I have configured TAC_Lite to fobid a role to view nodes tagged with term number #.

Nevertheless, when a user with that role assigned writes /taxonomy/term/#, he can see the teaser of the node.

Is this the intended behaviour or a bug?

Thanks and best regards from Madrid.

Comments

Dave Cohen’s picture

if set up correctly, neither the node or the teaser should be found when the user does not have access. Probably you don't have it set up correctly.

Don't think of tac_lite as forbidding anyone to view nodes. Instead, it allows some users to see nodes they would otherwise not be able to see. So if you disable tac_lite and the user can still see the node, things are not set up correctly.

jfmateos’s picture

Thank you very much Dave.

I don´t understand this:

Don't think of tac_lite as forbidding anyone to view nodes. Instead, it allows some users to see nodes they would otherwise not be able to see. So if you disable tac_lite and the user can still see the node, things are not set up correctly.

If I disable tac_lite, all users can see all nodes because there is no way in Drupal core to control which users can see which nodes ¿or am I wrong?

Dave Cohen’s picture

Something is allowing the user to view the node. Could be a hook_access() function, could be drupal's special entry in the node_access table, which permits viewing when there is no node_access module enabled. It's tricky but documented, http://api.drupal.org/api/drupal/modules--node--node.module/group/node_a....

If something is allowing the user to view the teaser, then tac_lite is not forbidding that user to view the node.

The Devel module comes with devel_node_access.module. Enable that, and the block it provides. Might help you troubleshoot.

vladimiraus’s picture

Issue summary: View changes
Status: Active » Closed (outdated)

Thank you for contribution. 👍
Drupal 7 is no longer supported. 🤷‍♂️
Closing as outdated. 🔐