This helps somewhat, but I believe the underlying problem remains. Even if I create a role called “Users” in the Privacy section, once someone has registered to use my site (and is in fact a legitimate user), for some reason, they can still view data that belongs to another user. For example.
Two users Frank (good guy) and John (bad guy) - they work together at the same office and both have their own logins for my site. Frank logs into a shared computer at the office and uses my site. When done though, he forgets to log out and/or clear his browsing history.
John then comes in and uses the same computer Frank was on. He logs into my site with his own credentials, and (maliciously) goes through the browser history and clicks on the same pages Frank was on previously.
Bubble allows John to see Franks info as both of them are valid users, but John is using the browser history to see data that he was not supposed to be looking at or have access to.
While unlikely, this is the scenario I’m hoping to prevent using workflow. I’ve created a PageLoad that checks the current user to see if they are the owner of the data appears on the page, but again, Bubble loads the page first and then checks the condition. Wish there was a “PageLoading” (which took place before rendering actually started).
See where I’m coming from with this request though?