Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-61707

Pre-signup (minor check) session is not deleted upon signup

    XMLWordPrintable

    Details

    • Testing Instructions:
      Hide
      1. Log in as Admin:
        1. enable 'Digital age of consent verification' (Site administration > Privacy Settings).
        2. set 'Self registration' = 'Email-based self-registration' (Site administration > Plugins > Authentication > Manage authentication).
      2. Logout as Admin.
      3. In "Home" page follow the "Log in" link.
      4. In the Login page click on "Create new account".
      5. The 'Age and location verification' page should be displayed; fill out the form and make sure you the user is not a digital minor:
        • 'What is your age?' = 30
        • 'In which country do you live?' = Austria
        • Click "Proceed"
      1. The signup page should be displayed; fill out the form and press "Create my new account".
      2. After account creation go back to "Home" page; follow the "Log in" link.
      3. In the Login page click on "Create new account".
        • make sure you are directed to the 'Age and location verification' page.
      Show
      Log in as Admin: enable 'Digital age of consent verification' (Site administration > Privacy Settings). set 'Self registration' = 'Email-based self-registration' (Site administration > Plugins > Authentication > Manage authentication). Logout as Admin. In "Home" page follow the "Log in" link. In the Login page click on "Create new account". The 'Age and location verification' page should be displayed; fill out the form and make sure you the user is not a digital minor: 'What is your age?' = 30 'In which country do you live?' = Austria Click "Proceed" The signup page should be displayed; fill out the form and press "Create my new account". After account creation go back to "Home" page; follow the "Log in" link. In the Login page click on "Create new account". make sure you are directed to the 'Age and location verification' page.
    • Affected Branches:
      MOODLE_33_STABLE, MOODLE_34_STABLE
    • Fixed Branches:
      MOODLE_34_STABLE, MOODLE_35_STABLE
    • Pull from Repository:
    • Pull Master Branch:
      MDL-61707-master
    • Pull Master Diff URL:

      Description

      The pre-signup (minor check) session is not deleted upon user sign up. The session being still present means the user can bypass the minor check (if activated) when attempting to create another account.

      Steps to replicate:

      1. As admin:
        1. enable 'Digital age of consent verification' (Site administration > Privacy Settings).
        2. set 'Self registration' = 'Email-based self-registration' (Site administration > Plugins > Authentication > Manage authentication).
      2. Logout as Admin.
      3. In "Home" page follow the "Log in" link.
      4. In the Login page click on "Create new account".
      5. The 'Age and location verification' page should be displayed; fill out the form and make sure you the user is not a digital minor:
        • 'What is your age?' = 30
        • 'In which country do you live?' = Austria
        • Click "Proceed"
      1. The signup page should be displayed; fill out the form and press "Create my new account".
      2. After creation go back to "Home" page; follow the "Log in" link.
      3. In the Login page click on "Create new account".
        • you are directed to the 'Signup' page instead of 'Age and location verification' page.

        Attachments

          Issue Links

          has a non-specific relationship to

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-63677 Random redirection during policy agreement and signup

          • Minor - Minor loss of function where workaround is possible
          • Closed

            Activity

              People

              Assignee:
              Geshoski Mihail Geshoski
              Reporter:
              Geshoski Mihail Geshoski
              Peer reviewer:
              Carlos Escobedo Carlos Escobedo
              Integrator:
              Andrew Lyons Andrew Lyons
              Tester:
              Janelle Barcega Janelle Barcega
              Participants:
              Component watchers:
              Adrian Greeve, Jake Dallimore, Mathew May, Mihail Geshoski, Peter Dias, Sujith Haridasan
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Fix Release Date:
                10/Sep/18

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 30 minutes
                  30m