Download & Extend
Issues

permissions & variable for disallowing editing of user variables

Posted by corris on May 19, 2006 at 5:06pm
Project:Drupal core
Version:8.x-dev
Component:user.module
Category:feature request
Priority:normal
Assigned:Unassigned
Status:closed (fixed)

Issue Summary

In an LDAP read only environment, we don't want to let the user request a new password, change email address or change password. all three of these are handled by existing procedures & applications. there's a variable 'user_request_password' which removes the link in the login block, and two permissions 'change own email' and 'change own password'

attached is a unified diff patch to 4.7.0

AttachmentSizeStatusTest resultOperations
user.patch_1.txt2.15 KBIgnored: Check issue status.NoneNone
Login or register to post comments

Comments

#1

Posted by killes@www.drop.org on May 19, 2006 at 5:30pm
Version:4.7.0» x.y.z
Status:reviewed & tested by the community» needs work

No new features will be added to 4.7.

Your patch does nor comply with our coding standards.

#2

Posted by corris on May 19, 2006 at 6:31pm
Status:needs work» needs review

oh, yea, should have been cvs, sorry.

was it the indentation? how's this one?

AttachmentSizeStatusTest resultOperations
user.patch_2.txt2.15 KBIgnored: Check issue status.NoneNone

#3

Posted by Tobias Maier on May 19, 2006 at 8:52pm

have a look at http://drupal.org/node/53103
I think this would be userful for your purpose

#4

Posted by Dries on May 23, 2006 at 7:34pm
Status:needs review» needs work

Coding style needs work; incorrect use of spaces. Also, we write 'e-mail' not 'email'. All minor changes. ;)

Now, with Drupal 4.7.0, an LDAP authentication module might actually be able to modify the user.module's generated forms. Maybe that's a better solution? Worth exploring? It wouldn't require fiddling with permissions when the LDAP authentication module is enabled.

#5

Posted by Dries on May 23, 2006 at 7:39pm

Cross-posted an issue at http://drupal.org/node/65159. Let's see what the LDAP integration module maintainers think/need.

#6

Posted by Dries on May 26, 2006 at 9:25am

See also http://drupal.org/node/63246.

#7

Posted by Bèr Kessels on February 13, 2007 at 4:56pm
Version:x.y.z» 6.x-dev

One big problem with implementing http://drupal.org/node/65159 cleanly is that Drupal has hardcoded the requirement of an emailaddress.

user_validate_mail($mail) is called, instead of the default Form Api validation. We would need to implement a better way in core first, then LDAP auth can simply override the forms with form_alter. Right now we cannot simply unset a form, because of this harcoded requirement of an email address.

#8

Posted by Pancho on February 5, 2008 at 3:49pm
Version:6.x-dev» 7.x-dev

New features go to the D7 branch.

#9

Posted by Jaza on February 25, 2010 at 1:39am
Version:7.x-dev» 8.x-dev
Status:needs work» closed (fixed)

Surely this can be achieved by form_alter'ing the 'email' and 'password' fields to be 'value' or 'hidden' types?

Closing.

nobody click here