Privacy Security Risk #391
Description
Problem Explained
Currently, the demo website logs client IP addresses and client agents. Normally this wouldn't be an issue, but for the sake of the demo, everyone has administrator permissions.
This results in a huge security risk, and therefore needs to be fixed with urgency.
Problem Solution
We need to create additional settings, which allow the person who hosts the application to disable certain privacy-sensitive features. Therefore if the application is being hosted like our demo website, we have the option to disable certain features, without having to maintain a specific branch, where the code to include client IP addresses and client agents is not included whatsoever.