[MDL-68275] Avatar max size should use $CFG->userquota instead of $CFG->maxbytes - Moodle Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Won't Fix
Affects Version/s: 3.8.2
Fix Version/s: None
Component/s: User management
Labels:
- triaged

Affected Branches:
MOODLE_38_STABLE

Description

Hello,

In user/edit.php (line 165), we have

_{^{$filemanageroptions = array('maxbytes' => $CFG->maxbytes,}}
{{ _{^{'subdirs' => 0,}}}}
{{ _{^{'maxfiles' => 1,}}}}
{{ _{^{'accepted_types' => 'web_image');}}}}

-~~This means that users can upload avatar of the maximal size authorizes in moodle. This can lead to abuse. What about using the $CFG~~>userquota which can be controlled.

What do you guys think about it?

Best regards.

Noel Dieschburg

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Noel Dieschburg

Participants:: Noel Dieschburg, Víctor Déniz Falcón

Component watchers:: Amaia Anabitarte, Carlos Escobedo, Ferran Recio, Ilya Tregubov, Sara Arjona (@sarjona)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 27/Mar/20 5:22 PM

Updated:: 10/Apr/20 6:04 PM

Resolved:: 10/Apr/20 6:04 PM