I have Forum Access, ACL, and Content Access setup for my site.
If an user (say user A) does not belong to a Drupal role that does not have permission to view a forum then the user does not see that forum listed on the forum page (http://www.mysite.com/forum). So, this is good as user A cannot access the forum this way. However, if user A or any anonymous user has the complete link to a forum topic post (e.g. http://www.mysite.com/forum/forum-container/forum-name/forum-topic) then he/she can view the forum post and its comment and replies.

Is this behavior normal? Does, not belonging to a Drupal role that has permissions in Forum Access to view a forum mean that forum will only be hidden in the forum page (http://www.mysite.com/forum) for you?

Comments

salvis’s picture

salvis
he/his
commented

I've never seen forum topic paths as you show. Mine are of the type http://example.com/node/NID

No, this behavior is not correct. Please follow the procedure that was displayed when you posted your issue.

RAFA3L’s picture

RAFA3L commented
Version: 5.x-1.9 » 6.x-1.0-beta3

Same problem here with any path, for example http://example.com/content/forum-topic or http://example.com/forum/forum-topic.

In my case I would like show a View list with the last 10 titles of topics in my home page, but to see the content of the topic must be a authenticated user.

And is true, the unregistered user can go to the topic using the direct link.

salvis’s picture

salvis
he/his
commented
Status: Active » Postponed (maintainer needs more info)

Same reply as #1 above.

RAFA3L’s picture

RAFA3L commented
Status: Postponed (maintainer needs more info) » Active

Thanks salvis, at this morning and after rebuild permissions all the forum is hidden to anonymous users.

But my block in the home page disapear and I would like to show the titles of forum topics keeping the content private, this is possible?

RAFA3L’s picture

RAFA3L commented

ok, I don't know if this is the best solution but I put this in my page.tpl.php and now the FA module now is not necessary

global $user;
if ($node->type == 'forum' && $user->uid): print $content; endif;
if ($node->type != 'forum'): print $content; endif;

salvis’s picture

salvis
he/his
commented

No, you can't show titles but not bodies.

Either you show a node or not, that's the fundamental mode of operation of the node access mechanism.

salvis’s picture

salvis
he/his
commented
Status: Active » Closed (duplicate)

I'm still a bit confused about this issue, but in the end it seems to be a duplicate of #370682: "View" and "Read" Permission, no?

Feel free to reopen if there's something we still need to discuss here.