I have a "Filtered HTML Extended" input format which is used by a few people (editors and moderators) on a site. Normal members and anonymous users don't have access to this input format.

The problem begins when a comment is submitted in the above input format ("Filtered HTML Extended"). When a user that doesn't have access to this input format views that comment, the signature will read "n/a".

I've tracked this down to check_markup(), which user.module calls in user_comment(), to filter the signature before appending it to the comment. I believe FALSE should be passed as a third parameter to check_markup(), which effectively bypasses the filter_access() check, allowing anyone to view the signature without requiring them to have access to the input format the comment is written in.

As I'm not an experienced Drupal developer, I may be missing something critical here, so I'm attaching my proposed patch for review.

Any feedback is welcome! :)

CommentFileSizeAuthor
#1 drupal.user-comment-signature.patch2.48 KBsun
user_comment_signature.patch570 bytesfoutrelis
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

sun’s picture

sun
Primary language German
Location Karlsruhe
CreditAttribution: sun commented
Version: 6.9 » 7.x-dev
Component: comment.module » user.module
Assigned: Unassigned » sun
FileSize
drupal.user-comment-signature.patch2.48 KB

Re-rolled for HEAD.

RTBC if bot passes.

sun’s picture

sun
Primary language German
Location Karlsruhe
CreditAttribution: sun commented
Status: Needs review » Needs work

No.

webchick’s picture

webchick
she/they
Primary language English
Location Vancouver 🇨🇦
CreditAttribution: webchick commented

Let's get some tests here too. If this has been broken for 16 months, it's likely to break again.

I'm not sure about passing in FALSE there though; that seems like it'll introduce a security vulnerability. But testing will let us know that too. :)

sun’s picture

sun
Primary language German
Location Karlsruhe
CreditAttribution: sun commented
Issue tags: +FilterSystemRevamp
David_Rothstein’s picture

David_Rothstein CreditAttribution: David_Rothstein commented

Subscribe. It seems like passing in FALSE is required to fix the bug, I think? In general, using TRUE is rarely (never?) needed for security reasons... see #446518: Remove $check argument from check_markup()

geerlingguy’s picture

geerlingguy CreditAttribution: geerlingguy commented

D'oh! Just encountered this issue on a new site I'm building. Would be nice to have it fixed, then backported to D6.

sun’s picture

sun
Primary language German
Location Karlsruhe
CreditAttribution: sun commented
Version: 7.x-dev » 6.x-dev
Assigned: sun » Unassigned

This bug only exists in D6. I'm not particularly interested in D6.

Numline1’s picture

Numline1 CreditAttribution: Numline1 commented
Status: Needs work » Needs review
Issue tags: -FilterSystemRevamp

user_comment_signature.patch queued for re-testing.

Status: Needs review » Closed (outdated)

Automatically closed because Drupal 6 is no longer supported. If the issue verifiably applies to later versions, please reopen with details and update the version.