Log in | Register
  1. Forum
  3. Discontinued Products
  5. JFBConnect v8.x Support (Joomla 3 Only) (CLOSED)
  7. Security problem

Topic-icon Security problem

Active Subscriptions:

None
12 years 3 months ago - 12 years 3 months ago #41139 by reggio-metals
Hi

I noticed something fatal in my site now :o i registered via facebook button that JFBC provided . everything is fine , i can even post comment to the articles ..
and then i logged out , created a new user ( didnt login via facebook ) and the user logged in but could post comment on articles as my facebook user :o how is that even possible ? yes maybe coz its the same pc , but what if the user is opening my site in a public place like an internet cafe ?

please check this out asap for me :D

P.S just noticed i can still post comments even after i logout !!!

www.syrianabroad.com
Last edit: 12 years 3 months ago by reggio-metals.
The topic has been locked.
Support Specialist
12 years 3 months ago #41144 by alzander
Replied by alzander on topic Security problem
It's because you are still logged into Facebook. The Facebook Comment box (or Like button, for instance) don't operate based on whether you are logged into Joomla, but instead based on whether you are logged into Facebook.com.

In the JFBConnect -> Configuration -> Facebook area, there is an option for "Logout of Joomla Only". If that is set to 'no', the user will be logged out of Joomla *and* Facebook when they log out of your site. It sounds like you may want to configure it that way. Otherwise, when a user logs out of your site they will remain logged into Facebook.com and need to logout of Facebook on their own if they want.

I hope that helps explain,
Alex
The topic has been locked.
  1. Forum
  3. Discontinued Products
  5. JFBConnect v8.x Support (Joomla 3 Only) (CLOSED)
  7. Security problem
From the Blog
Facebook | Twitter | LinkedIn | Blog RSS