kawaii / mybb-amnesia Goto Github PK

Title of issue explains it all. I may be wrong, but I feel like international courts will not accept the user as being banned for a reason of being unable to pull their data. And banning a user does not remove their data from the site inherently.

Maybe would be nice to redirect user to the main page (or configurable URL)

Tried testing the data export function and got the following issue with one of the custom profile fields on export. Running MYBB 1.8.15 and PHP 7.1.9

Fatal error: Uncaught DOMException: Invalid Character Error in D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\core_portability.php:300 Stack trace: #0 D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\core_portability.php(300): DOMDocument->createElement('Main Callsign') #1 D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\core_portability.php(305): amnesia\appendArrayToXmlElement(Array, Object(DOMDocument), Object(DOMElement)) #2 D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\core_portability.php(194): amnesia\appendArrayToXmlElement(Array, Object(DOMDocument), Object(DOMElement)) #3 D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\hooks_frontend.php(239): amnesia\outputUserPersonalDataXml(1, true) #4 D:\non_game_servers\wamp\www\devildogs\inc\class_plugins.php(142): amnesia\Hooks\usercp_start('') #5 D:\non_game_servers\wamp\www\devildogs\usercp.php(57): pluginSystem->run_hooks(Array) #6 {main} thrown in D:\non_game_servers\wamp\www\devildogs\inc\plugins\amnesia\core_portability.php on line 300

Not sure why it is complaining about invalid character. This is a plain text profile field.

Hello!
A german Forum I am responsible for will use this plugin and I wanted to ask if there are plans to add translation. I would be glad to provide the informal german translation (deutsch_du). (In fact, I am already working on it because I need it for my forum)

Best Regards!
Thomas

Created a test user and made some posts to test erasing a user. I asked to have the account erased and I then could not log out of the forums, as every time I hit logout, the plugin redirected me to the page saying my erasure is pending acceptance by an admin. To log out, I had to clear my data in firefox for the past hour. Not sure if you want to fix it, but I am reporting it.

For GDPR requirements it isn't enough that an user click accept on registration but the consent must be registered somewhere (eg. in the database) including date and time.
Users should also be able to revoke consent at any time.

I have added a custom field with a checkbox checked to show in the registration form.

This is a great concept for a plugin, but it never includes any of the posts when performing a data export, which is arguably what a user would care about most if they were about to leave a site.

Is there any possibility of enhancing the plugin to include all the posts in an export?

Hi, I have the latest version of the plugin and the options menu does not work, if I click nothing happens.

Tested with Firefox 63.0.1 and Chrome 70.0.3538.77
MyBB 1.8.19 default theme, PHP Version 7.1.23, PluginLibrary v. 13

Many thanks

https://ico.org.uk/for-organisations/resources-and-support/data-protection-self-assessment/
https://ico.org.uk/media/1624219/preparing-for-the-gdpr-12-steps.pdf

Those are more or less what you'll need to figure out what has to get done.

The main implementation missing seems to be a popup which displays cookie policy and privacy policy along with an understood button before people actually use the site. This seems to be mainly implements by a floating popup at the bottom of the page. Think this would be a useful addition, as the data acceptance is also important for non-registered members but the current implementation currently only has it for registered members.

Main importance here is for acceptance of cookies.

It would be nice if there is an automatic function to anonymize quotes in posts of deleted users.
I'm currently doing this via a db query, like:

UPDATE mybb_posts SET `message` = REPLACE(`message`, "quote='oldusername'", "quote='newusername'") WHERE `message` LIKE "%quote='oldusername'%";

Hi, it seems that the Personal Data Erasure link is visible even if you are a guest.
https://github.com/kawaii/mybb-amnesia/blob/master/inc/plugins/amnesia/hooks_frontend.php#L431

I think it shouldn't.

Today I was translating the plugin and I found that the string "amnesia_personal_data_erasure_waiting_period_days" is never displayed in the page.

Today i was testing this plugin and I found that if you leave the password field empty nothing happen and no error is shown.

Would be nice to have all-in-one solution which covers all the policies... maybe in future version this would be really nice