exists('gamercard')) gamercard('ardamis'); ?>

You can include multiple, different gamer cards on each page.

Customization

To show the recently played games icons, add the “full” argument, ex.:

<?php if (function_exists('gamercard')) gamercard('ardamis', full); ?>

°ardamis

Rep:

5485Gamerscore:

RecreationZone:

Do whatever you want with the CSS to integrate the gamer card into your site.

Installation

The download includes:

• xbox-gamercard.php (put this in your /plugins/ directory)
• gamercard.css (copy and paste the contents into your theme’s style.css)
• /gc_images/ (optional – put this folder of reputation images in your WordPress theme’s /images/ folder if you want to use them)

The plugin by default now uses the gold stars with transparent background from the ‘mini-card’ in the top navigation of http://www.xbox.com/. The rep image is a transparent .png, however. If you’re worried that people using IE6 will see an ugly rep because of IE6′s lack of support for transparent .png, you may want to edit the plugin to use a different rep image. It’s easy.

a screen shot of the ‘mini-card’ from Xbox.com

The optional ‘gc_images’ folder contains 20 images, one for each reputation rank, to replace the default gamercard gauge. They are based on the gauge used in the smaller, menu bar gamercard on the old http://live.xbox.com/ site, but with transparent backgrounds instead of gray for greater flexibility. You don’t need to use these, of course. I’ve written 3 variables into the plugin if you want to use the official Xbox rep images. Just edit the plugin to replace $navgamerrep in the output with one of the other variables. (Seriously, it’s easy.)

Download (beta 1.3)

Get the files here:

Download the Xbox 360 Gamer Card WordPress Plugin

I’m getting an error message

If your server does not have cURL enabled, you’ll get an error message that reads something like Fatal error: Call to undefined function curl_init() in PATH\wp-content\plugins\xbox-gamercard.php on line 54. The best solution is to ask your host to enable cURL. If that option is unavailable, I’ve provided an alternative that uses the function file_get_contents(), but a number of hosts have disabled the URL retrieving capabilities in file_get_contents() for security reasons. Download the FGC Gamer Card WordPress Plugin only if you’re getting an error message with the regular download.

Can I get this as a WordPress Widget?

Honestly, the plugin is much more flexible than a widget. Widgets are limited to your sidebar, while the plugin can be used in any template. Installing the plugin isn’t very complicated, either. So, in short, there are no plans to adapt this as a widget right now.

How can I use this on a non-WordPress site?

Download the Xbox 360 Gamer Card Stand-alone Script

Just PHP include the xbox-gamercard-standalone.php script wherever you want the card to be displayed, adjusting the path to the reputation images. Add the contents of gamercard.css to your main CSS file, and modify to suit your site.

Be aware that message boards and forums (eg: vBulletin forums) won’t allow you to use PHP as part of your post or signature. In short, don’t expect this method to work anywhere but on your own site.

You can either edit the script to use your gamertag, or call the script with the line:

<?php include 'PATH-TO-SCRIPT/xbox-gamercard-standalone.php?tag=YOURTAG'; ?>

To show the recent games, use:

<?php include 'PATH-TO-SCRIPT/xbox-gamercard-standalone.php?tag=YOURTAG&full=full'; ?>

Obviously, you’ll replace ‘YOURTAG’ with your gamertag. If you have any spaces in your gamertag, replace each space with %20.

Further customization (optional)

A number of neat image and Flash sigs contain way more information than just what’s provided at http://gamercard.xbox.com/YOURTAG.card, but as far as I can tell, it’s all gathered in the same way. If there’s something you’d like added to the script, find a page that contains the information and post a comment about it, or give programming a shot yourself…

View the source code of the target page and locate the data you wish to extract. What we want to do is identify everything but the desired data. Isolate the desired data within the source code of the target page by copying everything from the first character before the data back to and including something unique, such as a div’s id. Paste that into a preg_match line as the first half of the pattern that the script will look for. Follow that with the characters (.+?), a bit of code that represents the data we want to extract. Do not copy the actual desired data from the target page into the modified script. Last, select and copy a few characters immediately after the data, such as the closing div, and paste that after the (.+?). Everything in between the two copied strings—the stuff now represented by the (.+?) characters—will be assigned to a variable.

Credits

Thanks to Constantin Hofstetter for getting me started on this project and to Jeremy at 360gamerCards.com for eliminating the need for the Snoopy script, reducing the process to a single file and otherwise greatly simplifying the whole thing. And thanks to everyone who emailed or posted with error messages and other problems; it’s a better, more robust plugin because of your efforts.

My gamertag is ardamis, should you want to add me to your friends list and give me some positive feedback.

To change all the individual posts’ comments feed links to rel=”nofollow”, open ‘\wp-includes\feed-functions.php’ and add rel=”nofollow” to line 84 (in WordPress version 2.0.6), as so:

echo "$link_text";

One could use the robots.txt file to disallow Googlebot from all /feed/ directories, but this would also restrict it from the general site’s feed and the all-inclusive /comments/feed/, and I’d like the both of these feeds to continue to be spidered. Another, minor consequence of using robots.txt to restrict Googlebot is that Google Sitemaps will warn you of “URLs restricted by robots.txt”.

To deny all spiders from any /feed/ directory, add the following to your robots.txt file:

User-agent:*
Disallow: /feed/

To deny just Googlebot from any /feed/ directory, use:

User-agent: Googlebot
Disallow: /feed/

For whatever reason, the whole-site comments feed at http://www.ardamis.com/comments/feed/ does not appear among my indexed pages, while the nearly empty individual post feeds are indexed. Also, the general site feed at http://www.ardamis.com/feed/ is in the Supplemental Index. It’s a mystery to me why.