WebForms module in 4.x was great it only fired an e-mail but the 5.x version has double effect. It fires the e-mail of the web form created plus it also records it in the database. The problem is there is no mechanism to control who submitted, when and what s/he submitted even to the anonymous users. All the users can see the usage of the webfrom, how do I stop this? How do I hide the webform results mainly from anonymous users just giving access to the form give access to its results (submitted values and records) how do I forbid it?

Comments

davemybes’s picture

Check access control settings for webform. Anonymous users should not have anything ticked for webform.

geshan’s picture

Thank you it solved my problem, but are there anyways to send an e-mail only and not put the entry in the database as it used to be in 4.x version?

Geshan

ledelboy’s picture

Version: 5.x-1.7 » 4.7.x-1.2
  1. If anonymous users do not have "access webform results" ticked in their permissions they see an empty form when they click on their e-mail. This is wrong. The whole purpose of the link is to allow them to check their form
  2. Now, if anonymous users have "access webform results" ticked, they can see their own form, in the url sent to them by mail.
    1. This would be perfect, except that they can also see all the results, the tables, the analysis, the whole works.
      Is there a way in 4.7 to allow anonymous users to see their completed webforms without allowing them to see information not meant for their eyes?

quicksketch’s picture

Status: Active » Closed (fixed)