- Issue created by @dokumori
- Status changed to Needs review
over 1 year ago 1:56pm 26 August 2023 - last update
over 1 year ago 2,160 pass - πΈπ°Slovakia poker10
If it would be sufficient to mark the permission as "trusted" (as @catch suggested), then uploading a patch with this change.
- last update
over 1 year ago 2,156 pass - last update
over 1 year ago 2,121 pass - π³π±Netherlands dokumori Utrecht
Adding a tag and a list of contributors in the original issue
- πΈπ°Slovakia poker10
Adding this for a final review. If the fix is sufficient, I think that we can proceed here. I personally agree the restricted bit is sufficient given this comment:
We should open a public issue to make 'administer URL aliases' have the 'restrict access' bit. It seems completely reasonable to add that based on the public information in https://www.drupal.org/project/drupal/issues/121362 π Do not allow existing or reserved paths as aliases Needs work which is 16 years old now.
- πΊπΈUnited States moshe weitzman Boston, MA
mcdruid β credited moshe weitzman β .
- πΊπΈUnited States samuel.mortenson
mcdruid β credited samuel.mortenson β .
-
mcdruid β
committed c91a5ca0 on 7.x
Issue #3383223 by poker10, dokumori, dsnopek, catch, berdir,...
-
mcdruid β
committed c91a5ca0 on 7.x
- π¬π§United Kingdom mcdruid π¬π§πͺπΊ
Thanks everyone!
n.b. leaving the "Needs change record" tag in place.
- πΈπ°Slovakia poker10
Created a draft CR for this: https://www.drupal.org/node/3491616 β
As discussed in slack, we probably need to check if this should be done in D10/11 as well. But we decided to commit this despite the backport policy, since this is the last D7 release.
Automatically closed - issue fixed for 2 weeks with no activity.
