Automatically reflect node access
Aren Cambre - June 19, 2007 - 02:40
| Project: | Menu per Role |
| Version: | 5.x-1.x-dev |
| Component: | Code |
| Category: | feature request |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | active |
Jump to:
Description
If a menu item points to a node controlled by Taxonomy Access Control, it would make sense for the menu to just reflect that node's permissions as already assigned by TAC. It is unlikely that one would ever need to assign different permissions to the menu item:
- If the menu item allowed more roles than the node to which it points, then some users would get access denied errors.
- If the menu item had fewer roles than the node to which it points, then you would be practicing security by obscurity, which is not true security.
Right now I am making double effort by modifying access permissions on the node and on the menu item. Not only does this take more time, it is more error prone because it could allow either of the above problems to occur.
#1
yeah. that would be nice - but it would better be done as core patch.. (if it is not already in HEAD).
although, if someone would contribute a patch, which detects node paths and adds node access support, I'd be happy to include it.