[Plugin: Cimy User Extra Fields] Issue with 'Can be modified only by admin' fields on prof

  • Resolved Matt Jensen

    (@ultrawebsites)


    14 years ago

    Hi there

    Fantastic plugin, thanks very much for your work.

    I have discovered an issue though with the setting for Cimy Extra User Fields named ‘Can be modified only by admin’, when the field also has the setting ‘Show the field in User’s profile’.

    In the HTML output for fields with that setting, the field has the property: ‘disabled=”disabled’.

    However, if the user uses Firefox’s Firebug or Google Chrome’s inspector to edit the HTML and remove that property, they can then edit that field. That wouldn’t be such a problem, however if the user then saves their profile with an edited value, the database also gets updated…!

    So not ideal. I was thinking that a Cimy UEF with those settings should be output as text only. I guess ideally also the ‘backend’ would also prevent anyone adding in an input field to the profile HTML and subsequently updating the value.

    Making the output text only would be a good inclusion for an update to the plugin – any comments? (perhaps even I could help do it?).

    Cheers
    Matt

    https://www.ads-software.com/extend/plugins/cimy-user-extra-fields/

Viewing 5 replies - 1 through 5 (of 5 total)
Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘[Plugin: Cimy User Extra Fields] Issue with 'Can be modified only by admin' fields on prof’ is closed to new replies.