Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.First, I want to thank the developer of this module. It is an excellent module. I used an external module to enable Users to send Invoices to their clients, and used the CCK module to customize the module for Users.
The only problem I'm currently facing with this module is that, whereas there are 'Access Invoices' 'Administer Invoices' and 'Administer Own Invoices' permissions, there is no 'Access Own Invoices' permission.
I'm currently using the 6.x-1.x-dev, however, because, there is no 'Access Own Invoices' permission, all Users on my website have access to all Invoices created by other Users on my site. Is there any patch or code I can use, so that individual users can only access their own Invoices and not all invoices created on the site?
Any help would be appreciated.
Comments
Comment #1
pietervogelaar CreditAttribution: pietervogelaar commentedThank you. What external module do you use? Maybe I can built it in into this module and also enable that permission with it.
Pieter
Comment #2
kayusee CreditAttribution: kayusee commentedThank you for your prompt reply. I used the 'Printer, e-mail and PDF version' module to achieve the Send To. The module has the 'Send By Email' functionality built in it, which appears on every page, including the Invoices created. Clicking on the link copies the Invoice page and title links into the e-mail form and enables Users to enter other information needed and send to any email address(s) indicated.
The Invoice module works great. The only problem I having with the Invoice Module is lack of 'Access Your Own Invoices' permission. Thus, all Users on my website see other Invoices, when they click on the 'Invoices' link in the Navigation bar.
I would appreciate it, if you create a patch or code that I can use to restrict Users to viewing only the Invoices they created.
Comment #3
kayusee CreditAttribution: kayusee commentedAny update about the patch for the 'Access Own Invoices' permission?
Comment #4
pietervogelaar CreditAttribution: pietervogelaar commentedThis issue seems to have some relation to issue http://drupal.org/node/890600.
If that code will be implemented, do you think you're problem is solved as well?
Pieter
Comment #5
kayusee CreditAttribution: kayusee commentedThanks for your reply, I will look at it and get back with you.
Comment #6
Ela CreditAttribution: Ela commentedsubscribing.. could use this as well :)
Comment #7
Ela CreditAttribution: Ela commented@kayusee .. I did not try it yet, but content access module might be able to save your problem.
Comment #8
Ela CreditAttribution: Ela commentedcontent access module did not solve this problem
Comment #9
ballboy CreditAttribution: ballboy commentedI use 'Node Access' module to control access for individual clients. I've also configured the 403 (access denied) page so that I can email the link to a client and they will be prompted to login before viewing the invoice.
Comment #10
kayusee CreditAttribution: kayusee commentedThanks, P.Vogelaar, does the new Dev updated February 2011 have 'View Own Invoices' permission? or is there any way to get a patch?
Comment #11
pietervogelaar CreditAttribution: pietervogelaar commented@ballboy So the use of "Node Access" module is a working solution for this problem?
Pieter
Comment #12
ballboy CreditAttribution: ballboy commentedYes, works for me. I create an account for the client or use one they have created then generate an invoice which I set security to using the node access module to be viewable by only the client and admins. I can then email a link directly to the invoice and by modifying the 'access denied' page i've made it so that if they are not logged in when they click the link instead of an access denied they get prompted to log in. If they don't have access to that particular invoice it will tell them that they are logged in but have no access to the invoice... very easy, very clean and works every time.
Comment #13
pietervogelaar CreditAttribution: pietervogelaar commentedVersion 6 of the invoice module is not maintained anymore. Please give your ideas for the new version 7.x-2.x: http://drupal.org/node/1676000
Comment #14
gisleLooks like permission 'Administer own invoices' (Provices the privilege to administer own created invoices) is in the latest version of 7.x-1.x.