Anonymous User can edit all comments

«

Previous topic

|

|

Next topic

»

Author	Message
Ekkehard Dörre	Friday 25 June 2004 5:15:01 am Hi, I use article comments with anonymous user can post and content approval by admin. Problem: In role they need content create and edit. So any anonymous visitor can edit all done comments from other visitors. Any ideas, workaround? Thanks, ekke http://www.coolscreen.de - Over 40 years of certified eZ Publish know-how: http://www.cjw-network.com CJW Newsletter: http://projects.ez.no/cjw_newsletter - http://cjw-network.com/en/ez-publ...w-newsletter-multi-channel-marketing
Ekkehard Dörre	Sunday 27 June 2004 3:12:04 am I found this bug notice by Volker Lenz http://ez.no/community/bug_reports/how_to_allow_simple_posting_for_anonymous_users_no_login_requirements Is this hack the only workaround? Greetings ekke http://www.coolscreen.de - Over 40 years of certified eZ Publish know-how: http://www.cjw-network.com CJW Newsletter: http://projects.ez.no/cjw_newsletter - http://cjw-network.com/en/ez-publ...w-newsletter-multi-channel-marketing
Ekkehard Dörre	Tuesday 29 June 2004 5:46:06 am This hack works for 3.3.5 too, Thanks to Volker, before it was a big security hole. Greetings, ekke http://www.coolscreen.de - Over 40 years of certified eZ Publish know-how: http://www.cjw-network.com CJW Newsletter: http://projects.ez.no/cjw_newsletter - http://cjw-network.com/en/ez-publ...w-newsletter-multi-channel-marketing
Volker Lenz	Thursday 09 September 2004 8:03:46 am BTW my hack works with ezp 3.4.x, too. And I hope that this hack will soon become a part of the ez standard, because I really dislike copying-pasting my codepieces in frequently changing versions of ezcontentobject.php :-(

Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.

eZ debug

Timing:	Jan 18 2025 10:31:36
Script start
Timing:	Jan 18 2025 10:31:36
Module start 'layout'
Timing:	Jan 18 2025 10:31:36
Module start 'content'
Timing:	Jan 18 2025 10:31:36
Module end 'content'
Timing:	Jan 18 2025 10:31:36
Script end

Main resources:

Total runtime	0.0330 sec
Peak memory usage	2,048.0000 KB
Database Queries	3

Timing points:

Checkpoint	Start (sec)	Duration (sec)	Memory at start (KB)	Memory used (KB)
Script start	0.0000	0.0105	588.0313	152.6406
Module start 'layout'	0.0105	0.0040	740.6719	39.4766
Module start 'content'	0.0145	0.0156	780.1484	93.3359
Module end 'content'	0.0301	0.0028	873.4844	34.3047
Script end	0.0329		907.7891

Time accumulators:

Accumulator	Duration (sec)	Duration (%)	Count	Average (sec)
Ini load
Load cache	0.0031	9.3750	14	0.0002
Check MTime	0.0012	3.7315	14	0.0001
Mysql Total
Database connection	0.0022	6.6668	1	0.0022
Mysqli_queries	0.0054	16.4063	3	0.0018
Looping result	0.0000	0.0788	1	0.0000
Template Total	0.0020	6.1	1	0.0020
Template load	0.0011	3.2817	1	0.0011
Template processing	0.0009	2.7538	1	0.0009
Override
Cache load	0.0007	2.2628	1	0.0007
General
dbfile	0.0003	0.8352	8	0.0000
String conversion	0.0000	0.0296	4	0.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

Usage	Requested template	Template	Template loaded	Edit	Override
1	print_pagelayout.tpl	<No override>	extension/community/design/community/templates/print_pagelayout.tpl
Number of times templates used: 1 Number of unique templates used: 1

Time used to render debug report: 0.0001 secs