Hi. I've tried to review all the OG issues and don't seem to see this discussed (or at least not asked this way).
I have several core user roles, one of which does not have Create Group Post permissions. (i.e. node: Group Post: Create new content is unchecked at admin/people/permissions for the role)
A user with this role is a member of a group
Members of this group do have Create Group Post permissions (i.e. Organic Groups: Create Group Post content is checked for members at admin/config/group/permissions/node/group, with the group using Group Roles and Permissions: Use Default Roles and Permissions)
When the user goes to node/add, they see Group Post as a content type they can add.
Why? They don't have permission for adding this content type based on their user role. The OG permissions seem to be overriding the core permissions. Is that by design?
My goal is to let users be in groups, but to control what they can do a group based on their user role, not (just) their group role.
Is this possible?
INTERESTING repro steps:
-- remove all Create permissions for authenticated user role at node section of admin/people/permissions
-- log in as a user who only has the authenticated user role.
-- go to node/add. Get Access Denied error
-- go to og page (list of groups), find a group and request membership. group is set to not allow user to join without approval. Group does allow members to create Group Posts
-- go to node/add. Still get Access Denied error (user's status is Pending in group)
-- log out, and back in as admin user. Go to group/node/#/admin/people/add-user and promote the user from Pending to Active in the group
-- log out and back in as the authenticated user.
-- go to node/add. Options are now offered for creating Group Post. Is this a bug????