Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.
By geantbrun on
Hi,
I have a question about user's permissions, here is the context:
Essentially, a user goes to my site to make some calculations. For that purpose, he enters his set of parameters through 3 forms. He then launches the calculation part. Each form corresponds to a CCK content-type node that the user can edit. For obvious reason, a user should have access to his own content only. Furthermore the user should not have the possibility to create content (I've created a node of each content type at the user's account creation with the user as the author of the node), neither to delete content.
Question is: what permission should I set to achieve this? "edit own content" only (without "access content") does not work (user does not have access to his own content) and "edit own content" and "access content" give user access to other user's content (user should not view other user's parameters).
Any hint would be very appreciated.
Comments
I would use views.module for
I would use views.module for such cases. Node is to only display to current login user, and set the permission to "edit own content" at Permission settings.
view but not edit
Thanks for your answer sadist but I am not sure it works for me and my needs. If I understand well, what you propose is to have a view with user ID as an argument and a path defined as, say, user/%/params so the user can see his own parameters only. But here, a view would simply list the parameters and would not give the user the possibility to change theses values, isn'it? What I want is give access to these parameters via a URL like node/2 so the user can not only view but also edit the values (node/2/edit).
Furthermore, I can create a normal menu entry with the node/{node-number} URL, which I cannot do with the user/%/params approach.
Maybe am I wrong in my understanding of your suggestion, let me know if it's the case.
Thank you again.
In views, set the path to
In views, set the path to node/% as the Node:Nid being the argument. then filter it to only show the current user's contents.
and to what I understand, with Content Access module, you can set it to let users to only VIEW OWN CONTENT?
_
I've not tried it, but what about "edit own" combined with http://drupal.org/project/view_own or http://drupal.org/project/private?
Unpublished nodes by default
Unpublished nodes by default are only visible to author and admin only as I understand.
My Drupal sites:
Nodeaccess Module
I've been using the Nodeaccess module and it's worked as you've prescribed.
http://drupal.org/project/nodeaccess
FYI, I referred to the following post on information about the different node access modules:
http://drupal.org/node/666614#comment-2422738