Bug allowing oversubscription

Hi,

First of all. Great extension - finding it really useful!

I believe there is a bug in the event registration part of the system whereby a user can inadvertently do a group registration for more people than there is space left in the event.

I understand that there is a javascript client-side check for the number of people in a group - and this works if you press "next" on that screen, but if you press "enter" on the keyboard it takes you to the next screen regardless of the number chosen in the group registration screen. (Of course it's easy to bypass javascript checks intentionally if a user wishes).

Next, the server-side validation only checks whether or not the event is still accepting registrations. Thus if there are n places left, but the user selects any number >n (where n is >1), then the server-side validation will pass when it should fail.

Let me know if you need more info about this...

It would also be great if there was a bit more server-side validation performed on registrations in general.

Also I have modified the helper/fields.php to allow javascript code to be inserted on individual custom fields. This can be very useful for complex fee calculations or other client-side checks required on the registration form. This is done by inserting the custom code in the "description field" of the custom field with the keyword "//code" preceding the function to be inserted and added to the onchange javascript event of the custom field.

Let me know if anyone would like me to post it here...

thanks,
Ariel

Hi

Thanks for reporting the issue. For now, we just use a simple solution which prevent bypass javascript checking. Just get the file below, unzip it, upload to folder components/com_eventbooking/views/register/tmpl folder, after that, test it again and It should work . In the future, I will implement server side check as well .

Also I have modified the helper/fields.php to allow javascript code to be inserted on individual custom fields. This can be very useful for complex fee calculations or other client-side checks required on the registration form. This is done by inserting the custom code in the "description field" of the custom field with the keyword "//code" preceding the function to be inserted and added to the onchange javascript event of the custom field.

=> It is is possible, please zip the file you modified and upload it here. I will check and if it is possible, I will add it into the extension in the next release .

Regards,

Tuan