As I was scrolling through my forum, I was randomly thinking about a long time ago on my older forum on how a member was capable of accessing the staff room. I remember that I was chatting with other users in my chatbox along with a couple of my members in the staff team, and I was trying to get them to go and reply to a thread in the staff room that I have created. They were saying how "lazy" (you know how users commonly say that nowadays) they were and etc, so I decided that I should just post the link in the chatbox we were chatting in so they can access it from there. I figured that the members would be able to click the link but not access the forum, so I thought it was going to be okay. However, a couple of users found that thread that I posted the link to and replied to that thread in the staff room (hence they were members); and from that day on, I have always wondered how those users were able to do that. So as I was scrolling through my forum (as I stated before) I decided to try to google up an explanation for how it is manually possible to access an unauthorized link. This is what I found :
http://drupal.org/node/447022
I found it quite interesting that it was possible to actually access an unauthorized link that you don't have access to. Apparently, if you have a link to a topic in that unauthorized forum (not the forum) saved somewhere, then you have complete access to that thread even though you aren't authorized access to it. Quite interesting if you ask me. 😀
http://drupal.org/node/447022
I found it quite interesting that it was possible to actually access an unauthorized link that you don't have access to. Apparently, if you have a link to a topic in that unauthorized forum (not the forum) saved somewhere, then you have complete access to that thread even though you aren't authorized access to it. Quite interesting if you ask me. 😀
