Closed (fixed)
Project:
MJML Preview
Version:
1.x-dev
Component:
Code
Priority:
Normal
Category:
Feature request
Assigned:
Reporter:
Created:
7 Jan 2026 at 17:00 UTC
Updated:
21 Jan 2026 at 17:19 UTC
Jump to comment: Most recent
Currently we only check if user can access the node.
This means anonymous users could sometimes access the MJML template. It is not a security problem (we do check they can see the node content) but it could be confusing.
Add a new permission that restricts access to the routes of this module.
Start within a Git clone of the project using the version control instructions.
Or, if you do not have SSH keys set up on git.drupalcode.org:
Comments
Comment #3
prudloff commented