View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000085 | XMB1 | New Features | public | 2008-07-30 00:37 | 2008-08-07 10:48 |
| Reporter | miqrogroove | Assigned To | miqrogroove | ||
| Priority | high | Severity | feature | Reproducibility | N/A |
| Status | closed | Resolution | fixed | ||
| Target Version | 1.9.11 | Fixed in Version | 1.9.11 | ||
| Summary | 0000085: [API] User Status Masquerade Within Session | ||||
| Description | It is inevitable that hackers and modders, eventually even XMB devs, will need to add a feature that requires a temporary downgrade of user status. We could call this the masquerade permissions set. Example: I've created a beta version of an XML Sitemap Protocol addon for XMB. It generates a list of all the primary URLs on the board, including all posts and forums. Now there's an immediate problem with this concept. If I login as SADMIN and run the Sitemap script, that script is going to have access to posts and forums that are not part of the sitemap. I need the script to masquerade as X_GUEST when it queries the list of forums that it should have access to. With some clever coding, I believe we can make that exact feature a reality. | ||||
| Tags | API | ||||
| MySQL Version | |||||
| PHP Version | |||||
| Web Server | |||||
| Browser | |||||
| Flags | |||||
| Original Reporter | |||||
| SVN Revision | 1186 | ||||
| Git Commit | |||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2008-07-30 00:37 | miqrogroove | New Issue | |
| 2008-07-30 14:39 | miqrogroove | Tag Attached: API | |
| 2008-08-02 01:57 | miqrogroove | SVN Revision | => 1186 |
| 2008-08-02 01:57 | miqrogroove | Status | new => resolved |
| 2008-08-02 01:57 | miqrogroove | Fixed in Version | => 1.9.11 |
| 2008-08-02 01:57 | miqrogroove | Resolution | open => fixed |
| 2008-08-02 01:57 | miqrogroove | Assigned To | => miqrogroove |
| 2008-08-07 10:48 | miqrogroove | Status | resolved => closed |
