Privacy / Security Check List
( please add missing / check alpha)
(please add detailed explanation how to check for the status in the code)
- not logged in member:
- must not see non public profiles
- in search
- by direct link
- redirected from eg. forum post
- must not be able to
- leave comments
- write messages
- upload pictures
- write forum posts
- must not see non public profiles
- member who signed up but is not yet accepted (but logged in):
- ...
- member who has do give more information but is not yet accepted (needmore):
- same as not accepted
- rejected member:
- same as not logged in (must not be able to log in)
- inactive member:
- crawler/spider (i. e. from search engines) shouldn't have access to non public profiles as well
technical explanation about Public profiles
