forum_access 6.x-1.4

This is version 1.4 of Forum Access for Drupal 6.

It has a number of bug fixes and some enhancements over 1.3, and it is the branching point for porting Forum Access to Drupal 7.

Forum Access requires the ACL module.

Changes since 1.3:
Enhancements:
- Add hook_acl_explain().
- Synchronization with sister module Image Gallery Access (no functional change).
- #745002: Add an 'Update even if unchanged' option to the administrative interface.
- Fix Coder warnings (no functional change).
- Add support for nodecomment comment nodes.
Bugs fixed:
- Fix the access denied functionality on the admin/content/forum/edit/*/TID page.
- Fix batch updating of node_access records.
- #745002: Implement proper behavior for roles with the 'administer nodes' permission.
- #666908: Fix initialization of {forum_access} table and remove bogus rows.
- #723398: Avoid removing legitimate links from comments.
- #692106: Fix moderator cannot edit comments again.
- #692106: Fix moderator cannot edit comments.

Note: The devel_node_access (DNA) module, which is part of the Devel module, provides an in-depth view into the inner workings of node access, especially if you enable its debug mode at admin/settings/devel#edit-devel-node-access-debug-mode and its second block. This is a big help for understanding the forces that control access to any given node.

Note the Drupal core issues listed on the Forum Access front page, which are outside the scope of Forum Access. Help resolve these issues to make Forum Access perform even better!

Upgrading from 6.x-1.3: Security has been tightened in 6.x-1.4: Roles with the 'administer forums' permission now also need 'View' access in order to administer a given forum. It is only reasonable, that forum administrators who are not allowed to view a given forum, should not be allowed to administer it either (otherwise they would be able to give themselves full access to that forum); however, due to technical restrictions, they will still see the forum on the admin/content/forum/list page.
This change may require you to add 'View' access where needed.
(Note that core mandates that roles with the 'administer nodes' permission can always see all nodes, even nodes in forums for which they have no 'View' access.)

Upgrading from Drupal 5: The default behavior of Forum Access has changed going from D5 to D6: The permissions which used to affect nodes only, but not comments (i.e. posting comments was possible for roles that weren't allowed to post forum topics), have now been extended to comments! IOW, roles without Create access cannot post comments/replies either. However, you can go to admin/content/forum/settings and enable D5 legacy mode to get the old D5 behavior back.