Open maltfield opened 8 months ago
Note: it appears that it's not possible for users to block apps from being able to initiate an Intent.ACTION_GET_CONTENT
For additional context of this issue, please see Nightmare on Lemmy Street (A Fediverse GDPR Horror Story)
Pre-Flight checklist
Describe The Feature Request Below
Feature request: Please add a setting that will prevent any UI element from appearing on the screen that, when clicked, has the possibility to upload a file to a lemmy server.
Problem
Currently in just two accidentally mis-taps, a user can inadvertently upload a very sensitive photo to lemmy.
If, for example, a user:
...then the very sensitive photo will be swiftly uploaded to the user's lemmy instance -- and be publicly available to anyone with the photo's URL :'(
This is especially an issue because users cannot delete any images that they've uploaded to lemmy in jerboa nor can they delete images that they've uloaded in the lemmy WUI. Moreover, deleting their account doesn't delete the images that they've uploaded either.
Solution
Some users have very sensitive photos on their phone, and they never, ever want to be able to use lemmy to upload photos (either lurkers or people who are fine with just posting text only).
These users should be able to protect themselves from the risk of accidentally uploading very sensitive photos to lemmy by going into their settings and ticking a box that says
never upload files to lemmy
. The result of this box would either:Demo
For a video demonstrating this risk, please see the following video where, in a totally hypothetical situation), a user:
https://github.com/dessalines/jerboa/assets/5026712/094d3056-1ab1-4c11-9aac-96f12f209077
(Note: in the above dramatized video reconstruction of a totally hypothetical situation, the blurred-out photos are oil paintings taken from mediawiki. In reality, when this happened to me, the photo that was uploaded was an image of my government-issued ID -- which was a nightmare that I never want to experience again)