GROWING AND SUSTAINING RELATIONSHIPS

GROWING AND SUSTAINING RELATIONSHIPS
Close
Alice Aguilar

Implementor

Progressive Technology Project

http://progressivetech.org

The organizations we work with are experiencing the benefits of a robust tool that is
easy to use, supports their work, and allows them to collect and track data from various parts of their organization, such as membership, fundraising, communications, and organizing into a centralized database. CiviCRM as an open-source solution also allows us to nurture and build a user community to share and create a common vision of future features that would be useful to the community organizing field. Just two years after our pilot project, we're currently supporting 30 community organizing groups to use CiviCRM, and the community is steadily growing.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Chezre Fredericks

Administrator, Implementor, Developer

The Bible Society of South Africa

http://www.biblesociety.co.za

We are currently migrating to civiCRM. We will be using civiCRM for back office to record contributions, manage donor communication and report on contributions received.

CiviCRM is perfect for us because it is based on contributions
GROWING AND SUSTAINING RELATIONSHIPS
Close
Adam Clamp

Consultant & Developer

The Green IT Company

It helps us provide our clients with an excellent community and group management tool. We can also build upon many existing Drupal sites as CiviCRM now uses this CMS as its foundation.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Sarah Gladstone

Implementor, Developer

Pogstone, Inc.

http://pogstone.com

I have been involved in the CiviCRM community for over 5 years, and enjoy implementing and programming CiviCRM for a variety of non-profits. I have been amazed at the rapid pace of innovation delivered with each new release, and CiviCRM's flexibility in being able to accommodate a variety of requirements. I have learned a lot about CiviCRM by participating in CiviCon, online forums, and CiviCRM book sprint.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Gerhard Oels

Administrator, Developer

Consulting, CiviCRM Services

http://www.democracy-international.org

CiviCRM is seamleassly integrated in Drupal, the world's leading social publishing system. This Open Source combination allows for the most flexible solutions while enjoying continously improved CRM-standards that shorten the time-to-market span of your individual demands.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Jamie McClelland

DEVELOPER AND IMPLEMENTER

PROGRESSIVE TECHNOLOGY PROJECT

http://progressivetech.org
GROWING AND SUSTAINING RELATIONSHIPS
Close
Eileen McNaughton

Developer and End-user

Fuzion

http://fuzion.co.nz

CiviCRM has one of the most active and friendliest communities I have come across. From initial tentative forum posts I was encouraged into engaging more actively through IRC and directly with other groups & individuals and am now happy to count many community members as friends. I recently found an article on the web that said if you post a question about CiviCRM anywhere on the web Lobo will post an answer within a few hours. It often feels like that is true.

One of the most valuable way in which the community supports me is by allowing me to bounce my ideas around and often someone is able to suggest an approach which is better than mine.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Robin Tombs

Supporter

Zing

http://www.zing.uk.com

Zing is a user of Civi software.
Zing wants to see more NFPs use Civi software.
Zing is helping fund further Civi software development and outreach.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Chandra Sekhar Putchakayala

End-User

Organization using CiviCRM

http://vidyahelpline.org

1. To maintain a track of all the workshops conducted till date, who attended the program, who funded the program etc.,
2. To regularly keep in touch with all key stakeholders
GROWING AND SUSTAINING RELATIONSHIPS
Close
Young-Jin Kim

Developer, Implementor, Trainer

Emphanos

http://emphanos.com

The community around CiviCRM is both welcoming and vibrant. CiviCRM as a software solution is a powerful and flexible data management solution for a vast array of nonprofit organizations ranging from the startup NGO to the established multi-million dollar foundation. In our daily work we are seeing more and more NPOs moving away from proprietary systems and single vendor SaaS solutions and embracing the open source community around CiviCRM. Organizations using CiviCRM love the extensibility and the freedoms that come with open source, freedom to choose hosting, freedom to choose project partners, and the freedom to re-use, re-purpose and re-deploy without paying extra.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Hans Idink

Implementator, Developer

Orgis

http://www.orgis.com

CiviCRM has a key value for the Organisations I support with software.
GROWING AND SUSTAINING RELATIONSHIPS
Close
Allen Shaw

DEVELOPER

EMPHANOS

http://emphanos.com

I'm quite impressed with the responsiveness of the CiviCRM community, both from the core developers and many experienced users who have quickly provided answers and ideas in areas where I just needed that extra insight, or where we needed to do something totally new. After several years working with open source software, I'm finding the CiviCRM community to be the most responsive and helpful I've seen.

We make CiviCRM one of our primary offerings because it just provides so much right out of the box that our clients need, without a line of custom code. And when we need to extend it for the clients' unique needs, the APIs and programming hooks let us add in features that would be impossible in some other systems. This means we can provide great value to our clients with quick turnaround times and reasonable budgets, which is great for our clients and for us.

You are here

Home » Blogs » colemanw's blog

Security Release for Webform Integration

Submitted by colemanw on November 7, 2012 - 10:12

If you are using CiviCRM Webform Integration with Drupal 7, there has been a security release to fix potential permissions problems - you should upgrade the module as soon as possible.

Details

One feature of Webform CiviCRM integration is that it allows you to expose contact data via webforms. Depending on what fields you have exposed in your form, this may include personal information such as birthdate, phone number, email address, etc. Proper permission settings are important to keep this information from prying eyes.
Each "existing contact" on a webform has a setting to enforce CiviCRM permissions -- this setting should rarely be disabled, and only done so by admins who know what they're doing. Unfortunately some circumstances may have led this setting to be erroniously disabled by the admin:

  • In version 3.0 - 3.1 of this module, "Enforce Permissions" was not on by default, and needed to be manually selected by the admin. This was fixed in 3.2.
  • In versions 3.0 - 3.2, the current user could not be autofilled for normal unprivledged users. This may have led some admins to disable the "Enforce Permissions" setting, a dangerous workaround.
  • In versions 3.0 - 3.3, autofilling a contact via the url with a checksum did not work for anonymous users unless the "Enforce Permissions" setting was disabled.

Version 3.4 includes an update script which will automatically set "Enforce Permissions" for all existing contacts to true. Once you have upgraded, you may wish to review your webforms and ensure that autofilling contacts works as expected, especially for anonymous users. In a few rare cases where you have established access control through some other means, disabling "Enforce Permissions" may be necessary and you will need to do so manually.