When creating a new role with the permission "access administration pages", they could access the VAPN configuration page. We should make the permissions for that page specific to the module, especially since the permission already exists.

I've included a patch in the comments.

CommentFileSizeAuthor
#6 vapn-3099406-6.patch786 bytestruls1502
#4 vapn-3099406-4.patch786 bytestruls1502
#3 permissions-module-specific-3099406-2.patch713 bytesericawright
#2 permissions-module-specific-3099406-1.patch714 bytesericawright

Comments

ericawright created an issue. See original summary.

ericawright’s picture

ericawright commented
StatusFileSize
new permissions-module-specific-3099406-1.patch714 bytes
ericawright’s picture

ericawright commented
StatusFileSize
new permissions-module-specific-3099406-2.patch713 bytes

I had the wrong email address in my last patch. Just fixing that.

truls1502’s picture

truls1502
he/him
Primary language Norwegian Bokmål
commented
StatusFileSize
new vapn-3099406-4.patch786 bytes

Great process Erica, I might have a different suggestion to split between using the vapn-module and manage from the config page.

truls1502’s picture

truls1502
he/him
Primary language Norwegian Bokmål
commented
Version: 8.x-1.0 » 8.x-1.1
truls1502’s picture

truls1502
he/him
Primary language Norwegian Bokmål
commented
StatusFileSize
new vapn-3099406-6.patch786 bytes

Reorder the permission list

rafuel92’s picture

rafuel92 commented
Status: Needs review » Fixed

included in 8.x-1.4, thanks to everybody

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.