Bug: Blocked Members Can Book Study Rooms

Introduction

This bug report details a critical issue found in the study room booking system. Currently, blocked members are able to book study rooms, which contradicts the intended system functionality. This poses a significant problem as it undermines the purpose of blocking members and can lead to unauthorized use of resources. In this comprehensive report, we will delve into the specifics of the bug, including the steps to reproduce it, the expected and actual results, and the severity and priority assigned to this issue. Understanding the intricacies of this bug is crucial for the development team to implement an effective solution and maintain the integrity of the study room booking system. Addressing this issue promptly is essential to ensure that only authorized members can access study rooms, preserving the intended functionality and security of the system. This report serves as a detailed guide for the developers to diagnose and rectify the problem, contributing to a more robust and reliable study room booking experience for all users.

Bug Description

Description: The core issue is that blocked members within the system are still able to book study rooms. The system should ideally prevent blocked members from making any reservations. Allowing blocked members to book rooms circumvents the purpose of the blocking mechanism, potentially leading to misuse of resources and scheduling conflicts. This vulnerability can lead to significant disruptions, as it compromises the intended control over access to study rooms. The ability for blocked users to book rooms not only undermines the system's security but also creates a potential administrative overhead in managing unauthorized bookings. This bug needs immediate attention to ensure that the system functions as intended, providing a secure and reliable booking environment for authorized users. Addressing this issue is paramount in maintaining the integrity of the system and preventing any unauthorized access to resources. By rectifying this bug, we can ensure that the study room booking system remains a valuable and secure tool for all legitimate users.

Steps to Reproduce

To replicate this issue, follow these steps meticulously:

1. Open the Study Room Booking page: Start by navigating to the study room booking interface within the system. This is typically the page where users can view available rooms and make reservations.
2. Choose a room and time for a blocked member: Select a specific study room and time slot. Then, attempt to make a booking under the identity of a member who is currently marked as blocked in the system. This involves using the credentials or accessing the system as a blocked user.
3. Save booking: After selecting the room and time slot for the blocked member, proceed to save or submit the booking. This step will test whether the system correctly prevents the blocked member from completing the reservation.

Following these steps will clearly demonstrate the bug, as the system should not allow a blocked member to finalize the booking. If the booking is successfully created, it confirms the existence of the bug and highlights the need for immediate corrective action. This systematic approach ensures that the issue can be consistently reproduced, aiding developers in diagnosing and resolving the problem effectively. By replicating the bug, we gain a clear understanding of its behavior and can develop targeted solutions to prevent unauthorized bookings in the future.

Expected and Actual Results

Expected Result: The system should strictly prevent blocked users from booking study rooms. When a blocked member attempts to book a room, the system should display an error message or notification indicating that they do not have the necessary permissions to make a reservation. This is a crucial part of the system's access control, ensuring that only authorized individuals can book resources. The system's response should be clear and unambiguous, providing the blocked user with an explanation of why the booking cannot be completed. Ideally, the system should also log these failed attempts to book, which could help in auditing and security monitoring. By consistently enforcing this restriction, the system maintains its integrity and prevents unauthorized use of study rooms, contributing to a fair and secure environment for all users.

Actual Result: Surprisingly, the booking is created successfully, despite the user being blocked. This outcome directly contradicts the expected behavior and highlights a significant flaw in the system’s access control mechanism. The successful booking by a blocked user indicates that the system is not correctly enforcing the blocked status, allowing unauthorized reservations to proceed. This can lead to numerous issues, such as overbooking, resource misuse, and potential scheduling conflicts. The discrepancy between the expected and actual results underscores the severity of the bug and the urgent need for a solution to prevent future unauthorized bookings. Addressing this issue is critical to ensure the system functions as intended, providing a secure and reliable booking experience for authorized users while effectively restricting access for blocked members.

Severity and Priority

Severity: This bug is classified as High due to its significant impact on the system's functionality and security. The ability for blocked members to book rooms undermines the entire purpose of the blocking mechanism and can lead to various operational issues. This vulnerability can result in unauthorized access to resources, scheduling conflicts, and a general lack of control over study room bookings. The high severity rating reflects the potential for this bug to disrupt the intended use of the system and compromise its integrity. Immediate attention is required to prevent further unauthorized bookings and ensure the system functions as designed. The severity assessment underscores the critical nature of this issue and the need for a swift resolution to safeguard the system's performance and security.

Priority: The priority for addressing this bug is set to P1, indicating that it is of the highest urgency and requires immediate attention. A P1 priority means that the bug must be fixed as soon as possible to prevent further disruptions and potential misuse of the system. The fact that blocked members can book rooms poses a significant risk, making it imperative to resolve this issue before any other tasks. Delaying the fix could lead to continued unauthorized bookings and undermine the trust in the system's reliability. Assigning a P1 priority ensures that the development team focuses on this bug first, allocating the necessary resources to implement a solution promptly. This urgency is critical to maintaining the integrity and security of the study room booking system, ensuring that it operates effectively for all authorized users.

Environment

Environment:

• Browser & version: Google Chrome 128
• Operating System: Windows 11

This bug has been identified and reproduced within the specified environment, which includes Google Chrome version 128 running on Windows 11. This information is crucial for the development team as they investigate and address the issue, as it helps to narrow down the potential causes and ensures that the fix is effective in the reported environment. Understanding the specific browser and operating system can provide valuable insights into compatibility issues or environment-specific configurations that may be contributing to the bug. By knowing the exact conditions under which the bug occurs, developers can replicate the issue more accurately and implement a targeted solution. This detailed environmental information is a key component of the bug report, facilitating a more efficient and effective debugging process.

Screenshot / Evidence

Screenshot / Evidence:

The attached screenshot serves as visual evidence of the bug, clearly demonstrating that a blocked member was able to successfully book a study room. This visual confirmation is invaluable in verifying the issue and providing context for the developers. The screenshot captures the state of the system after the booking was created, showing the blocked user's reservation in the booking system. This tangible proof eliminates any ambiguity and ensures that the development team has a clear understanding of the problem. Visual evidence like this is a critical component of a well-documented bug report, as it provides immediate and irrefutable confirmation of the bug's existence and impact. By including this screenshot, the report enhances the clarity and effectiveness of the communication, facilitating a quicker and more accurate resolution of the issue.

Additional Information

This section provides further context and insights into the bug, offering additional details that may aid in the debugging process. Any relevant information that could help developers understand the issue better should be included here. This might involve specific user roles affected, the frequency of the bug occurrence, or any related issues observed.

Discussion Category: 60303289, Project_SW_Group4

This categorization helps to track and manage the bug within the project's workflow. Knowing the specific project and group associated with the bug ensures that it is routed to the correct team members for resolution. This organizational structure is essential for efficient bug tracking and management, enabling a streamlined process from identification to resolution. By assigning a clear category, the bug report can be easily filtered and prioritized, ensuring that it receives the appropriate attention and is addressed in a timely manner. This metadata is crucial for maintaining project oversight and ensuring that all issues are properly handled.

Conclusion

In conclusion, the bug report clearly outlines a critical issue where blocked members can book study rooms, which undermines the system's intended functionality. The steps to reproduce, expected and actual results, severity, and priority have been detailed to provide a comprehensive understanding of the problem. The inclusion of environmental information and a screenshot further supports the report, aiding in the bug's resolution. Addressing this issue promptly is crucial to maintain the integrity and security of the study room booking system. By resolving this bug, we can ensure that only authorized users can access study rooms, preserving the intended functionality and security of the system. This bug report serves as a detailed guide for the developers to diagnose and rectify the problem, contributing to a more robust and reliable study room booking experience for all users.

For more information on bug reporting and software quality assurance, you can visit reputable resources such as the website of the International Software Testing Qualifications Board (ISTQB). This will help you to further understand how to properly submit a bug report.