- π©πͺGermany gngn
I added a version of #75 for current 7.x-1.x-dev (26 February 2010).
No changes to #75 (i.e. just the diff line numbers).
Hey Ryan and all,
A quick Drupal Commerce permission question just came up: What are the security implications of granting all users (both anonymous and authenticated) the "View any Product product" permission? There is a security warning on that permission, but I can't seem to find anything particularly bad if all users are granted this permission.
The use case I've got is that if I want fields attached to a product to display in a view--and if that view is placed in a panel that is overriding a node--I can't get the product fields to show up for the user unless I grant the user the "View any Product product" permission.
Thoughts?
Thanks,
Ben
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.
I added a version of #75 for current 7.x-1.x-dev (26 February 2010).
No changes to #75 (i.e. just the diff line numbers).