-
Bug
-
Resolution: Fixed
-
Critical
-
3.4.2
-
MOODLE_34_STABLE
-
MOODLE_35_STABLE
-
wip-
MDL-62493-master -
-
Privacy Sprint 1
We are using the tool_policy plugin on our site where we have some Guest accessible courses and found a problem when a student using Guest Access tried to Create an Account.
When students enter guest accessible course their status changes from "Not logged in" to "Logged in a Guest" and when they click a link to the Create Account (signup) page they get a message like like the one below. Unfortunately, even if they leave the browser this recurs when they return even if they go direct to Create account.
The reason for this based on some testing I have done is that the MoodleSession cookie means they come back in with Guest status based on the persisting record in mdl_sessions (if they use a different browser and go in directly to Create Account ... then it works).
I can understand why a Guest cannot agree the policies but since this is blocking their access to Create and Account this is a problem.
We need to fix this as we are losing some new accounts that people wanted to create. We are reluctant to turn-off the Policy plugin because it is exactly what we need for the GDPR deadline next week and we would have a security/compliance issue in that case.
A fix or advice on where we might be able to patch this in short term would be very welcome - thanks.