Make ?q=sioc/site accessible with "access content" permission [#500714]

Hi,
I have installed the SIOC module on my site. Which generates some xml pages inside my site according to SIOC. The problem is that when I try to access them with an external script it gave me access denied. I searched on the permissions but this module has no permissions. I want to read those xml pages but with a anonymous user I can’t access. Any idea of how I can modify the permissions of these files or how can a gave permissions to my script to work with these pages.

Comment	File	Size	Author
#6	500714-06-access_content_site_access-d6.patch	664 bytes	Freso

Comments

Comment #1

scor commented 24 June 2009 at 14:23

can you paste the paths which give you access denied? the module reuse the permissions from other core modules, this might help:

  $items['sioc/blog/%'] = array(
    'access arguments' => array('access content'),
  );
  $items['sioc/user/%'] = array(
    'access arguments' => array('access user profiles'),
  );
  $items['sioc/node/%node'] = array(
    'access callback' => 'node_access',
    'access arguments' => array('view', 2),
  );
  $items['sioc/stories/%node'] = array(
    'access callback' => 'node_access',
    'access arguments' => array('view', 2),
  );
  $items['sioc/forum/%'] = array(
    'access arguments' => array('access content'),
  );
  $items['sioc'] = array(
    'access arguments' => array('access content'),
  );

Comment #2

quanton81 commented 24 June 2009 at 15:07

http://websemantico.altervista.org/drupal/?q=sioc/site this is the first link I try to parse with an external script and it gave me acces denied if I am anonymous user!

Maybe I have to modify something in

$items['sioc/site'] = array(
    'title' => 'sioc forum',
    'page callback' => 'sioc_page',
    'access callback' => 'sioc_access',
    'access arguments' => array('administer users', 'administer nodes'),
    'weight' => '9',
    'type' => MENU_CALLBACK,
  );
  $items['sioc'] = array(
    'title' => 'sioc',
    'page callback' => 'sioc_page',
    'access arguments' => array('access content'),
    'weight' => '9',
    'type' => MENU_CALLBACK,
  );

this part of the code to access it?

Comment #3

quanton81 commented 24 June 2009 at 15:46

I solved the problem with

$items['sioc/site'] = array(
    'title' => 'sioc forum',
    'page callback' => 'sioc_page',
    'access arguments' => array('access content'),
    'weight' => '9',
    'type' => MENU_CALLBACK,
  );

do you think this may cause any security problem??

Title:	Make visible internal xml pages	» Make ?q=sioc/site accessible with "access content" permission
Assigned:	quanton81	» Unassigned
Category:	support	» bug
Status:	Active	» Needs review

Status	File	Size
new	500714-06-access_content_site_access-d6.patch	664 bytes

And here is comment #3 in patch form, ready to commit. :)

Make ?q=sioc/site accessible with "access content" permission

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

News items

Our community

Documentation

Drupal code base

Governance of community