Notice

The forum is in read only mode.

Support Forum

Welcome! Support Forums have been reactivated
Welcome the Technical Support section. Help us in assisting you by providing us with a concise and descriptive elaboration of your issues. Be specific and if possible, provide us with a step-by-step instruction in replicating your problem.

Viewing My Groups Security Issue

11 years 2 months ago
  • Marcos's Avatar
    Topic Author
  • Marcos
  • Offline
  • Junior Boarder
  • Posts: 182
  • Thank you received: 5
Licenses:
JomSocial Active GURU Active Publisher Active AdAgency Active iSEO Active Socialize Active

When viewing my groups, if a member doesn't have any groups added, the side module shows the latest discussions of groups they don't belong to as well as from private groups. NOTE: This only happens when a user is not a member of any groups!!!! Once he joins a group, it shows the discussions of the group he has joined.

The wall also shows information for people who are not that user's friend or groups he does not belong to.

11 years 2 months ago
Licenses:

Hi, Marcos Paulino.

I tested it on your site and I can't confirm that.

I used dpsupport user that created new private group "Test private group" with one discussion "Test private discussion".
Group is visible on group list and marked as a private.
Private group discussion is not listed in module.
Information about private group is displayed in main activity stream for that user.

I created new user that is not a member of any group: michal.
This user can't see information on main activity stream.
Can't access to view private group discussion.
Can't see private group discussion listed in module.

If group is public (not set a s private) all users could see discussions in that group both in module and inside group... even if user doesn't belong to any group.

Wall (Group List Privacy ) is visible for Public accordingly to your settings (and user settings) in Backend -> JomSocial -> Configuration -> Privacy. And if group is public (not set as private) all informations will be public as well.

Only if group is private all access or information is restricted and not displayed.

- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
Attachments:
11 years 2 months ago
  • Marcos's Avatar
    Topic Author
  • Marcos
  • Offline
  • Junior Boarder
  • Posts: 182
  • Thank you received: 5
Licenses:
JomSocial Active GURU Active Publisher Active AdAgency Active iSEO Active Socialize Active

Try logging in with a user that has no groups, then look at the groups page. You will see all the discussions I am talking about under latest discussions.

11 years 2 months ago
Licenses:

Hi, Marcos Paulino.

I already did that and made print screens: user-without-group1.png & user-without-group2.png
As you can see, there is no "Test private discussion" on the "Latest discussions" list.

- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
11 years 2 months ago
Licenses:

We have not received any response back from you in over 7 days, and would like to know if you consider this issue to be resolved. If you have any further questions, simply reply to this post.

- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
11 years 2 months ago
  • Marcos's Avatar
    Topic Author
  • Marcos
  • Offline
  • Junior Boarder
  • Posts: 182
  • Thank you received: 5
Licenses:
JomSocial Active GURU Active Publisher Active AdAgency Active iSEO Active Socialize Active

I'm going to review and post some screen shots.

Marcos

11 years 2 months ago
Licenses:

Hi, Marcos.

I'm looking forward hearing from you, then.

- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
11 years 1 month ago
Licenses:

Hi, Marcos.

We have not received any response back from you in over 7 days, and would like to know if you consider this issue to be resolved. If you have any further questions, simply reply to this post.

- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
Moderators: Piotr Garasiński
Powered by Kunena Forum

Join 180,000 websites creating Amazing communities

JomSocial is the most complete, easy-to-use addon that turns Joomla CMS into a
full -fledged, social networking site

TRY NOW BUY NOW

About Us

Our product

Support

Contact Us

Site Policies

Elsewhere

© JomSocial.com All Rights Reserved