Enhance (or add) access control in plugins where required config fields support tokens

Open on Drupal.org →

Created on 22 July 2023, over 1 year ago

Updated 5 June 2024, 6 months ago

Problem/Motivation

Plugin config forms are inconsistent WRT to config fields being required or not. And for those that support tokens, it is not always verified, if the given value (with or without a token) provides a proper value.

Example: read/write state or cache plugins.

Proposed resolution

Go through the plugins and add the required flag where needed and then also add the validation of values in the access method, returning access denied if a derived value is not valid. E.g. for the read/write state plugins, the key needs to be a non-empty string.

For all these cases we should then also have tests.

📌 Task

Status

Fixed

Version

2.0

Component

Code

Created by

🇩🇪Germany jurgenhaas Gottmadingen

Live updates comments and jobs are added and updated live.

beta blocker

Sign in to follow issues

Comments & Activities

Issue created by @jurgenhaas
Assigned to jurgenhaas
Comment over 1 year ago →
🇩🇪Germany jurgenhaas Gottmadingen
Comment 7 months ago →
🇩🇪Germany jurgenhaas Gottmadingen

Comment 6 months ago →

jurgenhaas → committed 4092436e on 2.0.x

Issue #3376304 by jurgenhaas: Enhance (or add) access control in plugins...

Comment 6 months ago →

jurgenhaas → committed f81b3db6 on 2.0.x

Issue #3376304 by jurgenhaas: Enhance (or add) access control in plugins...

Comment 6 months ago →

jurgenhaas → committed b431e057 on 2.0.x

Issue #3376304 by jurgenhaas: Enhance (or add) access control in plugins...

Status changed to Fixed 6 months ago3:57pm 22 May 2024
Comment 6 months ago →
🇩🇪Germany jurgenhaas Gottmadingen
Went through all the plugins and added/updated access control for required config fields that support tokens.
Comment 6 months ago →
System Message
Automatically closed - issue fixed for 2 weeks with no activity.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024