Access Check performed on all entity queries

Open on Drupal.org →

Created on 5 September 2024, 2 months ago

Updated 6 September 2024, 2 months ago

Problem/Motivation

Entity queries must explicitly set whether the query should be access checked or not. See Drupal\Core\Entity\Query\QueryInterface::accessCheck(). in Drupal\Core\Entity\Query\Sql\Query->prepare() (line 142 of /app/web/core/lib/Drupal/Core/Entity/Query/Sql/Query.php).

When saving an groups permissions Drupal throws an entity query exception on line 39 of group_permissions/src/Plugin/Validation/Constraint/UniqueReferenceFieldValidator.php.

Steps to reproduce

Set permissions at a group type level and then modify those permissions at the group level.

Proposed resolution

Needs ->accessCheck(TRUE) before the ->execute(); on line 39.

See Access checking must be explicitly specified on content entity queries → for more info.

Remaining tasks

I'm unsure if there are any other entity queries within the module that need to be updated as well.

🐛 Bug report

Status

Closed: works as designed

Version

2.0

Component

Code

Created by

🇺🇸United States glaze Minnesota

Live updates comments and jobs are added and updated live.

Drupal 10 compatibility

Drupal 11 compatibility

access permissions

Sign in to follow issues

Comments & Activities

Issue created by @glaze
Comment 2 months ago →
🇺🇸United States glaze Minnesota
Status changed to Closed: works as designed 2 months ago8:04am 6 September 2024
Comment 2 months ago →
🇧🇪Belgium lobsterr
it has been fixed already Here

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024