Varient
News & Magazine Script

The ultimate multi-purpose script designed for modern publishers. Fast, secure, and optimized for performance.

Introduction

Varient is a powerful and flexible news and magazine script built for modern digital publishers. With its clean design and fully responsive layout, it delivers a smooth and consistent experience across all devices.

Its simple and well-structured admin panel makes it easy to manage content, users, and site settings without complexity. The built-in multi-author system allows each writer to create and manage content through their own dashboard, making team collaboration seamless.

With its built-in premium membership system, you can offer exclusive content and paid subscriptions, turning your website into a sustainable and scalable business.

Built with performance, security, and SEO in mind, Varient ensures fast loading times and better visibility in search engines. Whether you're running a blog, an online magazine, or a full-scale news platform, Varient gives you everything you need to launch, manage, and grow your project with confidence.

Technologies Stack

CodeIgniter 4

HTML5

Bootstrap 5

jQuery & AJAX

Key Features

The system is engineered with cutting-edge web technologies, focusing on extreme performance, robust security, and a seamless user experience. Below is the comprehensive list of features included in the platform.

Design & Customization

• Multi-Theme Architecture: Choose from multiple themes directly from the admin panel to instantly change the look of your platform.
• Responsive Design: Built using the Bootstrap 5 framework to work perfectly on mobile, tablet, and desktop devices.
• Light & Dark Mode Layouts: Includes default state controls allowing you to force specific visual modes (Light or Dark) based on your preference.
• Layout Color Customization: Easily adjust the primary and secondary branding colors to match your exact corporate identity.
• Typography Management: Adjust precise font scales and upload custom local fonts for better offline rendering and performance.
• Navigation Builder: A drag-and-drop tool to seamlessly organize your main menus, complete with mega menu capabilities and external link support.
• Multilingual & RTL Support: A fully translatable system supporting right-to-left languages and SEO-friendly multilingual URL structures.
• Sidebar Widget System: Add, sort, and customize polls, popular posts, and custom HTML widgets without coding.
• Visual Settings: Update your dynamic logo, favicon, site title, breadcrumb styles, and layout visibility directly from the admin panel.

Core Architecture & Performance

• Modern Framework: Built on CodeIgniter 4 and fully optimized for PHP 8.2+, ensuring high security, stability, and speed.
• Hybrid Cache System: Uses advanced content and application caching to guarantee fast page load times and reduce database queries.
• Database Optimization: Engineered with optimized indexing for fast search results and data retrieval.
• Auto WebP Image Conversion: Automatically compresses and converts user uploads into WebP formats to save server bandwidth.
• Lazy Image Loading: Defers offscreen images to ensure better Core Web Vitals and instant initial page renders.
• Progressive Web App (PWA): Delivers an installable, app-like experience directly to your mobile visitors' home screens.
• Cloud Storage Integrations: Natively supports AWS S3, Cloudflare R2, and Backblaze B2, allowing you to scale your media storage off your main server.
• Token-Based Cron System: A secure background automation engine for managing scheduled tasks, RSS feeds, and emails.

Publishing & Media Management

• Multiple Post Formats: Dedicated builders for Article, Gallery, Sorted List, Table of Contents, Video, Audio, Trivia Quiz, Personality Quiz, Poll, Recipe and Event.
• Advanced Post Management: Workflow support including scheduled publishing, drafts, and a pending post approval system for editorial teams.
• Author Application System: Enables users to submit applications to become authors, giving administrators full control to securely review, approve, or reject requests.
• Per-Post FAQ Section: Add dedicated FAQ schemas to individual posts.
• Centralized File Manager: A fast hub to easily manage your entire server's media assets.
• Media Management Modal: Browse, search, and attach files from your storage directly while writing and formatting posts.
• Dedicated Media & Gallery Page: Full administrative control over all uploads and a standalone page to showcase your visual albums.
• Rich Media Support: Allows multiple image uploads per post, GIF support, and downloadable files (PDF, ZIP, DOC) mapped directly to styled buttons.
• Dynamic Tagging & Reading Lists: Allows users to bookmark their favorite articles and navigate content via a keyword tagging system.

AI & Content Engine

• AI Content Generator: Draft articles and generate ideas instantly using native integrations with OpenAI (ChatGPT) and Google Gemini.
• Infinite Category Hierarchy: A robust category system supporting unlimited nested levels (Parent > Child > Grandchild).
• Advanced Category Selector: An intuitive interface for assigning deep-level categories effortlessly.
• Bulk Post Upload: A CSV import tool to seamlessly upload multiple articles and migrate content in seconds.
• Featured Content Controls: Manage your homepage sliders, breaking news, and recommended blocks from a dedicated management section.
• Advanced Meta Options: Set independent, customizable SEO and meta settings for individual pages, posts, and categories.

Monetization & Subscriptions

• Premium Membership System: Create, manage, and sell custom subscription plans to generate recurring revenue.
• Smart Paywalls: Restrict article access using your choice of strict, hard, or elegant fade-out paywall effects.
• Pay-Per-Post: Sell individual premium articles without forcing users into a full subscription plan.
• Author Reward System: A revenue-sharing model that calculates earnings based on verified unique page views to encourage quality writing.
• Global Payment Gateways: Seamlessly integrated with PayPal, Stripe, Razorpay, Mercado Pago, Iyzico, PayTabs, Paystack, NOWPayments (Crypto) and Bank transfer for secure and reliable transactions.
• Responsive Ad Spaces: Unlimited ad zone creation with separated desktop and mobile configurations, fully compatible with Google AdSense and custom banners.

Technical SEO & Discoverability

• Google News Integration: Output a strictly formatted Publisher Center RSS feed and a 48-hour news sitemap to rank in the Google News tab.
• XML Sitemap Generator: Instantly maps your entire website for search engines with automated priority and frequency calculations.
• Enhanced Canonical URLs: A robust URL routing system to prevent duplicate content penalties.
• Smart Indexing Logic: Automated "noindex" handling for search result pages, empty profiles, and galleries to protect your crawl budget.
• JSON-LD Structured Data: Generates optimized schema markup for articles, recipes, quizzes, and FAQs.

Security & Privacy Compliance

• Privacy-First Architecture: Operates with zero native tracking cookies and includes built-in GDPR compliance tools.
• Cookies Warning System: A modular consent management tool that halts third-party scripts until the user accepts.
• Captcha Support: Supports both Google reCAPTCHA and Cloudflare Turnstile, allowing you to choose and activate your preferred verification method directly from the admin panel.
• Email Blacklist System: A dedicated dashboard to block known abusers and spammers from registering or using contact forms.
• Brute-Force Protection: Intelligent login rate limiting and automated account lockouts to protect against credential stuffing.
• Strict Password Rules: Configurable administrative rules dictating minimum password length and character complexity.
• SEO-Safe Spam Protection: Automatically applies "nofollow" tags or completely strips external links from user content.
• Advanced Human Verification: An anti-cheat system for the author reward module that detects real users via behavior, scroll, and time on page.
• Core Security: Built-in protection against CSRF, XSS, and SQL injections.

Community, Staff & User Management

• User Management: Comprehensive administrative control for banning, role switching, and manual account verifications.
• User Details Dashboard: Monitor individual user analytics, financial transactions, invoices, and subscription statuses.
• Contact Messages: A streamlined inbox featuring a direct, in-dashboard email reply option.
• Advanced Roles & Permissions: Create custom staff roles (e.g., Editor, Moderator) with specific, checkbox-based access rights to admin modules.
• Visual Badges System: Create custom badges to highlight VIPs, staff, or premium members across the site.
• Multi-Author Architecture: Provides writers with personal author dashboards, earning trackers, and dedicated public profile pages.
• Interactive Community Tools: Features an AJAX comment system with an optional admin approval workflow, emoji reactions, and a user follow/unfollow mechanism.
• Social Login: Secure and quick user onboarding via Google OAuth integration.

Marketing & Automation

• Email API Integrations: Send emails reliably using native integrations with Mailgun and Brevo (Sendinblue), alongside standard SMTP support.
• Email Templates: Includes beautifully designed, responsive HTML email layouts available out of the box.
• Newsletter Import/Export: Easily migrate or back up your subscriber lists via CSV/JSON imports.
• Newsletter Popup: A customizable subscription popup to help grow your mailing list.
• RSS Aggregator: Import external news articles automatically in the background using cron jobs.

System Setup & Tools

• Installation Wizard: A guided, step-by-step visual installer to get the platform running quickly without coding required.
• Comprehensive Documentation: Detailed instructions covering every aspect of setup, configuration, and daily management.
• Maintenance Mode: Safely lock out public visitors while retaining full administrative access during major system updates.

Server Requirements

• PHP 8.2 or higher: Required for the core architecture.
• cURL: Required for external API connections, cloud storage (S3, R2), and payment gateways.
• Fileinfo: Required for secure file uploads and file type validation.
• Mbstring: Required for multi-language content management and proper character handling (including RTL).
• Intl: Required for internationalization, date/time formatting, and currency localization.
• GD: Required for image manipulation, generating thumbnails, and resizing.
• Exif: Required for correct image processing and metadata reading.

Installation

Manual Installation Workflow:

1. Create Your Database and User

• Navigate to your cPanel dashboard and select MySQL® Databases.

  

• Generate a new database utilizing the utf8mb4_general_ci collation.

  

• Create a secure database user.

  

• Assign the newly created user to your database.

  

• Grant All Privileges to the user to ensure the application can read and write schema changes.

  

2. Upload Core Files via File Manager or FTP

• Access the File Manager module within cPanel.
  
• Navigate to your primary web directory, typically named public_html.
  
• Upload the downloaded codecanyon-varient-news-magazine-script.zip package into this directory.
  
• Right-click the .zip file and select the Extract option to unpack it directly on the server.
  
• Move all extracted files from the inner varient-v.. folder to your root directory.
  
• Delete these files/folders to maintain a clean environment: documentation, varient-v.. folder, and the original .zip package.
  

Verify the presence of the .htaccess file in your root directory. If it is not visible, click the Settings button at the top right and enable the Show Hidden Files (dotfiles) option. Additionally, ensure cPanel has not overwritten its contents; it must match the default routing rules provided by the script.

If your hosting environment runs on NGINX, standard .htaccess directives will be ignored. You must manually configure your server blocks. Refer to our NGINX Configuration Guide for proper setup.

3. Launch the Web Installer

Upon successfully uploading the files, navigate to your domain to launch the setup wizard. To begin the installation, click the "Start Installation" button.

4. License Verification

To authenticate your purchase, input your valid license code. If you have not generated one yet, click Licenses to acquire it. Once entered, click Verify & Continue.

5. System Requirements Validation

The wizard will evaluate your server configuration. Ensure all mandatory PHP extensions are active. Once all system checks pass, click Continue.

6. Directory Permissions

Verify that the required system directories possess the correct write permissions. Resolve any permission conflicts and click Continue.

7. Database Connection Setup

Input the MySQL credentials (Database Name, Username, and Password) established in Step 1 to link the application to your database. Click Next.

If you need to update your database credentials after installation, you can manually reconfigure them in the
app/Config/Database.php file.

8. Application & Administrator Setup

Configure your primary application settings, including the Base URL, master administrator credentials, and default timezone. Click Finish Installation to finalize the installation.

Base URL Configuration Examples:

• Installing to Main directory: https://abc.com
• Installing to subdomain: https://test.abc.com
• Installing to folder: https://abc.com/test

Note: If your domain does not currently have an active SSL certificate, utilize the standard http:// protocol instead.

9. Final Security Cleanup

For critical security purposes, you must permanently delete the install directory from your server immediately after a successful setup.

Critical Troubleshooting: Post-Install 404 Errors

If you encounter a "404 Not Found" error or cannot access the admin dashboard after installation, verify that the .htaccess file is securely placed in your root directory. This file dictates URL routing; without it, internal links will fail. Depending on your OS or FTP client, dotfiles may be hidden by default. Ensure hidden files are visible and confirm the file was uploaded intact from the original package.

Environment Configuration (.env)

The .env file acts as the primary configuration hub for your application. It controls critical environment states, absolute paths, security tokens, and licensing validation.

File Upload Configuration

To facilitate the uploading of large media files and ensure optimal image processing (which consumes active memory during optimization), specific PHP server configurations must be adjusted. Failing to meet these minimum parameters may result in upload rejections, timeouts, or memory exhaustion errors.

Recommended PHP Directives

Updating PHP Values via cPanel

Quick Start

This quick reference guide outlines the fundamental operations you need to configure your account, manage content, and set up core modules efficiently.

Admin Panel

To access the Admin Panel, log in to your account, click your username on the top menu, and select the Admin Panel link. The dashboard (index page) provides some overview of your website's performance, user activities, and pending tasks.

Themes

Varient includes a robust theme engine that allows you to transform the visual appearance of your website instantly. You can choose from multiple pre-designed themes and fine-tune their aesthetics through the centralized settings panel.

Navigation

The Navigation module provides full control over your website's main menu. From here, you can seamlessly organize categories, static pages, and custom URLs to create an intuitive browsing experience for your visitors.

Pages

The Pages module allows you to create and manage static content for your website, such as "About Us", "Contact", "Privacy Policy", or custom pages. The creation process is divided into three main areas: General Content, Page Settings, and Meta Options.

General Content

• Title & Slug Enter the main title of your page. The Slug (URL structure) will be generated automatically based on your title. If you want a custom URL, you can type it manually in the Slug field.
• Rich Text Editor Write your page content using the advanced TinyMCE editor. You can easily insert media using the Add Image button (which opens the File Manager) or generate content automatically using the built-in AI Writer.

Page Settings

Meta Options (SEO)

Optimize your page for search engines. Fill in the Meta Title and Meta Description to control how your page appears in Google search results. Add relevant Meta Keywords separated by commas (e.g., technology, news, contact) to improve indexing.

Add Post

The "Add Post" module is the core of your content creation engine. Varient offers a highly versatile publishing system with 11 distinct post formats. To prevent repetitive configurations, all post formats share a unified set of "Common Settings," while introducing specific fields and builders tailored to their exact content type.

1. Common Post Settings

Regardless of the format you select, you will encounter these standard configuration fields across the main form and the right sidebar.

2. Format-Specific Features

While the common settings remain identical, selecting a different post format alters the core structure of the content. Below is a detailed technical breakdown of the specialized configurations for all formats.

Bulk Post Upload

The Bulk Post Upload tool allows you to publish hundreds of posts at the same time using a single CSV (Comma-Separated Values) file. This is especially useful if you are moving content from another website or adding a large database of articles quickly.

CSV Column Rules

Please follow these exact rules when filling out your CSV file. If a "Required" field is left empty, the system will skip that specific post and not publish it.

Posts

The Posts menu is the central place for managing all your content. From here, you can view your published articles, approve content written by your authors, and track your upcoming schedules.

Quick Actions (Select Menu)

Next to every post in the list, you will see a Select button. Clicking this opens a dropdown menu. The options in this menu change smartly depending on the post format and its current status:

• Edit & Delete Basic tools to update the post content or remove it from your database entirely. Available for all posts.
• Approve or Publish If a post is in the Pending, Drafts, or Scheduled list, you can use these buttons to instantly make the post live without opening the edit page.
• Visibility Toggles (Admin Only) For active posts, admins will see quick options to Add/Remove to Slider, Featured, Recommended, or Breaking News. This lets you pin posts to your homepage in one click.
• Details (Events Only) If the post is an Event format, a Details button will appear. Clicking this takes you to the ticket and attendee management page for that specific event.

RSS Feeds

The RSS Feeds module allows you to automatically import content from other websites into your own database. By connecting a valid XML/RSS link, the system can fetch external articles, images, and descriptions, and publish them as your own posts.

Adding a New Feed

When you click Add Feed, you will see a form with specific settings to control how the imported posts will behave on your site.

Managing Active Feeds

On the main RSS Feeds page, you will see a list of all your connected feeds. From here, you have two primary actions:

Categories

Categories help you organize your posts and make it easy for visitors to find what they are looking for. You can create main categories (like "Technology") and subcategories (like "Mobile Phones" or "Computers").

General Information & SEO

Category Options

You will find these settings in the right sidebar. They control how and where your category is displayed.

Premium Settings

You can easily lock all posts inside a category so only paying users can read them.

Tags

Tags are simple keywords used to connect similar posts together. For example, if you publish an article about a new smartphone, you might use tags like "mobile", "tech", or "apple". When a visitor clicks on a tag, they will see a list of all posts that share that exact keyword.

Adding a New Tag

If you want to create a tag manually before writing a post, you can use the form on this page. The process requires only three simple fields.

Managing Existing Tags

The main table displays every tag currently saved in your database. From this list, you can use the search bar to find specific keywords, edit a tag to fix a typing mistake, or delete tags that you no longer need.

Widgets

Widgets are small content blocks usually displayed in the sidebar of your website. You can use them to add extra information, display custom text, or show automatic lists like popular posts and social media links.

Default System Widgets

Your website comes with several built-in widgets. If you do not want to use them, you can easily disable them by turning their Status off in the main widget list.

Adding a Custom Widget

In addition to the default options, you can create your own custom text or image blocks using the Add Widget form.

Polls

Polls are a great way to interact with your visitors and gather their opinions. Once created, these polls are displayed in the sidebar of your website to catch the users' attention.

Creating a Poll

To build a new poll, you need to define the main question and provide the answers that users can choose from.

Poll Settings

These settings control who can see and interact with your poll.

Media

The Media section is the central file manager for your entire website. Every image, video, audio, and file uploaded to your server is safely stored here. You can manage your files directly on this page, or access the exact same interface through a popup window while creating a new post.

File Categories

To keep your storage organized, the system automatically separates your uploads into five distinct tabs:

Gallery

The Gallery module allows you to create dedicated photo albums for your website. Unlike the Media section (which stores files used inside your posts), this section is used to display standalone image galleries directly to your visitors.

Gallery Structure

To keep your photos organized, the gallery uses a simple three-step structure. You must follow this order to successfully display your images.

Contact Messages

The Contact Messages section acts as the inbox for your website. Whenever a visitor fills out the contact form on your site, their message is safely stored and displayed in this list.

Managing Messages

For every message in your list, you have two simple actions available to help you manage your communications.

Comments

The Comments section allows you to manage all the feedback and discussions left by your visitors. From this list, you can read the messages, see who wrote them, and control what appears on your website.

Comment Status

Every comment in the system has a status indicator to help you moderate your community effectively.

Newsletter

The Newsletter module is your built-in email marketing tool. It helps you collect email addresses from your visitors, manage your audience, and send emails directly from your dashboard.

Managing Subscribers & Sending Emails

The main Newsletter page displays two separate lists to help you target the right audience. You can easily select email addresses from either list to send a direct message.

Newsletter Settings & Popup

You can control how the newsletter form appears to your visitors using the Settings panel.

Premium Membership

The Premium Membership module allows you to monetize your website by restricting access to your content. You can create subscription plans, sell individual posts, and track all your earnings from a single dashboard.

1. Membership Settings

Before creating plans, you need to configure how the premium system operates across your website.

2. Subscription Plans

You can create multiple pricing tiers for your users (like Basic, Pro, and VIP). Click Add Plan to set up a new tier.

3. Transactions

The Transactions page is your financial ledger. It records every successful payment made on your website.

Reward System

The Reward System allows you to share revenue with your authors based on the traffic they bring to your website. If you enable this feature, you agree to pay your authors a specific amount of money based on how many unique page views their posts receive.

1. How the Payment Workflow Works

Managing payouts involves a mix of automatic calculations and manual money transfers. Here is the step-by-step process:

2. System Settings

Configure the financial details of your reward system here.

3. Anti-Cheat & Human Verification

To prevent users from using bots or automated scripts to artificially increase their page views and steal money, our script uses a smart Human Verification system. Traditional IP blocking is not enough, so we track actual user behavior.

Ad Spaces

The advertising system is designed to be fully mobile-friendly. It ensures that your banners always look perfect and never break your website's layout, whether the visitor is using a large computer monitor or a small smartphone.

Desktop vs. Mobile Banners

To maintain a perfect design, every ad space provides two different code fields. You must fill in both fields when adding an advertisement.

Google AdSense Activation

If you are using Google AdSense, you must add your main verification script before placing individual banners.

My Earnings

The My Earnings dashboard is available to both administrators and any author who has the Reward System enabled. This is the personal financial hub where earning users can track their article views, check their current balance, configure their own payment methods, and withdraw their money.

Earnings Overview

At the top left of the page, users will see their personal performance statistics:

Setting Up a Payout Account

Before an author can request their earned money, they must tell the system where the funds should be sent. By clicking the Set Payout Account button, authors can open the configuration window and securely save their own personal details for up to four different payment methods.

Requesting a Payout

Once an author has earned enough money, they can click the New Payout Request button. They will be asked to enter the amount they want to withdraw and select their preferred payment method from the ones they have configured.

Payouts History

The large table on the right side of the screen displays the author's past and pending payout requests. Authors can track the status of their money here. Once the site admin manually sends the money to the author's real account and approves the request from the admin panel, the status will update to Completed.

Users

The Users module is the central hub for managing everyone who interacts with your website. From this page, you can monitor registered visitors, assign roles to your staff (like Authors or Moderators), and control user access.

The User List

The main table gives you a quick overview of every account on your platform. You can see their profile picture, email verification status, assigned Role, and their latest Activity (such as when they registered and the last time they were seen online).

User Management Options

Clicking the Options button next to any user reveals a powerful menu with several administrative actions.

The User Details Dashboard

When you click User Details from the options menu, you are taken to a comprehensive, dedicated profile page for that specific user. This dashboard gives you complete visibility into their account status, finances, and premium history.

Content & Financial Records

Below the Premium Membership card, you will find two critical tables that act as the user's financial ledger on your website.

Roles & Permissions

The Roles & Permissions module allows you to create custom access levels for your staff and users. Instead of making everyone an administrator, you can create specific roles (like "Editor" or "SEO Manager") and assign them exactly what they are allowed to see and do on your website.

Understanding the Roles Table

The main list displays all the active roles on your website. The system comes with several default roles built-in, but you can create as many custom roles as you need.

Creating or Editing a Role

When you click Add Role or edit an existing one, a popup window will appear where you can configure the exact details of the access level.

Badges

User Badges are visual markers that appear next to a user's name across your website (in comments, profiles, and author boxes). They are a great way to highlight VIP members, staff members, or users who have purchased a premium subscription.

Managing Existing Badges

The main table displays a list of all your created badges along with a live visual preview.

Adding or Editing a Badge

When you click Add Badge, a modal window appears allowing you to design a new visual marker in seconds.

Password Reset

The standard password recovery feature relies on your website's email system to send secure reset links. Before your visitors (or you) can use the "Forgot Password" page, you must ensure your Email Settings are properly configured with a working SMTP server.

Emergency Admin Password Reset

If you are completely locked out of your admin account and have not set up your email settings yet, you can force a password reset directly through your database using phpMyAdmin (or any other database manager).

SEO Tools

The SEO Tools module helps you optimize your website for search engines like Google. From this dashboard, you can automatically generate XML sitemaps to ensure all your pages are indexed properly, and integrate Google Analytics to track your website traffic.

XML Sitemap Generator

A sitemap acts as a roadmap of your website that leads search engines to all your important pages. The system automatically calculates the best settings, but you can override them if needed.

Google Analytics

You can easily connect your website to Google Analytics 4 (GA4) without touching any code.

Google News

Varient includes a specialized module designed to help your publication get indexed in Google News. This system automatically generates the strictly formatted XML files required by Google's technical standards.

Storage

The Storage module allows you to choose where your website's uploaded files (images, videos, documents) are saved. If you do not have enough disk space on your web server, offloading your files to an external cloud storage provider is the most efficient solution.

Local Storage (Default)

By default, all uploaded files are stored directly on your web server inside the uploads/ directory. This requires absolutely no external configuration. However, as your website grows, this method will consume your server's disk space and bandwidth.

Amazon S3

Amazon Simple Storage Service (S3) is the industry standard for cloud storage. To connect it to your website, follow these configuration steps on your AWS account:

1. Log in to your AWS Management Console and navigate to the S3 dashboard.
2. Click the Create bucket button.
3. Enter a unique Bucket Name and select your Region. Remember the region code (e.g., us-east-1).
4. Under Object Ownership, select ACLs enabled.
5. Uncheck the Block all public access option, and check the box to acknowledge that the bucket will be public.
6. Disable the Bucket Key option, then click Create bucket.
7. Click your account name at the top right and go to My Security Credentials.
8. Go to the Access keys tab, click Create New Access Key, and copy your Access Key and Secret Key.

Cloudflare R2

Cloudflare R2 is an S3-compatible service known for having zero egress (bandwidth) fees. You must have your domain's DNS managed by Cloudflare to use this service.

1. Log in to your Cloudflare dashboard and ensure your domain is added (using Cloudflare nameservers).
2. Navigate to R2 Object Storage from the sidebar.
3. Click Create bucket, give it a unique lowercase name, select a location, and click Create.
4. Click on your new bucket, go to the Settings tab, and click + Add under Custom Domains.
5. Enter a subdomain (e.g., storage.yourdomain.com). Once active, this will be your Public URL.
6. Go back to the main R2 page, click Manage API Tokens (top right), and click Create Account API Token.
7. Name the token and set the Permissions strictly to Object Read & Write.
8. Click Create and instantly copy your Access Key ID and Secret Access Key.

Backblaze B2

Backblaze B2 is a highly affordable and reliable cloud object storage service with a developer-friendly API.

1. Log in to Backblaze, go to B2 Cloud Storage > Buckets, and click Create a Bucket.
2. Give it a name and set the privacy to Public (This is strictly required for visitors to see your images).
3. Go to Application Keys in the sidebar and click Add a New Application Key.
4. Allow access to the specific bucket you just created, set the type to Read and Write, and click Create.
5. Instantly copy the keyID and the applicationKey.
6. Go back to the Buckets page. Note the Endpoint listed next to your bucket (e.g., s3.us-west-004.backblazeb2.com).
7. To find your Public URL (Friendly URL), click Browse Files, upload a dummy image, and click on it to view its details. Copy the URL up to the bucket name, removing the file name itself (e.g., https://varient.s3.eu-central-003.backblazeb2.com/).

Cache System

The Cache System significantly improves your website's loading speed and overall performance by temporarily storing frequently accessed data. This reduces the heavy lifting required by your database and ensures your pages load instantly for visitors. The module is divided into two distinct caching mechanisms.

Content Cache

This mechanism handles dynamic, frequently updated data such as your posts, articles, and user comments.

Application Cache

This mechanism handles core structural data that rarely changes, such as your general settings, language translations, category trees, and static pages. Because this data is static, it is persisted in the memory until you explicitly update a setting.

Cron Job

Varient relies on a background process called a "Cron Job" to automatically manage all time-sensitive operations. This system ensures that scheduled content goes live, search engines stay updated, external news feeds are fetched, and subscription emails are sent without any manual intervention.

Server Setup Instructions (cPanel Guide)

For the automated features to function perfectly, you must add two separate Cron Jobs to your server. One will handle the core operations every minute, and the other will handle premium subscriptions every hour.

Security Settings

The Security module provides comprehensive tools to protect your website from malicious attacks, spam bots, and unauthorized access. It is highly recommended to configure these settings before launching your website to the public.

General Security

This section allows you to enforce strict login rules and protect your community from spam.

Captcha Settings

Enable a Captcha provider to block automated bots from registering accounts, resetting passwords, or sending contact messages. We highly recommend using Cloudflare Turnstile for a frictionless, privacy-first user experience.

How to Obtain Your API Keys

Email Blacklist

The Email Blacklist is a powerful defensive tool against known spammers or abusive users. You can manually add specific email addresses to this list from the Admin Panel.

Global Settings

The Global Settings module is the central control room for your entire platform. From here, you can manage your website's core behavior, branding elements, API integrations, and URL structures. Changes made here affect the global operation of your site immediately.

General System Preferences

This section covers the fundamental operational rules of your website, including localization, user privacy, and mapping integrations.

Branding & Logos

Upload your brand assets here. The system automatically serves the correct logo version depending on whether the user's device is in Light or Dark mode.

External Integrations (Social & RSS)

Manage how your website connects with Google for authentications, and how it distributes its own content via RSS feeds.

Custom URL Routes

Unlike standard platforms, this script allows you to translate or completely change the core URL structures of your website for better local SEO. For example, you can change yourdomain.com/login to yourdomain.com/giris-yap or yourdomain.com/entrar.

Custom Code Insertion

You do not need to edit core PHP files to add third-party tracking scripts. You can inject them safely directly from the dashboard.

Maintenance Mode

When performing major updates, you can safely lock out public visitors while still retaining full access to the admin panel.

Localized Settings

Unlike Global Settings which affect the entire system regardless of the user's language, the Localized Settings module allows you to configure specific details that change depending on the language your visitor is using. For example, you can set an English Site Title for your English site, and a French Site Title for your French site.

General (SEO & Identity)

Configure the fundamental text elements that represent your brand and improve your Search Engine Optimization (SEO) for the selected language.

Contact Settings

Manage the contact information and messaging displayed on your public "Contact Us" page for the selected language.

Social Media

Connect your official social media profiles. The platform supports a wide range of networks including X (Twitter), Facebook, Instagram, TikTok, LinkedIn, Discord, Patreon, and more.

Cookies Warning (GDPR)

If you use tracking scripts like Google Analytics or targeted advertising, you are legally required by GDPR (and similar privacy laws) to inform your users and obtain their consent to use cookies.

Content Settings

The Content Settings module is the editorial core of your platform. Here, you can configure how articles are displayed, manage reader interactions, set upload limits, organize featured blocks, and connect AI writing assistants.

Reading Experience & Interactions

Control how your articles look to visitors and how readers can interact with your content.

• Post URL Structure Choose between using SEO-friendly Slugs (e.g., domain.com/my-post-title) or ID numbers (e.g., domain.com/12345). Changing this will only affect new posts; old links will remain intact.
• Comment & Approval System Enable or disable the built-in commenting system. If the Approval System is enabled, user comments will remain hidden until an administrator manually approves them.
• Emoji Reactions Allow users to react to articles using expressive emojis (Like, Love, Sad, etc.) at the bottom of the post.
• Post Meta Visibility Toggle the visibility of the Post Author, Post Date, and View Count on the article pages.
• Editorial Approvals If you have multiple authors, you can force all New Posts or Edited Posts to go into a "Pending" state until an admin reviews and publishes them.

File Upload Constraints

Protect your server bandwidth and storage by enforcing strict rules on what authors can upload.

Featured Content Blocks

Configure the behavior of the dynamic content blocks on your homepage: Main Slider, Featured Posts, Recommended Posts, and Breaking News.

• Content Source Choose "Latest Posts" to let the system automatically pull your newest content into the block. Choose "Manual Selection" if you only want posts that an admin has explicitly pinned to that block to appear.
• Exclude Slider Posts Available for the Featured Posts block. Enabling this ensures that an article doesn't appear in both the Main Slider and the Featured section at the same time, preventing repetitive content on the homepage.
• Duration & Limits Set how many days a post should remain in a block (Display Duration) and the maximum number of items the block can hold at once (Display Limit).

AI Content Generator

Empower your authors with built-in Artificial Intelligence to instantly draft articles or generate ideas directly from the post creation page.

Auto Post Deletion

Keep your database lightweight by automatically purging old content. Note: This feature requires the Master Cron Job to be active on your server.

• Deletion Method You can choose to delete All Posts older than the specified timeframe, or restrict it to Only RSS Posts (useful if you import thousands of external news articles and want to discard old ones).
• Number of Days Define the exact age threshold. For example, entering 30 will command the system to automatically delete any post that is older than 30 days.

Payment Settings

The Payment Settings module allows you to configure global currency formats, set up tax rules, and integrate multiple payment gateways so you can securely charge users for premium subscriptions or content.

Currency Settings

Configure how money is displayed across your entire website.

Company & Invoice Details

Set up your official business identity. This information will be printed directly onto the downloadable PDF invoices generated for your customers.

Tax Configuration

Configure VAT (Value Added Tax) or localized sales tax rates that will be applied during checkout.

Gateway Configuration Guides

To receive payments, you must connect a Payment Gateway. Follow the step-by-step instructions below to obtain your API keys and configure your Webhooks (automatic notifications) correctly.

PayTabs Setup Guide

Even if you have no coding experience, you can easily set this up by following these step-by-step instructions.

Phase 1: Get Your API Keys

1. Log in to your PayTabs Merchant Dashboard.
2. Click on Developers > Key Management.
3. Copy your numeric Profile ID and your long Server Key.
4. Paste these into the PayTabs section of your Admin Panel.

Phase 2: Set Up Automatic Notifications (IPN)

1. In your PayTabs Dashboard, go to Developers > Payment Notifications (IPN).
2. Click the + icon to Add New.
3. In the Listener URL field, enter your webhook:
   https://yourdomain.com/webhook/paytabs
4. Set the Event to Transaction Status Changed.

Phase 3: The Crucial Security Setting (UserAgent)

To prevent your server's firewall from blocking PayTabs, you must change one specific setting.

1. On the IPN setup page, find the IPN UserAgent option (usually set to 'Not Set').
2. Change this immediately. Select any option that Simulates a Browser (e.g., "Mozilla/5.0" or "Chrome"). This allows PayTabs to pass through your website's security safely.
3. Click Save/Create.

Language Settings

The Language Settings module gives you full control over the localization of your platform. You can add unlimited new languages, set default fallback languages, manage RTL (Right-to-Left) layouts, and edit every single text string on your website directly from the dashboard.

Default Language Configuration

Adding or Editing a Language

When you click Add Language or edit an existing one, you must fill out a specific form to ensure the system handles translations and layouts correctly. Here is a detailed breakdown of what each input field means:

Managing Translations & Bulk Import/Export

From the language table options menu (click "Select" next to any language), you have access to powerful localization tools.

Email Settings

Properly configuring your email settings is crucial for sending transactional emails such as user verifications, order notifications, and password resets. This module allows you to select your preferred mailing service, manage sender details, and customize the visual design of the emails your users receive.

Email Templates (Visual Design)

You don't need to write HTML to send beautiful emails. The platform includes several professionally designed, fully responsive email templates out of the box.

Mail Service Configuration

The script provides several methods for sending emails to ensure reliability and flexibility. Choose the service that best fits your sending volume and technical requirements.

Font Settings

Typography is a core part of your platform's design identity. The Font Settings module allows you to assign specific fonts to different parts of your website, manage a highly advanced font-size scale, and upload your own custom local fonts for maximum performance and GDPR compliance.

Site Font Assignments

Font selections are language-specific. This means you can use a sleek Sans-Serif font like "Inter" for your English site, but switch to a specialized Arabic font for your Arabic localization. Use the Language dropdown at the top of the card to switch between your active languages.

Font Size Scale

Instead of hardcoding font sizes into CSS, you have full control over the exact pixel values of the site's typography scale directly from the dashboard.

Adding Custom Local Fonts

You can upload and host your own fonts directly on your server. This eliminates third-party requests (like Google Fonts), ensuring your site loads incredibly fast and remains strictly privacy compliant.

GDPR & Privacy Compliance

This script was engineered with a "Privacy First" (Privacy by Design) architecture. We have taken special care to ensure that the platform minimizes personal data collection, isolates third-party requests, and provides the essential foundation and tools to facilitate your compliance with the General Data Protection Regulation (GDPR).

Cookie Usage & Local Storage

Natively, the script uses zero tracking or marketing cookies. We strictly utilize only the cookies required for the core functionality of the application.

• Strictly Necessary Cookies: The system creates two mandatory cookies: vr_csrf_cookie (for security against Cross-Site Request Forgery attacks) and vr_session (for keeping users logged in). These do not track users, are not used for advertising, and cannot be disabled as the site cannot function without them. The "vr_" prefix can be changed in the .env file.
• Local Storage: To enhance the user experience without compromising privacy, the script uses the browser's Local Storage to remember basic interface preferences. This is strictly limited to the Dark Mode toggle, the Contact Map, and Event Maps. These features only save simple states (e.g., true/false, dark/light) locally on the user's device and do not store, process, or transmit any personal data.

Data-Free Feature Interactions

Most scripts use cookies to remember user interactions. To ensure maximum privacy, we completely bypassed cookies and local storage for our interactive modules. Emoji Reactions, Sidebar Polls, and Quiz Polls operate entirely through server-side Sessions.

Security, Fraud Prevention & IP Processing

To protect the platform from malicious attacks and fraudulent activities, certain technical data is processed under the legal basis of Legitimate Interest (GDPR Art. 6(1)(f)).

• Pageviews System (Anonymized): To ensure accurate view counts and prevent bot manipulation of the reward system, IP addresses and User Agents are processed temporarily. We do not store raw IP addresses for views. Instead, the data is immediately transformed into a one-way cryptographic hash (HMAC-SHA256) using a daily rotating key. This hash expires in 24 hours and cannot be used to directly identify an individual.
• Comments Security: To prevent spam and abuse, the IP addresses of users leaving comments are securely logged in the database. This data is strictly for security and legal obligations, is kept confidential, and is never displayed publicly.
• Financial Transactions: IP addresses are permanently stored on transaction and payout logs as a strict legal requirement to prevent financial fraud.
• Rate Limiting: IP addresses are monitored temporarily to block brute-force or DDoS attacks.
• Bot Protection (CAPTCHA): The admin panel allows you to choose between Google reCAPTCHA and Cloudflare Turnstile. For strict GDPR compliance, we highly recommend utilizing Cloudflare Turnstile. Unlike traditional reCAPTCHA, which may rely on tracking cookies and user profiling, Turnstile is built specifically for privacy, does not utilize cookies, and avoids harvesting personal data.

User Rights & Data Isolation

• The Right to be Forgotten: Full GDPR compliance requires giving users control over their data. Registered users can permanently delete their own accounts and associated data directly from their profile settings.
• No Third-Party Data Leaks: The script does not leak user IP data to external servers. All core assets, including web fonts, are hosted locally on your server. We do not use external font APIs (e.g., Google Fonts), ensuring no background tracking occurs.

Managing Consent (Analytics & AdSense)

When the native Cookies Window is enabled from the admin panel, the built-in Google Analytics integration is completely blocked from executing. The tracking script will only load and fire after the user explicitly clicks "Accept".

Recommendations for Your Privacy Policy

As the site owner, you are legally responsible for informing your users. We strongly recommend adding the following clauses to your website's Privacy Policy page:

Update Guide

You can find all instructions to update your site in this section. If you don't know your current version, you can check it from the version.txt file in the main directory of your site.

Update from v3.0 to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v3.0 to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Update from v2.4.x to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v2.4.x to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Important Update Notes

Please review the following important changes and required actions after completing your update to ensure your platform functions correctly.

Update from v2.3.x to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v2.3.x to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Update from v2.2.x to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v2.2.x to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Update from v2.1.x to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v2.1.x to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Update from v2.0.x to v3.1

1. Follow all steps in the Updating FTP Files (Click Here) section.
2. Follow all steps in the Updating Database (Click Here) section. You can find update_database.php file in the "documentation/updates/Update from v2.0.x to v3.1" folder.
3. Clear your browser cache. This is a crucial step to prevent your browser from loading outdated scripts and ensure the new changes take effect immediately.

Updating FTP Files

1. Open your cPanel and go to File Manager section.
2. Go to main directory of your site.
3. Create a new folder named "old".
4. Move all of your files to this folder.
5. Upload "codecanyon-varient-news-magazine-script.zip" file to this directory.
6. Right click the .zip file and select "Extract" option.
7. Move all files that in the "varient-v.." folder to main directory.
8. Delete unnecessary files/folders: "documentation", "uploads", "varient-v..", "install" and "codecanyon-varient-news-magazine-script.zip".
9. Copy old/uploads folder to main directory.
10. Restore your Configuration Files (Crucial Step):
    
    1. Restore Database Connection: Go into the old/app/Config/ folder, copy the Database.php file, and paste it into your new app/Config/ folder. (If it asks to overwrite or replace the existing file, say Yes).
    2. Restore .env File: Go into the old/ folder, copy the .env file, and paste it directly into your main directory.
    Note: If you cannot see the .env file, it is because files starting with a dot are hidden by default. In cPanel File Manager, click "Settings" at the top right and check "Show Hidden Files (dotfiles)".

Updating Database

1. Upload update_database.php file to your main directory.
2. Open your browser and enter this URL: yourdomain.com/update_database.php
   Example:
3. When you go to this URL, you will see an update wizard. Enter your database credentials and click the Update My Database button.
4. After you see the success message, close this page and delete "update_database.php" file.