Active
Project:
Search attachments
Version:
5.x-3.0
Component:
Code
Priority:
Normal
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
23 Apr 2008 at 16:04 UTC
Updated:
28 Apr 2008 at 10:19 UTC
I think the reason is this Statement:
$allowed_node_ids = array();
$allowed_node_ids_result = db_query(db_rewrite_sql("SELECT n.nid FROM {node} n"));
while ($allowed_node = db_fetch_object($allowed_node_ids_result)) {
$allowed_node_ids[] = $allowed_node->nid;
}
After that the allowed_node_ids array includes all nodes of the node table.
Am I wrong?
Comments
Comment #1
markj commentedThis has been fixed in the final version of the module, which I will be releasing this weekend. Just out of curiosity, what module/method are you using to restrict access to nodes?
Comment #2
mdroste commentedThat sounds good. I use core methods and the contentaccess module to restrict node access.
Comment #3
markj commentedActually, I am going to do some further testing with the contentaccess module. Also, by 'core methods', do you mean limiting access to specific permissions under q=admin/user/permissions?
Mark
Comment #4
mdroste commentedYes, thats what I mean.