Random URL redirecting to valid one (V4.3.6)

[Mapasteper]

Hi. I recently installed chevereto version 4.3.6 on my server and then I realized that if I try random url, I get redirected to the right one (disclosing private link albums)
If I try www.myserver.com/album/xx (random url) I get redirected to a valid album url

 

[Rodolfo]

Hello,

If /album/xx resolves to some existing id (decoded) then it will display the content unless there's a privacy setting affecting that visibility. That's expected behavior.

If you want to make all albums private you need to alter the global website privacy mode.

 

[Mapasteper]

Thanks for your reply Rodolfo.
What I mean is this: I currently have 3 albums. 1 is public and 2 private(link).
if I put a random url at /album/0x /album/d7 /album/xy /album/yz (none of those url are valid albums url)
Chevereto redirect to a valid one (even private links one) which is not good at all. This is definitely a not expected behavior.

 

[Rodolfo]

I can't reproduce that on the demo website. I never added a method to redirect to a valid album URL on not found, this is very odd.

Can you show us a video, or a working POC.