Access to ask/manage questions is currently confusing, since it depends on a combination of the 'ask question' / 'manage question' permission and also the value of the require registered users variable. If anonymous users are allowed to answer questions, then simply granting the permission shoud be sufficient. What's more, the 'manage question' permission really relates to 'manage (answer to) question', since no roles have permission to edit a question that has been asked - only to answer it or delete it.

A better model would be to reduce the permission set to simply 'ask questions' and 'answer questions'. If anonymous users are allowed to ask questions then the 'ask question' permission should be assigned to the anonymous user role - removing the need for the variable.

Comments

lameei’s picture

lameei CreditAttribution: lameei commented

So right now for letting anonymous users to publish a question we need to let them both " ask question" and "manage question". they can also manage the questions and this is not correct.
I think this must get fixed in 1x branch before starting the new one.

tanoshimi’s picture

tanoshimi CreditAttribution: tanoshimi commented

Just to clarify one point - questions are never published, whatever permissions the user has. It is only when questions are promoted from the queue and answered that they are created as nodes.

The architecture used in Question module is that questions are not created as nodes, but rather are simply rows added to a separate database table. This is a deliberate design, because if you're going to allow anonymous users to ask questions on your site, you don't want them writing directly to the node table.