Node Moderation and Comment Moderation
vik4 - August 11, 2006 - 08:33
I'm trying to set up a drupal install, but need both nodes and comments to be able to be moderated (i.e. have scores assigned to them). The Node Moderation module does most of what I want, and has nice features, but lacks the ability to moderate comments. Thus I was thinking of adding this functionality into the module - would there be any major design problems with doing this?
Out of interest, why are comments not nodes?
Cheers,
vik
comment moderation has been removed from 4.7
I also would like to allow users to flag comments on my 4.7 site, but from what I can gather from the extremely limited info here is that comment moderation, which was a core feature before 4.7 (I think), has for whatever reason been removed. I haven't found any discussion as to why, or if there will be a replacement. The closest thing I have found is voting on comments, which is pretty limited.
Good question about the comments being nodes... alot of work is needed, it seems, for the comments on drupal.
There is a comments moderation feature in 4.7 too.
Firstly, you must set the Access Control permissions:
- administer comments
- post comments without approval
to the appropriate roles. The latter determines if the comments will be automatically visible when posted by users of the actual role or not.
Then, on the admin/comments page, you will see the published (approved) comments, and on this page which is for some reason not always visible from the comments page:
admin/comment/list/approval
, you can approve (publish) or delete those who are not published.
The main difference from 4.6 is that the moderation matrix feature is no longer there. I suppose that we will soon see some relevant additions/improvements to contributed modules such as workflow etc, with some features using the votingapi, for more advanced moderation.
To see the current contributed moderation modules, do a search for "moderation" on the modules page:
http://drupal.org/project/Modules.
Take especially notice of the "Content moderator" module and its note:
"important note: only some modules, including book and poll, check the moderation status before displaying content".
Security note:
Drupal's security framework and how the various modules handles this, including security modules like Organic Groups and others, is not yet "full-proof". There seems to be lacking one important feature in Drupal core: To prevent modules from displaying content whenever the active user's role permissions are not sufficient. Currently one has to make sure that all used modules themselves actually check the permissions and the published/moderated status before displaying content.
This is also relevant for PHP snippets that one may pick from either the handbook examples here or make oneself. Each snippet should have the appropriate checks to ensure that manually provided listings does not break the security. (but "most" havent, so you have to add it yourself to avoid breaking your security)
I am in the process of familiarising myself with the Views module that builds such content listings, so I am not yet sure if that one produces any code that adapts to the current site security. Initially, I doubt it.
Hopefully in the future, Drupal core will enforce the security of nodes and comments, and also handle comments as nodes which will in many respects greatly improve things, and affect the above concerns positively too.
That helps alot, DanielTheViking
Thank you for pointing that out.