Evaluate if possible to share users

Created on 6 October 2020, about 4 years ago
Updated 4 June 2024, 7 months ago

Problem/Motivation

Initally user sharing had been made impossible due to the fact that it can have side effects and also impossible to share the password.

I recently discovered that it was possible to pass the hashed password and so it is ok.

curl --location --request POST 'https://default-web-entity-share.docker.localhost/jsonapi/user/user' \
--header 'Content-Type: application/vnd.api+json' \
--header 'Accept: application/vnd.api+json' \
--header 'Authorization: Basic YWRtaW46YWRtaW4=' \
--data-raw '{
  "data": {
    "type": "user--user",
    "attributes": {
      "name": "test",
        "pass": {
            "value": "$S$EKIjS/iDdQ069uS/CaMb57YpE1CknfWvN/hb.kLsJRp5KBWZUuyz",
            "pre_hashed": 1
        },
  "status": 1
    }
  }
}'

So I wonder if we can or make possible to share users.

I also wonder if this should be in a dedicated sub-module or will require a new branch to avoid people making a minor update and then seeing user account deployed accross their website.

Proposed resolution

  • Evaluate if this can work with Entity Share
  • Remove code preventing user sharing
  • Test if possible to make a JSON:API extra field enhancer plugin to expose the hashed password so users can configure if they want password sharing or not.

Remaining tasks

  • Discuss
  • Test the proposed solution
  • Implement the solution properly
  • Add tests

User interface changes

Authorize to select user in the channel form.

Feature request
Status

Active

Version

4.0

Component

Miscellaneous

Created by

🇫🇷France Grimreaper France 🇫🇷

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Merge Requests

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Production build 0.71.5 2024