- Level: EnlightenedPosts: 72
Hi,
This relates to the BuddyPress Moderation Tools plugin and the included BuddyPress Block Users Plugin.
If a user has the direct compose new message URL for a suspended user, then it is possible for them to send a new message to a suspended user.
The same is true when a blocked user tries to contact the blocker, or when the blocker tries to contact the blocked user; it is still possible to start a new thread if you have the direct profile URL with the compose portion included (e.g. /members/myprofileurlhere/messages/compose/?r=profiletomessagehere&_wpnonce=<wpnoncegoeshere> or /members/myprofileurlhere/messages/compose/?r=profiletomessagehere).
In all of the above situations, the user will get notified about the message in a notification email (assuming they have email notifications on).
We are using BuddyPress 10.6.0 and using the Legacy Template Pack.
Thanks.
- (BuddyDev Team)Posts: 24623
Hi,
Thank you for reporting the issue.
Please allow us to test it. This should not work. If it is, It could be a bug. We will test and conform you on/after Monday.Thank you
Brajesh - Level: EnlightenedPosts: 72
Hi Brajesh,
We’ve done some further testing, and believe the issue is related to the “BuddyPress Private Message Rate Limiter” plugin, which we also have running. When this plugin is turned off, a blocked or suspended user cannot be messaged via the direct compose new message URL.
All three plugins are up to date. We’ve tested it on an install which is only running these plugins and BuddyPress, with a default theme.
Thanks.
- (BuddyDev Team)Posts: 24623
Level: Yogi(BuddyDev Team)Posts: 3115Hello Nifty,
I have tried to create this issue on my development server but I am unable to create this. Can you please share a short video of the issue and how are you creating this so that I can check then fix it.
Regards
Ravi- Level: EnlightenedPosts: 72
Hi Ravi,
Thanks for looking into this. We can’t take a short video right now unfortunately, but have linked some screenshots of the settings we have in each of the plugins below.
https://snipboard.io/sQJGMp.jpg
https://snipboard.io/dHhlUx.jpg
https://snipboard.io/ZFcYma.jpg
https://snipboard.io/mWwcTy.jpgWe’re using the Legacy Template Pack, as mentioned above, but with further testing have also noted that this is not an issue with the Nouveau Template Pack.
Please let us know if there’s anything else we can provide to assist.
Thank you.
- Level: Yogi(BuddyDev Team)Posts: 3115
Hello Nifty,
Thank you for sharing the screenshots. I will check it again and will update you soon.
Regards
Ravi - Level: Yogi(BuddyDev Team)Posts: 3115
Hello Nifty,
You are right with legacy both blocker and blocked user can start new conversation with each other. I am going to fix this today and will update you soon.
Regards
Ravi - Level: EnlightenedPosts: 72
Thanks, Ravi. Will the fix also apply to suspended users?
- Level: Yogi(BuddyDev Team)Posts: 3115
Hello Nifty,
Sorry for the delayed reply. I have updated the plugin BP Private Message Rate Limiter and BuddyPress Block Users please upgrade and give it a try.
Regards
Ravi
You must be logged in to reply to this topic.