Revoke membership and roles previously assigned by authorization

Created on 3 November 2023, about 1 year ago

Updated 18 February 2024, 9 months ago

Problem/Motivation

Group membership is granted and revoked based on mappings. This conflicts with manual assignment.

Steps to reproduce

Proposed resolution

Use the user.data service to store the mappings. This will allow every profile to revoke group:roles previously granted correctly.

$user = \Drupal::currentUser();

// Define an array of role => profile.
$roles= [
  'group:1' => [
    'team--administrator' => 'profile_a',
  ],
  'group:3' => [
      'team--teacher' => 'profile_b',
  ],
  'group:5' => [
    'team--staff' => 'profile_b',
  ],
];

// Store the array as user data.
\Drupal::service('user.data')->set('authorization_group', $user->id(), 'roles', $roles);

Remaining tasks

User interface changes

API changes

Data model changes

✨ Feature request

Status

Active

Version

1.0

Component

Code

Created by

🇺🇸United States bluegeek9

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @bluegeek9
Comment about 1 year ago →
🇺🇸United States bluegeek9
Comment 10 months ago →
🇺🇸United States bluegeek9
I want to give an update. I am working on ✨ Drupal Roles Consumer - store mappings in user.data Active and then plan to work on this.
Comment 9 months ago →
🇺🇸United States bluegeek9
I am still working on the revokeGrants functionality. I want to be able to revoke grants across multiple profiles. I also want to respect the existing delete memebership.
Comment 9 months ago →
🇺🇸United States bluegeek9

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024