Needs work
Project:
Job Search
Version:
5.x-1.x-dev
Component:
Code
Priority:
Critical
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
19 Sep 2006 at 13:19 UTC
Updated:
24 Apr 2008 at 18:02 UTC
Jump to comment: Most recent file
Comments
Comment #1
drupalgirl commentedHas this issue been dealt with? Please let users know if still represent a security issue for the resume poster.
Comment #2
klance commentedI'm glad I looked at this bug report, because I didn't realize it was doing that. One of my modules was doing the same thing, and I had to implement hook_db_rewrite_sql to overcome this problem. In this case it would look something like this:
Comment #3
klance commentedComment #4
kbahey commented@klance
There are two modules included with the job search module for node access stuff.
Can you please check if your function should go into the resume_access or job_access module rather than the main? Also please test the results with the new change for regression (current access permissions are not affected).
Thanks
Comment #5
klance commentedCut the code from job.module and paste it into resume.module. Same effect, more appropriate location.
Comment #6
klance commentedYeesh... that gets it out of the search results, but it causes an SQL error that prevents views from showing up. Oh well...