Task: On hidden issues, let’s have a page with only the words “this issue has been hidden by the user that reported it.” And then a button “request access”

OWASP-BLT / BLT

OWASP BLT is a bug logging tool to report issues and get points, organizations are held accountable.

https://blt.owasp.org

GNU Affero General Public License v3.0

131 stars 132 forks source link

Task: On hidden issues, let’s have a page with only the words “this issue has been hidden by the user that reported it.” And then a button “request access” #1090

Open fredfalcon opened 1 year ago

fredfalcon commented 1 year ago

          Instead of a 404, let’s have a page with only the words “this issue has been hidden by the user that reported it.” And then a button “request access”

Originally posted by @fredfalcon in https://github.com/OWASP/BLT/issues/1089#issuecomment-1448059576

fredfalcon commented 1 year ago

When you click request access it emails the bug reporter

Kej-r03 commented 1 year ago

/assign

Prakhar-Shankar commented 1 year ago

@fredfalcon can you please provide steps to reproduce this.

HanilJain commented 7 months ago

/assign

HanilJain commented 7 months ago

@DonnieBLT #1685 in this issue privately reported bug wouldn't be listed on the public folder so how would a user land on the hidden issues. (it's only possible if he knows the pk number of issue and insert it in /issue/pk/ here ) do you want feature after he does the above method?

DonnieBLT commented 7 months ago

Yes, it would be for that circumstance, or if the issue was once public, and now is private.