Contrib.social

Revisit permissions required to view contact messages

Open on Drupal.org β†’
Created on 18 April 2016, almost 9 years ago
Updated 18 August 2024, 6 months ago

Problem/Motivation

At present we use 'administer contact forms' to govern access to viewing/editing contact messages.

However this is too generic.

We should look into adding 'view', 'delete' and 'edit' permissions for contact messages.

Possibly on a per-form basis. See ✨ Per form based access permissions Needs work for that.

Proposed resolution

Decide on best permission set.
Patch.
Review.

Remaining tasks

Everything.

User interface changes

None

API changes

None

Data model changes

None

πŸ“Œ Task
Status

Needs work

Version

1.0

Component

Code

Created by

πŸ‡¦πŸ‡ΊAustralia larowlan πŸ‡¦πŸ‡ΊπŸ.au GMT+10

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Merge Requests

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

  • Comment over 1 year ago β†’
    πŸ‡΅πŸ‡±Poland adpo

    Also tested #62 but I don't see any permission setting I'm afraid. I have run update.php and cleared the cache.

    Is there anything else I need to do?

  • Merge request !17Issue 2708809: Permissions β†’ (Open) created by berdir
  • Status changed to Needs work 6 months ago
  • Comment 6 months ago β†’
    πŸ‡¨πŸ‡­Switzerland berdir Switzerland

    Sorry for letting this sit so long, still applies but will need some updates for tests to work.

    contact_storage_entity_type_alter() has a todo to add an access control handler, not sure if it's worth adding one, but we should at least remove that todo.

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024