-
Notifications
You must be signed in to change notification settings - Fork 76
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Able to send reaction in token gated communities #11915
Comments
Hi, I cannot reproduce this on latest dev, on a test Community, with existing or new messages, neither with mouse hover nor right click. temporary-krantzite-hepialus.mov |
I tried also and I can't reproduce. I wonder what made it possible before. Maybe one other thing you could try @shinnok is remove the UI blockers and try to send a message or emoji reaction when not part of a community. The messages should not appear for other users, ie status-go should not accept those (backend validation). Can you confirm that please? |
@jrainville I re-enabled the chat input by commenting out the piece below and I was able to send messages to a community without having joined yet: status-desktop/ui/app/AppLayouts/Chat/views/ChatColumnView.qml Lines 260 to 267 in 29629a3
As for the best place to block this in the back-end, I'm currently investigating in status-go PR status-im/status-go#4064. |
Nice find @shinnok . So we should block that both on sending side, but most importantly on receiver side, so that if someone clones the repo and "hacks" the sending code, we still don't accept messages from non-members. I recommend using the Go tests available in status-go. They are very powerful (you can debug) and way faster than running the app. Let me know if you need some coaching on them. All members of the messenger team know how they work, so you can reach out to any of them. |
related: status-im/status-go#3869 |
…ed or spectated communities (#4064) Which specifies that if a user is not a community member & a chat member, he can't post, react or pin messages in that chat. Notes: - also fix&cleanup associated failing tests. - refactor Community.CanPost() to reflect the new requirement. - grant code is not fully implemented and is to be removed later. Fixes status-im/status-desktop#11915
Members not yet approved in the communities are able to send reaction to message
Expected: they should not be able to react
The text was updated successfully, but these errors were encountered: