View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|15767||Bug reports||User / Groups / Roles||public||2020-01-24 11:39||2020-02-17 11:22|
|Summary||15767: Users (super admin user) could change pw using massive action|
In the "User Management panel" you have the possibility to change password of every user (including the user who is logged in) by massive action at once.
In the worse case this could mean, nobody could log in anymore when not getting an email.
But what will happen, if those emails (with a randomized password) could not be send or not be read for some reason? Nobody could ever log in again and installation process has to be done again (loosing the actual data in the db).
Maybe it could be a good idea to exclude the user who is logged in and the super admin for this massive action?
|Steps To Reproduce|
BE CAREFUL (when reproducing it, you'll have to do the installation again)
(1) Log in as super admin user (having a wrong/unknown email address saved)
A random password will be saved in database and the email with that new password will never arrive...
|Tags||No tags attached.|
|Complete LimeSurvey version number (& build)||Version 4.0.0-RC14|
|I will donate to the project if issue is resolved||No|
|Database & DB-Version||mysql|
|Server OS (if known)|
|Webserver software & version (if known)|
Fix committed to master branch: http://bugs.limesurvey.org/plugin.php?page=Source/view&id=29561
Fixed in Release 4.1.5+200217
|2020-01-24 11:39||pstelling||New Issue|
|2020-01-24 11:39||pstelling||Status||new => assigned|
|2020-01-24 11:39||pstelling||Assigned To||=> cdorin|
|2020-02-07 13:25||eddylackmann||Assigned To||cdorin => eddylackmann|
|2020-02-07 13:25||eddylackmann||Status||assigned => testing|
|2020-02-07 18:32||DenisChenu||Note Added: 55812|
|2020-02-14 11:47||eddylackmann||Changeset attached||=> LimeSurvey master 8eedb507|
|2020-02-14 11:47||eddylackmann||Note Added: 56012|
|2020-02-14 11:47||eddylackmann||Resolution||open => fixed|
|2020-02-17 10:19||eddylackmann||Status||testing => resolved|
|2020-02-17 11:22||lime_release_bot||Note Added: 56052|
|2020-02-17 11:22||lime_release_bot||Status||resolved => closed|