Hi.
This module is very useful, but I think it could be even better. It would be marvellous to have also the possibility to choose the logical operations used between access permissions.
Let's say, for example, that I have these groups of users: teachers, students, primary_school, secondary_school. There's no way with nodeaccess to say that a particular node can be accessed only by primary school teachers. In fact, if I give access to teachers and primary_school groups, the node will be accessible by ALL teachers (primary and secondary school) and by ALL users of primary_school (teachers and students).
In other words, Nodeaccess gives only the possibility to create OR access condition (in my example, the node can be accessed if a user belongs to teachers OR if he/she belongs to primary_school). It would be very nice to have the ability to create also AND conditions.
Don't you agree?
Thanks.
Tiziano
Comments
Comment #1
Anonymous (not verified) commentedSure, that would be great. Unfortunately that is not something access control modules have any control over. All the modules can do is set data about who can access what node. The OR condition is done by drupal's node module and is a huge limiting factor in the flexibility of the access control system. The only way to do what you want is to patch drupal's core. It's pretty easy to do if you always want to AND or OR the permissions, you just have to change the query. The problem comes in that this is rather inflexible. There was a module that attempted to fix this, it patched drupal and gave you an interface to set up which access control modules would be used and how they would AND/OR together. Very flexible, unfortunately performance on it was really bad and it seems to have been abandoned anyway.
I'd love to see a more flexible system, but this is a drupal issue and not an issue with this module, so I can't do much about it.
http://drupal.org/node/24868