Download & Extend
Masquerade » Issues

Add path for masquerade function (will allow for masquerade link field in Views)

Posted by patcon on October 7, 2010 at 3:42pm
Project:Masquerade
Version:6.x-1.x-dev
Component:Code
Category:feature request
Priority:normal
Assigned:Unassigned
Status:closed (won't fix)

Issue Summary

Just comparing modules, and Masquerade is far preferable to Devel Switch User, since it offers a more intuitive UI for switching back. However, there is one feature that's really convenient in devel in that it provides a path for switching, i.e. /devel/switch/[USERNAME]

Is there a reason why the masquerade function can't be provided as a path?

In my case, I'm trying to create a view field for a view so that I can provide a link such as "Masquerade as user" to go on an admin menu. A masquerade path would make this possible.

Thanks for the great module! I didn't see any place for an easy quick fix in the .module file, but if someone were to point me in the right direction, I might be able to work on it :)

Login or register to post comments

Comments

#1

Posted by krlucas on December 14, 2010 at 7:35pm

A path like that is susceptible to cross-site request forgeries. The links need a dynamic token added to them. Short of a patch to this module to add the Views' field (which wouldn't be all that hard -- I should contribute that), there are a couple of ways to pull that off.

One way to do it is to install the Views Custom Field module and add a PHP Code field to your view that contains php like this:

<?php
print l('masquerade','masquerade/switch/' . $data->uid, array('query' => array('token' => drupal_get_token('masquerade/switch/' . $data->uid))));
?>

Or you could use similar code in a preprocessor in a custom module or your theme or in a template override in your theme.

If you install Views Custom Field you really have to trust people who can edit Views.

You really, really shouldn't have Devel enabled on production.

#2

Posted by pcarman on January 27, 2011 at 11:04pm

I created a views' field masquerade link for my site. I will post it here once I clean it up. Its very basic, but could be a good starting point.

#3

Posted by deekayen on January 31, 2011 at 4:35am
Status:active» closed (won't fix)

Masquerade worked as you describe before masquerade 6.x-1.4, but unfortunately it changed for security.

http://drupal.org/node/835900

#4

Posted by patcon on February 2, 2011 at 5:31pm

oh hey, thanks deekayen :)

#5

Posted by sk33lz on May 17, 2011 at 1:05am

@krlucas, I tried your method to achieve this and it seems to generate the token fine, but I can't seem to get it to add the UID properly. Any more thoughts on creating a patch to fix this?

Thanks!

#6

Posted by j4 on June 23, 2012 at 5:40am

I would also appreciate that.

Thanks
Jaya

nobody click here