In the function biblio_access under the update operation "edit own biblio entries" permission is checked and if this is set and you are not the owner of the content you are explicitly denied.

This is not the expected behavior of the condition, it should grant the permission to "edit own biblio entries" (as it does in the preceding line) and do nothing otherwise. By returning false it prevents other node grants from taking place and disrupts modules like og. This is the standard looking at other access functions.

I have provided a patch attached.

If this feature is needed a setting could be added similar to 'biblio_view_only_own'.

Cheers,
Richard

CommentFileSizeAuthor
#3 683868.biblio_access_patch2.patch782 bytesjsagotsky
#2 biblio.access_patch.patch594 bytesrbrandon

Comments

rjerome’s picture

rjerome commented

no patch, but it's really not required for such a small change.

Just looking at that and I guess that line really isn't needed at all is it?

Ron.

rbrandon’s picture

rbrandon commented
StatusFileSize
new biblio.access_patch.patch594 bytes
jsagotsky’s picture

jsagotsky commented
StatusFileSize
new 683868.biblio_access_patch2.patch782 bytes

#2 stopped applying for me. Here's an update.

rjerome’s picture

rjerome commented
Status: Needs review » Fixed

committed

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.