-
Notifications
You must be signed in to change notification settings - Fork 72
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
reserved username can be used in public poll #909
Comments
[1.4.2] Additionally: :disabled is ignored |
This is a result of the first bug, because every time a personal link is created. I added a quick fix, but it needs some more work and additionally testing. |
I added the fix to a new beta: https://github.com/nextcloud/polls/releases/tag/1.4.2 |
The issue description was "You should not be able to chose/edit the input of another user." – however, i suspect #911 included a bit more than just fixing this issue: Let's say i make a public poll for other, non-nextcloud users to participate. I have a Login "Peter" and display name "Mr. P. Parker". I login and fill out the poll, which then shows my display name. However, no "Peter" is allowed to enter themselves via the public link, even if there is no "Peter" on the poll results yet. IMHO the check should just be for names that are already entered into the poll itself. There may be numerous other user names on the instance that may not be interested in the poll, while those login names may clash with names of people that really want to participate publicly. |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
to dos
What is going wrong?
Change results of other external users, when you should not be allowed to
To Reproduce
Steps to reproduce the behavior:
Expected behavior
You should not be able to chose/edit the input of another user.
Screenshots
Information about your polls installation
Polls version? (see apps page)
1.3.0
Fresh installation or update from a prior version (from which one)?
Fresh install
How did you install this version?(Appstore or describe installation)
Nextcloud Appstore
Information about your Instance of Nextcloud/ownCloud
Nextcloud or ownCloud?
Nextcloud
Nextcloud/ownCloud version: (see Nextcloud admin page)
18.0.3
List of activated apps:
too long to print
Nextcloud configuration:
Login as admin user into your Nextcloud and access
http://example.com/index.php/settings/integrity/failed
paste the results here.
The text was updated successfully, but these errors were encountered: