Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Custom Fields: Add warning to Finder option about information disclosure #42111

Merged
merged 1 commit into from
Oct 17, 2023
Merged

Custom Fields: Add warning to Finder option about information disclosure #42111

merged 1 commit into from
Oct 17, 2023

Conversation

Hackwar
Copy link
Member

@Hackwar Hackwar commented Oct 10, 2023

Pull Request for Issue #42076 .

Summary of Changes

5.0 comes with the new feature that you can index the value from a custom field to a content item. Due to structural limitations, this value is indexed with the same viewing permissions as the content item it is attached to. If your custom field is more restrictive than the viewing level of the content item, this might lead to unwanted information disclosure. It is NOT possible to prevent this in code, so this PR adds a warning label to the option to make people aware of this.

Testing Instructions

Codereview?

Actual result BEFORE applying this Pull Request

No warning below the "Search Index" option in a custom field.

Expected result AFTER applying this Pull Request

Warning below the "Search Index" option.

Link to documentations

Please select:

  • Documentation link for docs.joomla.org:

  • No documentation changes for docs.joomla.org needed

  • Pull Request link for manual.joomla.org:

  • No documentation changes for manual.joomla.org needed

@joomla-cms-bot joomla-cms-bot added Language Change This is for Translators PR-5.0-dev labels Oct 10, 2023
@Hackwar Hackwar mentioned this pull request Oct 10, 2023
Closed
@coolcat-creations
Copy link
Contributor

coolcat-creations commented Oct 10, 2023
edited
Loading

Message is shown, it would be good to display it as an alert warning (orange)

@ceford
Copy link
Contributor

ceford commented Oct 10, 2023

I have tested this item ✅ successfully on a9fb331

I applied the patch and looked at the New Field / Options / Smart Search item - the warning is there and seems fine.

This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/42111.

@Quy
Copy link
Contributor

Quy commented Oct 10, 2023

I have tested this item ✅ successfully on a9fb331

This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/42111.

@Quy
Copy link
Contributor

Quy commented Oct 10, 2023

RTC

This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/42111.

@joomla-cms-bot joomla-cms-bot added the RTC This Pull Request is Ready To Commit label Oct 10, 2023
@HLeithner HLeithner added this to the Joomla! 5.0.1 milestone Oct 12, 2023
@HLeithner HLeithner merged commit 2e2d920 into joomla:5.0-dev Oct 17, 2023
@HLeithner
Copy link
Member

thanks

@joomla-cms-bot joomla-cms-bot removed the RTC This Pull Request is Ready To Commit label Oct 17, 2023
@jgerman-bot jgerman-bot mentioned this pull request Oct 18, 2023
Closed
Kostelano added a commit to JPathRu/localisation that referenced this pull request Jan 11, 2024
@Kostelano
Новое в Joomla 5.0.2 Stable
bd77bc1 
joomla/joomla-cms#42111 +
joomla/joomla-cms#42322 +
joomla/joomla-cms#42388 +
joomla/joomla-cms#42387 +
joomla/joomla-cms#42574 - (только для en-GB)
+ несколько Upmerge с 4.4.2 в 5.0.2
@Hackwar Hackwar deleted the 5.0-finder-warning branch March 22, 2024 10:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Language Change This is for Translators
Projects
None yet
Milestone
Joomla! 5.0.1
Development

Successfully merging this pull request may close these issues.
6 participants
@Hackwar @coolcat-creations @ceford @Quy @HLeithner @joomla-cms-bot