Restricting access to user list

This is a suggested update to the USER.MODULE.

Purpose: to allow drupal site administrators to toggle "ACCESS USERS" in the ADMINISTER -> USERS -> CONFIG -> PERMISSONS page for certain roles and restrict access to the USER LIST & USER PROFILES on a drupal site.

ADJUSTMENT #1: Adding in extra option on permissions page

search for function user_perm() and replace the lines you see in your user.module with this.

function user_perm() {
return array('administer users', 'access users');
}

Adjustment #2: Instructing drupal to check to see if the user has access to view the user list & user profiles before displaying them.

Search for the following string theme_user_function and replace the lines you see in your user.module with this.

function theme_user_profile($account, $fields) {
global $user;
if (user_access('access users')) // check to see if the user has access
{
$output = "<div class=\"profile\">\n";
$output .= theme('user_picture', $account); // if so display the user account details
foreach ($fields as $category => $value) {
$output .= "<h2>$category</h2>$value";
}
$output .= "</div>\n";
}
else
{
// if the user is not logged in display a message
$output = "<div class=\"profile\">\n";
$output .= "Sorry. You must <a href='?q=user/login'>LOGIN</a> to have access to view this 
page.";
$output .= "</div>\n";
}
return $output;
}

Hope thats of use to others.

Dublin Drupaller