Project

General

Profile

Actions
Copy link

Bug #2839

open

[Attendees] User that is not logged in as an admin user is able to delete an attendee

Added by Tea K about 1 year ago. Updated about 1 year ago.

Status:
New
Priority:
High
Assignee:
Tea K
Start date:
12/18/2024
Due date:
% Done:

0%

Estimated time:
Severity:
Major

Description

By clicking on the "Delete" icon button an attendee can be deleted by a user who does not have permissions as an admin user.

Environment
PC / Windows 10 Pro V. 22H2 /Microsoft Edge Version 131.0.2903.99
Huawei Nova/OS EMUI 14/Google Chrome Version 131.0.6778.135
https://qainterrapt.brainster.xyz/attendees

Steps to reproduce
  1. Log in to the system
  2. Navigate to the "Attendees" page
  3. Click on the "Delete" icon button
  4. Select "Yes, delete it" from the delete dialog box that appears on the screen
  5. Observe the behavior of the page

Expected Result:
The system should not allow a user that does not have permissions as an admin user to delete an attendee.

Actual Result:
The system allows an attendee to be deleted by an user that is not an admin user. A delete dialog box appears. By clicking on the "Yes, delete it" button an attendee is deleted.

Actions
Copy link

Also available in: Atom PDF