Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
We need a broker api to let different access modules should play together.
Comments
Comment #1
wipeout_dude CreditAttribution: wipeout_dude commentedSince it appears that Nodetype Access permissions are checked first it should be something like..
Nodetype Access -> Other access module = Access
eg.
view -> view = view
view -> denied = denied
denied -> N/A = denied
Of course if using another access module it really negates the need to have Nodetype Access in the first place..
Perhaps the answer is to have some integration with ACL or even to extend Nodetype Access to allow for per node controls but this is probably getting away from the initial design intention and essentially reinventing the wheel that Content Access has already covered..
Maybe its worth contacting the Content Access maintainers and see if there is a way to get the modules to work together natively.. If they added the ability for the Nodetype Access permissions to be updated automatically when changing the permissions through the content access interface that would work very well..
Comment #2
geek-merlinthe answer is simpler and more powerful: a broker gets all answers from access modules and glues them together.
it's up to the broker to "and", "or" or whatever.
Comment #3
geek-merlinPostponed until i find more spare time, funding or code ;-)
Comment #4
Robin Millette CreditAttribution: Robin Millette commentedI hope these couple of links can help you out:
Comment #5
geek-merlinThank you! Really interesting.
A few notes:
* The second info is not relevant here as we deal with query-rewrite ("post grants" ;-) access control.
* The first link to the ACK module sounds really interesting.
A first vgrep through the sources tell, this is mainly about the use case of users gathering roles by context (think of moderation rights for a specific forum) (the module uses the term grants for this in a completely different sense than node grants.)
Although i will definitely check this out further, i did not find the "broker" idea there.
Comment #5.0
geek-merlincorrected