Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-67852

Security overview report shows critical warning for "Default role for all users" with default requestdelete config

    XMLWordPrintable

    Details

    • Affected Branches:
      MOODLE_37_STABLE, MOODLE_38_STABLE, MOODLE_39_STABLE

      Description

      Permission tool/dataprivacy:requestdelete is marked as RISK_DATALOSS and given to the "Authenticated user" role by default, which leads to a critical warning in the "Default role for all users" item of the "Security overview" page with a message: The default user role "Authenticated user" is incorrectly defined! This has the potential to cover up a real configuration mistake.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              KevinC Kevin Chen
              Participants:
              Component watchers:
              Adrian Greeve, Jake Dallimore, Mathew May, Mihail Geshoski, Peter Dias, Amaia Anabitarte, Carlos Escobedo, Ferran Recio, Sara Arjona (@sarjona), Víctor Déniz Falcón
              Votes:
              4 Vote for this issue
              Watchers:
              9 Start watching this issue

                Dates

                Created:
                Updated:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 hour, 30 minutes
                  1h 30m