Harden/improve access

Open on Drupal.org →

Created on 13 December 2023, 11 months ago

Updated 14 December 2023, 11 months ago

Problem/Motivation

We have a use case where some admin users should be able to create filters, and other admin users should be consumers of them. Also we have many authenticated users who have access to content, but do not have access to administration pages, and should not be permitted to access the list of saved searches on our admin views.

Proposed resolution

Introduce separate new permissions for viewing/administering saved searches.

✨ Feature request

Status

Needs review

Version

1.1

Component

Code

Created by

🇬🇧United Kingdom jamsilver West Midlands, UK

Live updates comments and jobs are added and updated live.

Sign in to follow issues

Merge Requests

!6Harden/improve access
Open
🇬🇧United Kingdom jamsilver
updated 11 months ago

Comments & Activities

Issue created by @jamsilver
Merge request !6Issue #3408516: Harden/improve access → (Open) created by jamsilver
Status changed to Needs review 11 months ago3:58pm 13 December 2023
Comment 11 months ago →
🇬🇧United Kingdom jamsilver West Midlands, UK
I've raised a Merge Request with a first pass here.

In theory to remain backwards compatible we'd need to write an update hook that updates all user roles that have "access content" to add the new "administer views_save_search_filter searches" perm. This is not presently included.

Alternatively could bump the major version.
Issue was unassigned.
Comment 11 months ago →
🇬🇧United Kingdom jamsilver West Midlands, UK

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024