Problem/Motivation

The module is adding a roles_change new form element to the user_account_form(). By doing so, it breaks all other validations that other modules are trying to do against the official $form['account']['roles'] form element. For example an additional validation callback should check $form_state['values']['roles_change'] instead of $form_state['values']['roles'] which a 3rd party module would expect.

Moreover, even if a module tries to integrate with Role Delegation by applying validations against $form_state['values']['roles_change'] he might fail because even this is not consistent. When a user has administer permissions acces, he will get the original $form_state['values']['roles'] and no $form_state['values']['roles_change'].

Proposed resolution

Make the form consistent as keys with the original user_account_form(). Use roles key for roles in form.

Remaining tasks

None.

User interface changes

None.

API changes

None.

CommentFileSizeAuthor
#2 user_account_form_not-2460949-2.patch4.72 KBclaudiu.cristea
#2 interdiff.txt893 bytesclaudiu.cristea
#1 user_account_form_not-2460949-1.patch4.59 KBclaudiu.cristea
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

claudiu.cristea’s picture

claudiu.cristea
Primary language Romanian
Location Arad 🇷🇴
CreditAttribution: claudiu.cristea at Webikon commented
Status: Active » Needs review
FileSize
user_account_form_not-2460949-1.patch4.59 KB

Patch. Note that a test fail but fails also without the patch so the failure has not been introduced now.

claudiu.cristea’s picture

claudiu.cristea
Primary language Romanian
Location Arad 🇷🇴
CreditAttribution: claudiu.cristea at Webikon commented
FileSize
interdiff.txt893 bytes
user_account_form_not-2460949-2.patch4.72 KB

Fixed the case when the form is for new an account.

skwashd’s picture

skwashd CreditAttribution: skwashd at Dave Hall Consulting for Pfizer, Inc. commented

Overall the code looks sane to me. I haven't tested it locally to confirm that it works. One thing I noticed was this:

+++ b/role_delegation.module
@@ -92,13 +92,33 @@ function _role_delegation_add_roles_to_form(&$form, $account) {
+function role_delegation_user_account_submit($form, &$form_state) {
+  $account = !empty($form_state['user']) ? $form_state['user'] : (empty($form_state['values']['account']) ? NULL : $form_state['values']['account']);
+  $existing_roles = $account ? array_keys($account->roles) : array(DRUPAL_AUTHENTICATED_RID);
+  $form_state['values']['roles'] += drupal_map_assoc($existing_roles);

The multiple ternary operators here make the code difficult to follow. Have you considered doing something like this?:

$account = NULL;
if (!empty($form_state['user'])) {
  $account = $form_state['user'];
}
elseif (!empty($form_state['values']['account'])) {
  $account = $form_state['values']['account'];
}

$existing_roles array(DRUPAL_AUTHENTICATED_RID);
if ($account) {
  $existing_roles =  array_keys($account->roles);
}
skwashd’s picture

skwashd CreditAttribution: skwashd at Dave Hall Consulting for Pfizer, Inc. commented
Status: Needs review » Needs work
claudiu.cristea’s picture

claudiu.cristea
Primary language Romanian
Location Arad 🇷🇴
CreditAttribution: claudiu.cristea at Webikon commented
Status: Needs work » Needs review

Thank you for review.

Using 2 ternary operators in a single line doesn't make it hard to read. The inside operator is enclosed in parentheses making the reading easy.