Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
By sbsn on
"localhost:8080?q=/rest/user" gives all user's names mails, pictures etc..
Isn't it a security problem? I don't want to share this information with everyone. How could I restrict the reachability of user info.
Comments
You could find out which
You could find out which module is providing data on this path and disable it. D6 does not natively provide REST data or any other data at this path.
Digit Professionals specialising in Drupal, WordPress & CiviCRM support for publishers in non-profit and related sectors