Impersonate user session ending gains admin access The impersonate user session is being used in the towns that we know to provide ...
Nou comentari a Rewrite comments in Rails
Nou comentari a Registration form customization
Allow authorization handlers to control when reauthorization is allowed Currently the only way to allow users to reauthorize themselves using a specific...
[Critical] Managed users with same name "steals" other person's identity When a Decidim instance has a form authorization handler, it allows the admin us...
After the user accepts the TOS, they are redirected back to the TOS page If the user has not yet accepted the TOS, they are asked to accept it before the...
GDPR / Data portability - User authorizations metadata Currently it seems it seems the "My data" export does not contain the user's aut...
Better control of the authorization permission requirements for a component BACKGROUND Currently Decidim allows to define required authorizations for a com...