Uploaded image for project: 'PUBLIC - Liferay Social Office Community Edition'
  1. PUBLIC - Liferay Social Office Community Edition
  2. SOS-1809

Regular users are able to view Private and Private Restricted site wiki activities if they are connected to or following a member of that site

    Details

    • Fix Priority:
      4
    • Affects Portal Version/s:
      6.1.30 EE GA3, 6.1.20 EE GA2

      Description

      Here are the steps to reproduce:

      1. Add an SO user and add that user as a connection
      2. Add a Private or Private Restricted SO site
      3. Add and update the wiki FrontPage of the site
      4. Sign out and sign as the SO user
      5. Go to Dashboard -> Activities

      Expected result:
      The user should not be able to see the wiki activity

      Actual result:
      The user will see the wiki activity along with the site name (Private Sites should not be visible to non-members)

      The user will not be able to access the site.

        Attachments

          Activity

            People

            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Days since last comment:
                3 years, 17 weeks, 1 day ago