Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Hi,
For the creation of a non-public faced website we are making use of this module to allow advanced blog functionalities. However there seems to be a flaw in the hook_menu() implementation, that bypasses the access control system for the advanced_blog/list page.
Basically, everyone has access to that page, regardless of permissions set.
In attachment is a patch that fixes the wrong parameters in the menu item.
I hope you will implement this in the next (beta) release of this module, as it's quite critical.
Kind regards,
Sven Decabooter
| Comment | File | Size | Author |
|---|---|---|---|
| advanced_blog_permissions.patch | 788 bytes | svendecabooter |
Comments
Comment #1
svendecabooterNevermind, i noticed this was fixed in the HEAD version of the module... installing that one now...