Everyone on the Internet bug with Mobile

  • 0
  • 1
  • Question
  • Updated 9 months ago
  • Acknowledged
I created a single report that can be accessed by the Role Everyone on the Internet (EOTI). The EOTI role was set without the ability to modify records.  But when a user in the role of EOTI access the report via mobile, they are able to access full records from the report and save them. This is not ideal.  What do I need to do to prevent anyone on a mobile device from accessing and modifying all of my records?
 
Photo of Ringoparr

Ringoparr

  • 782 Points 500 badge 2x thumb

Posted 9 months ago

  • 0
  • 1
Photo of Ringoparr

Ringoparr

  • 782 Points 500 badge 2x thumb
Also, the report was created without the ability to view or edit records. But when you load the report on a mobile device you can view and edit everything.
Photo of Esther

Esther

  • 702 Points 500 badge 2x thumb
I have a open internet roll also in internet and it works perfectly.

Can you share a screen shot of the EOIT user roll setup ? and we can see if there is something wrong in the setup. 
Photo of QuickBaseCoach App Dev./Training

QuickBaseCoach App Dev./Training, Champion

  • 52,928 Points 50k badge 2x thumb
It’s highly unlikely that there is that gaping hole in security.

It’s more likely that you are still logged on when you are testing the EOTI Role.
Photo of Ringoparr

Ringoparr

  • 782 Points 500 badge 2x thumb
smh can we delete this thread? My team mislead me.
Photo of Ringoparr

Ringoparr

  • 782 Points 500 badge 2x thumb
Actually, i can't make it go away, you might want to set something up similar to see if there is a glaring hole. The report we've created has no ability to access a record. But all records can be accessed when an EOTI users views the report on a mobile device. I'm going to create a custom form for EOTI users, with only a few fields visible.
Photo of Evan Martinez

Evan Martinez, Community Manager

  • 9,264 Points 5k badge 2x thumb
Hi Ringoparr,

If after confirming that your Everyone on the Internet users and role are able to access these records even though they have no edit permissions I would recommend submitting a support case with our Care Team so they can look at the specific set up to see if they can isolate if this is a bug or if there is a factor in play in your application that could be causing this issue. You can submit a Support Case by clicking on this link and just let us know the specific application and the details of the issue, then the Care Rep can get an invite to replicate the issue and diagnose what might be going on.
(Edited)