Finish product feature permissions [#2667296]

uc_product.routing.yml contains commented out references to ProductFeaturesController::checkAccess(), which doesn't work at present. Let's fix that.

I believe that if we require both the "administer product features" permission, and the user also needs permission to edit the node (via _entity_access: 'node.update'), we can remove the "administer own product features" permission.

Comment	File	Size	Author
	product-feature-permissions.patch	3.08 KB	longwave
	8.x-4.x: PHP 5.5 & MySQL 5.5, D8.1 197 pass

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

11 February 2016 at 23:20

longwave created an issue. See original summary.

Comment #2

longwave

he/him

English

CreditAttribution: longwave commented 12 February 2016 at 22:14

Status:

Needs review

» Fixed

Comment #3

12 February 2016 at 22:14

longwave committed 7dd78a8 on 8.x-4.x

Issue #2667296 by longwave: Finish product feature permissions

Comment #4

26 February 2016 at 22:14

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Finish product feature permissions

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Thank you to these Drupal contributors

News items

Our community

Documentation

Drupal code base

Governance of community