Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-50731

Allow sufficiently permissioned users to access other users Browser sessions report

    XMLWordPrintable

Details

    • Improvement
    • Status: Open
    • Minor
    • Resolution: Unresolved
    • 2.9
    • None
    • Authentication, Reports
    • MOODLE_29_STABLE
    • Easy

    Description

      From a support and administration point of view, it would be very useful if sufficiently authorized users (like admin) could access the Browser session report on the user profile page.

      I don't believe it is really a security issue, as it only exposes: IP address, last access (both of which an admin can get in the logs), the DB record number of the session (in the URL path), and log of sessions.

      I haven't looked through the capabilities list to see if there one that would make sense to tie this to.

      Attachments

        Issue Links

          has a non-specific relationship to

          Sub-task - Issues are sometimes broken into multiple sub-tasks. MDL-47803 New page that shows all browser sessions of current user

          • Major - Major loss of function, incorrect output
          • Closed

          Activity

            People

              Unassigned Unassigned
              emerrill Eric Merrill
              David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: