Group members list visible for unautorized users

Events happening in the community are now at Drupal community events on www.drupal.org.
zosta's picture
Posted by zosta on December 9, 2011 at 6:04pm

I have just discovered that members list can be accesed by unautorized users if they know proper url. That seems a bug and may be a security issue. It is possible that I missed something in configuration and if that is the case, please advise.

Comments

How to limit member list to group members

Posted by inkprov on January 30, 2012 at 1:35am
inkprov's picture

Is there a way to show members of a group only if the person viewing the list is a member of the group?

How do you limit who sees members? Why is this so difficult?

Posted by clearwaternazarene on February 5, 2012 at 1:39pm
clearwaternazarene's picture

We are about to cancel the entire idea of using groups at our new sites because it seems impossible to find basic instructions on how to list or not list members.
Why is something so fundamental totally hidden from the documentation?
I have been searching for days on the web trying to find how to limit the list of members to no avail.

Some ideas

Posted by ontological on February 5, 2012 at 7:56pm
ontological's picture

I put some notes in the issue you created for the OG project. Hope they help in finding a solution.

Organic groups

Group organizers

Group notifications

This group offers an RSS feed. Or subscribe to these personalized, sitewide feeds: