Contrib.social

Create granular on a per plugin basis

Open on Drupal.org β†’
Created on 12 June 2024, about 1 year ago

I think it would be great to have a general permission "use all project_browser plugins" and more granular "use $plugin project_browser plugin" permissions.

For example, it can be considered safe to allow admins to apply new recipe but not to install individual modules.

✨ Feature request
Status

Active

Version

2.0

Component

Code

Created by

πŸ‡«πŸ‡·France vbouchet

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

  • Issue created by @vbouchet
  • Comment about 1 year ago β†’
    πŸ‡«πŸ‡·France vbouchet
  • Comment 9 months ago β†’
    πŸ‡ΊπŸ‡ΈUnited States chrisfromredfin Portland, Maine
  • Comment 9 days ago β†’
    πŸ‡ΊπŸ‡ΈUnited States phenaproxima Massachusetts

    I don't think we necessarily want to introduce additional permissions, but I can see a case for granular access control. I would suggest that we simply add \Drupal\Core\Access\AccessibleInterface to ProjectBrowserSourceInterface and allow plugins to implement their own access checking as desired.

    The meaty question here is "when should access be checked?" When viewing sources at their own page, sure. When viewing a source in a mini-browser, yes. But what about when querying? Should the endpoints respect source-defined access controls? How should this interact with the activation system?

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024