Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.I think I have discovered a bug with pathauto 5.x-2.3
Follow the following steps to reproduce the issue:
1) pathauto with "User Path Settings" -> "Pattern for user account page paths: " -> "user/[user-raw]"
2) create a user with only numbers as username. Say "1"
3) Now login with the brand new account
Click on "My Account" (http://[domain]/user/1) and you get another user's profile (user #1 in this example), you cannot access your profile page.
:-/
Comments
Comment #1
gregglesThis is documented at Pathauto Patterns that can be Dangerous and is the reason why the Pathauto default is to use "users/" instead of "user/".
If you have any ideas of how to improve the situation, I'm certainly interested.
Comment #2
gregglesI guess this is by design.