-
-
Notifications
You must be signed in to change notification settings - Fork 804
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unrestricted Exposure of User Data Through the User Query #2214
Comments
This issue did not get any activity in the past 10 days and will be closed in 180 days if no update occurs. Please check if the develop branch has fixed it and report again or close the issue. |
@palisadoes can I get assigned to the issue. |
This issue did not get any activity in the past 10 days and will be closed in 180 days if no update occurs. Please check if the develop branch has fixed it and report again or close the issue. |
Unassigning. Inactivity |
@palisadoes i would like to work on this issue. please assign me this issue. thank you. |
@palisadoes @Cioppolo14 Can you please assign this issue to me. Already resolved the issue locally and wanted to make a PR. Thank you |
@nitintwt I've assigned it to you |
This issue did not get any activity in the past 10 days and will be closed in 180 days if no update occurs. Please check if the develop branch has fixed it and report again or close the issue. |
Describe the bug
The affected query is
User($id: ID!)
which fetches detailed information about a user based on the user ID provided. The current implementation does not restrict users from querying information about others, which violates common privacy principles and data access controls.Potential internship candidates
Please read this if you are planning to apply for a Palisadoes Foundation internship PalisadoesFoundation/talawa#359
The text was updated successfully, but these errors were encountered: