Allowing the author of a node to bypass the Taxonomy permissions
retsofaj - September 22, 2009 - 01:42
| Project: | Taxonomy Access Control |
| Version: | 6.x-1.0 |
| Component: | Miscellaneous |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | active |
Jump to:
Description
I have a site where students are keeping individual journals in the forms of blogs. I'd like them to be able to tag a post as being "private" which would cause it to be visible only to the "Teaching Team" group _and_ to the authoring student. Right now the first goal is being met. Unfortunately as soon as the post is tagged as "private", the original author loses the ability to see it. I imagine that making this work will require a code-level change doing the equivalent of "OR node.uid = current.uid" somewhere. Suggestions or patches would be most helpful. Thanks!
#1
I've hacked in support based on the example given on how the various authentication hooks work. The remaining problem is that when a user removes the security tag (leaving no tags) then the access control no longer works as node_access is essentially cleared. Since there are no term_access entries for the node, the access control fails until a permissions rebuild. How should I approach ensuring that TAC works when there are no tags defined for the node?
#2
Isn't there some sort of "Edit own <node-type>" permission in core you could use in conjunction with TAC? That should work.