Bug: Only the intended user can edit the post.

[manendrav]

Describe the bug
If the two different user has same username, then they both able to edit the post uploaded by the user. This led to security and privacy issue.

To Reproduce
Steps to reproduce the behavior:

1. Create two account with different emails.
2. Create a post from one of the accounts.
3. Switch the account.
4. Go to the blogs and open the created post.
5. See error

Expected behavior
A user who has same username not able to edit or delete the other user post.

Additional context
You can add functionality like user can't create account with existing username or use some kind of ID for compare the users who can edit the post or who not.

[pdeep1506]

"It is giving me an error ('Failed to construct URL') when I tried to log in with my email ID."

[SAGARSINGH-1]

"It is giving me an error ('Failed to construct URL') when I tried to log in with my email ID."

hey @pdeep1506 , You are trying to run this project in localhost there u need a .env file to run locally into your system.

Join Discord to get the appwrite credentials: https://discord.gg/KxqtV3bBse

[pdeep1506]

Dear sagar, Can you please provide .env file ? Thank you Deep patel

…

On Wed, Feb 7, 2024 at 5:24 AM Sagar Singh ***@***.***> wrote: [image: Screenshot 2024-02-06 at 17 07 48] <https://private-user-images.githubusercontent.com/84280396/302790716-e0da6580-4e23-486b-9de7-ccffc250671b.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.lzE9w17D98RBLxVL2D8zM75Ls9j1kdBQz5kJL3wq0Xs> "It is giving me an error ('Failed to construct URL') when I tried to log in with my email ID." hey @pdeep1506 <https://github.com/pdeep1506> , You are trying to run this project in localhost there u need a .env file to run locally into your server — Reply to this email directly, view it on GitHub <#53 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AUDAITFM42IGA76Q2MQB3L3YSNI6FAVCNFSM6AAAAABC4JKAJWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMZRG4ZTENRXGY> . You are receiving this because you were mentioned.Message ID: ***@***.***>

[SAGARSINGH-1]

@pdeep1506 join our discord to get that.

[pdeep1506]

@pdeep1506 join our discord to get that.

Link is expire. Please provide new link.

[SAGARSINGH-1]

@pdeep1506 here's a fresh link : https://discord.com/invite/byrCqRym

[pdeep1506]

Thanks, it worked.

…

On Wed, Feb 7, 2024 at 11:05 PM Sagar Singh ***@***.***> wrote: @pdeep1506 <https://github.com/pdeep1506> here's a fresh link : https://discord.com/invite/byrCqRym — Reply to this email directly, view it on GitHub <#53 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AUDAITHCIVQUHRP2ULNPLLTYSRFJDAVCNFSM6AAAAABC4JKAJWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMZTGMZDSOJSGU> . You are receiving this because you were mentioned.Message ID: ***@***.***>