Important User Privacy Issue

Previous topic

General

Next topic

Author	Message
Brett J	Monday 23 July 2007 8:07:40 am Hello, I am relatively new to eZ but have found no mention of this issue on searching the forum. A number of users have registered on the site. User A logs in and (presumably) logs out. A short time later, User B logs in but is met with User A's personal name. On logging out and then in again, User B has the correct name. As I consider privacy of the utmost importance, and tell this to my clients, this is of course a big issue. I would appreciate any advice that someone could give regarding what the cause of this issue is and how it can be resolved. Thank you. Brett
André R.	Monday 23 July 2007 8:42:36 am It's a cache issue. upgrade to ezwebin (website interface) 1.2 to fix it alternatively you can remove this text in your pagelayout: ( {$current_user.contentobject.name\|wash} ) After doing that you need to clear template and template block cache eZ Online Editor 5: http://projects.ez.no/ezoe \|\| eZJSCore (Ajax): http://projects.ez.no/ezjscore \|\| eZ Publish EE http://ez.no/eZPublish/eZ-Publish-Enterprise-Subscription @: http://twitter.com/andrerom
Brett J	Thursday 26 July 2007 7:19:01 pm Can you please confirm which file confirms this code to be removed? And also that the user is logged in as themselves so any purchases made will be attributed to them and not the listed user? Thank you.

Author

Message

Brett J

Monday 23 July 2007 8:07:40 am

Hello,

I am relatively new to eZ but have found no mention of this issue on searching the forum.

A number of users have registered on the site. User A logs in and (presumably) logs out. A short time later, User B logs in but is met with User A's personal name. On logging out and then in again, User B has the correct name.

As I consider privacy of the utmost importance, and tell this to my clients, this is of course a big issue. I would appreciate any advice that someone could give regarding what the cause of this issue is and how it can be resolved.

Thank you.
Brett

André R.

Monday 23 July 2007 8:42:36 am

It's a cache issue.

upgrade to ezwebin (website interface) 1.2 to fix it

alternatively you can remove this text in your pagelayout:

 ( {$current_user.contentobject.name|wash} )

After doing that you need to clear template and template block cache

eZ Online Editor 5: http://projects.ez.no/ezoe || eZJSCore (Ajax): http://projects.ez.no/ezjscore || eZ Publish EE http://ez.no/eZPublish/eZ-Publish-Enterprise-Subscription
@: http://twitter.com/andrerom

Brett J

Thursday 26 July 2007 7:19:01 pm

Can you please confirm which file confirms this code to be removed? And also that the user is logged in as themselves so any purchases made will be attributed to them and not the listed user?

Thank you.

eZ debug

Timing:	Jan 31 2025 01:16:17
Script start
Timing:	Jan 31 2025 01:16:17
Module start 'layout'
Timing:	Jan 31 2025 01:16:17
Module start 'content'
Timing:	Jan 31 2025 01:16:17
Module end 'content'
Timing:	Jan 31 2025 01:16:17
Script end

Main resources:

Total runtime	0.0240 sec
Peak memory usage	8,192.0000 KB
Database Queries	3

Timing points:

Checkpoint	Start (sec)	Duration (sec)	Memory at start (KB)	Memory used (KB)
Script start	0.0000	0.0061	588.1250	151.2109
Module start 'layout'	0.0061	0.0040	739.3359	220.6875
Module start 'content'	0.0101	0.0125	960.0234	997.8828
Module end 'content'	0.0226	0.0014	1,957.9063	33.9922
Script end	0.0240		1,991.8984

Time accumulators:

Accumulator	Duration (sec)	Duration (%)	Count	Average (sec)
Ini load
Load cache	0.0030	12.5501	14	0.0002
Check MTime	0.0011	4.6679	14	0.0001
Mysql Total
Database connection	0.0008	3.4226	1	0.0008
Mysqli_queries	0.0026	10.8368	3	0.0009
Looping result	0.0000	0.0882	1	0.0000
Template Total	0.0011	4.5	1	0.0011
Template load	0.0008	3.4146	1	0.0008
Template processing	0.0003	1.0728	1	0.0003
Override
Cache load	0.0006	2.5451	1	0.0006
General
dbfile	0.0002	0.9826	8	0.0000
String conversion	0.0000	0.0416	4	0.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

Usage	Requested template	Template	Template loaded	Edit	Override
1	print_pagelayout.tpl	<No override>	extension/community/design/community/templates/print_pagelayout.tpl
Number of times templates used: 1 Number of unique templates used: 1

Time used to render debug report: 0.0001 secs