Joomla! Issue Tracker - CMS

Download
Launch
Feeling Lucky

[#41494] - [4.4] Delete privacy consent api endpoint not working

No Code Attached Yet ?
avatar andyforrest
andyforrest
28 Aug 2023

Steps to reproduce the issue

  1. Enable privacy consent plugin and have user opt in to sites privacy consent
  2. Get consent id either through privacy consents dashboard from admin component or from GET privacy/consents api endpont
  3. Use api endpont /api/index.php/v1/privacy/consents/{consent_id} to delete the desired privacy consent

Expected result

  • Deleted privacy consent

Actual result

{
    "errors": [
        {
            "code": 500,
            "title": "Internal server error"
        }
    ]
}

System information (as much as possible)

  • Macos
  • PHP 8.2
  • Apache 2.0
avatar andyforrest andyforrest - open - 28 Aug 2023
avatar joomla-cms-bot joomla-cms-bot - change - 28 Aug 2023
Labels Added: No Code Attached Yet
avatar joomla-cms-bot joomla-cms-bot - labeled - 28 Aug 2023
avatar alikon alikon - change - 28 Aug 2023
Labels Added: ?
avatar alikon alikon - labeled - 28 Aug 2023
avatar alikon
alikon - comment - 28 Aug 2023

iirc there is no way to delete privacy consent from admin, only invalidate but my memory can fail

avatar Quy Quy - change - 29 Aug 2023
Labels Added: Information Required
avatar Quy Quy - labeled - 29 Aug 2023
avatar richard67
richard67 - comment - 29 Aug 2023

iirc there is no way to delete privacy consent from admin, only invalidate but my memory can fail

Reading the documentation https://docs.joomla.org/J3.x:Privacy and https://docs.joomla.org/J3.x:Information_Request_Workflow_in_Privacy_Component is seems @alikon is right, privacy consent can not be removed, but a request for data removal can be created and then completed.

avatar andyforrest
andyforrest - comment - 29 Aug 2023

Appologies, it looks like I had a dyslexia moment and misread the docs! In any case, it appears that the endpoint doesn't work by not returning any relevant response. As it has been listed as a valid endpoint here: https://docs.joomla.org/J4.x:Joomla_Core_APIs#Privacy

avatar alikon
alikon - comment - 29 Aug 2023

i think we should amend the documentation page accordingly based on our findings,
plus we need to remove the DELETE verb from that endpoint, for the 2nd part i'll do a pr,
anyone would like to do the docs part ?
@andyforrest thank you for bring this up

avatar andyforrest
andyforrest - comment - 29 Aug 2023

@alikon no trouble! Is it possible there is a mistake writing the docs and it was meant to be an endpoint that invalidates consent?
I can edit the docs if you wish

avatar alikon
alikon - comment - 29 Aug 2023

please do it if you can really appreciated

for removing the wrong VERB endpoint please test #41520

avatar richard67 richard67 - close - 24 Sep 2023
avatar richard67
richard67 - comment - 24 Sep 2023

As fas as I can see, the documentation on https://docs.joomla.org/J4.x:Joomla_Core_APIs#Privacy has been fixed. Thanks @andyforrest for that. Closing the issue as we have a PR to fix it, see #41856 . @andyforrest Could you test it and then mark your test result in the issue tracker by going to https://issues.joomla.org/tracker/joomla-cms/41856 , using the blue "Test this" button at the top left corner, selecting the test result and finally submitting? Thanks in advance.

avatar richard67 richard67 - change - 24 Sep 2023
Status New Closed
Closed_Date 0000-00-00 00:00:00 2023-09-24 09:30:54
Closed_By richard67
avatar richard67 richard67 - change - 24 Sep 2023
Labels Removed: Information Required
avatar richard67 richard67 - unlabeled - 24 Sep 2023

Add a Comment

Login with GitHub to post a comment