Incorrect access granted to view email addresses [#3054648]

In certain cases an ordinary user with permission 'View users by role' might get access to view private fields of another user including their email address.

Secondly, a sub-admin user with permission 'Edit users by role' is missing access to view the private fields.

Comment	File	Size	Author
#2	private-field-access.3054648-2.patch	600 bytes	adamps

Comments

Comment #1

14 May 2019 at 15:19

AdamPS created an issue. See original summary.

Comment #2

adamps commented 14 May 2019 at 15:21

Status	File	Size
new	private-field-access.3054648-2.patch	600 bytes

Comment #3

14 May 2019 at 15:22

8325678 committed on 8.x-3.x

Issue #3054648 by AdamPS: Incorrect access granted to view email...

Comment #4

adamps commented 14 May 2019 at 15:22

Status:

Active

» Fixed

Comment #5

28 May 2019 at 15:24

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Incorrect access granted to view email addresses

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Child issues

News items

Our community

Documentation

Drupal code base

Governance of community