SW Portal Development -- My Abuse Reports Feature Added & Use SESSION To Remove Security Flaws -- 23-Feb-2023

in hive-151113 •  2 years ago 

E43A5B16-B72A-424D-B865-EA3E81B64AE9.png

Hello everyone!

Hello my friends. how are you, I hope my friends will be happy and well. by the grace of God, I am also well. Abuse spammers reports are uploading on portal. Step by step all detectives will shift on sw portal. Very soon whole steem watcher community abuse reports activities will handle through sw portal. It is in trial phase. Some development changes and security flaws has been done in the last week. I will discuss these changes and security flaws in detail level.

On add detectives page, the security was not applied anyone can get this page by changing the url. Security is increased now. No anyone can access this page except administrators. Only one check is need to add to stop the accessing of general users. Now when the user change the url and try to access the add detective page after login then it will move automatically move on dashboard page.

We have set the Post link and Source link format. When the detectives enter any abuse report without providing any source link. Then “Null” word will display on dashboard. Before this changes empty Source Link is displayed on screen with anchor function. The purpose of this change is to avoid the confusion because when the admin verify the report he can not assure that detectives have provide any source link or not.

Before Updation

9CC23CBF-F30D-489C-AB49-94E0CF342675.png


After Updation

54E54418-D3D1-49D3-A1E2-3464D7AD9B94.png

My Abuse Reports Page is added in the side nav, where detectives can see just their own reports and they can perform the Edit and Delete report action on it. It will also help the detectives to get their links for publishing abuse reports in community because specific format on source link and post link has not been applied on it.

DB9178E7-F16A-4F23-952E-1BD2F3D3A426.jpeg
9235D2CC-F937-46A5-9695-8E4746675731.png
4261AFB7-770B-40CF-8EB9-FF4F6E7C1A9C.jpeg

On admin panel, the total reports will displayed on screen. Admin have full access to change the reports, update the wrong source links and also delete the reports. Here is screenshot of admin panel.

1BE68F63-BE17-406F-ABF4-C0EB121D7958.jpeg
2ED1815D-5865-4693-BC5F-289CC5413E0C.png

These updation and security flaws are handled by using server side PHP language. I fixed the above security flaws by using $_SESSION function. Session variable will store the username and then restrict it when user try to access admin side pages.

Here is the few lines of server side code that helps to increase the security level using SESSIONS.

3E183761-C3AE-4E15-8F74-11534039A48C.jpeg

EFE8F7C7-EFDD-4225-84A0-DCAC79816674.jpeg

BoC- line.png

If anyone have any suggestion, then must share with us in the comment section. we will focus on it and try to apply it if it will suitable.


Thanks for giving your precious time to my post.

Follow | Upvote | Share | Comments

Special Thanks to

Cc: @rme
Cc: @hungry-griffin
Cc: @blacks
Cc: @steemcurator01

Follow me on Instagram.
Instagram

🆃🅷🅰️🅽🅺 🆈🅾️🆄

hive-151113 development sw-portal aw-portal banglawitness steemwatcher dapp steemexclusive
2 years ago by

Downvoting a post can decrease pending rewards and make it less visible. Common reasons:

  • Disagreement on rewards
  • Fraud or plagiarism
  • Hate speech or trolling
  • Miscategorized content or spam

Submit
$66.47
  • Past Payouts $66.47
  • - Author $33.46
  • - Curators $33.01
14 votes
0
Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!