View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
09606 | Feature requests | Security | public | 2015-04-16 13:52 | 2023-02-08 16:34 |
Reporter | Vitelinside | Assigned To | ollehar | ||
Priority | high | Severity | feature | ||
Status | closed | Resolution | no change required | ||
Summary | 09606: Removing the display of passwords in bounce email | ||||
Description | IT Security problems with password display When using Limesurvey, a user can choose not to finish the survey and to « resume later ». When clicking on the « resume later » button, the user is asked to type in a login, password and email address. He then receives an email in which his login and password are written, the password is therefore visible, readable, clearly displayed. | ||||
Tags | No tags attached. | ||||
Bug heat | 256 | ||||
Story point estimate | 5 | ||||
Users affected % | 80 | ||||
Think we must add a beforeEmail for all email sent by LimeSurvey https://manual.limesurvey.org/BeforeTokenEmail Then this can be done in a plugin (and save must be moved in plugin too ...) |
|
You want to use a hash in the url instead? So that real passwords are never visible? |
|
This is already fixed actually. |
|
? No … Something like
And user must enter manually the password he choose. |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2015-04-16 13:52 | Vitelinside | New Issue | |
2015-04-16 15:54 | Vitelinside | Issue Monitored: Vitelinside | |
2015-04-17 15:38 | DenisChenu | Note Added: 32017 | |
2023-02-08 16:27 | ollehar | Story point estimate | => 5 |
2023-02-08 16:27 | ollehar | Users affected % | => 80 |
2023-02-08 16:29 | ollehar | Priority | normal => high |
2023-02-08 16:30 | ollehar | Note Added: 73750 | |
2023-02-08 16:30 | ollehar | Bug heat | 254 => 256 |
2023-02-08 16:32 | ollehar | Assigned To | => ollehar |
2023-02-08 16:32 | ollehar | Status | new => closed |
2023-02-08 16:32 | ollehar | Resolution | open => no change required |
2023-02-08 16:32 | ollehar | Note Added: 73751 | |
2023-02-08 16:34 | DenisChenu | Note Added: 73752 |