Provide function to add/delete permisions from a given role [#300093]

Comment	File	Size	Author
#3	simpletest_clear_permissions.patch	1.1 KB	boombatower

#3	simpletest_clear_permissions_rid.patch	1009 bytes	boombatower

Comment #2

cwgordon7 CreditAttribution: cwgordon7 commented 26 August 2008 at 18:04

Status:

Postponed (maintainer needs more info)

» Active

That works too.


  /**
   * Clears the default permissions for the specified role.
   *
   * @param $rid
   *   The user role to clear the permissions of. Defaults to the authenticated user.
   */
  function clearPermissions($rid = USER_AUTHENTICATED_RID) {
    db_query('DELETE FROM {role_permission} WHERE rid = %d', $rid);
  }

should work.

Log in or register to post comments

Comment #3

boombatower CreditAttribution: boombatower commented 26 August 2008 at 18:49

Status:

Active

» Needs review

File	Size
simpletest_clear_permissions_rid.patch	1009 bytes

simpletest_clear_permissions.patch	1.1 KB

Which is preferred:
using RID
or name?

tweaked code & comment a tad.

Log in or register to post comments

Comment #4

cwgordon7 CreditAttribution: cwgordon7 commented 26 August 2008 at 18:59

Category:	bug	» task
Status:	Needs review	» Reviewed & tested by the community

RID is better, IMO - it's easier to access, for one thing, seeing as $user->roles contains it. The RID patch is rtbc. :) It would be great if we could get this in before the testing party.

Log in or register to post comments

Comment #5

boombatower CreditAttribution: boombatower commented 26 August 2008 at 20:11

As would:
#299186: SimpleTest: assertFieldByXPath does not work for selects or textareas with value
#299461: assertEqual() does not work with arrays
#295697: Increase PHP Memory Limit for Simpletest
#295719: node.test cleanup

Log in or register to post comments

Comment #6

boombatower CreditAttribution: boombatower commented 9 September 2008 at 03:49

Still applies....

clarification "simpletest_clear_permissions_rid.patch".

Log in or register to post comments

Comment #7

webchick

she/they

English

Vancouver 🇨🇦

CreditAttribution: webchick commented 19 September 2008 at 02:18

Status:

Reviewed & tested by the community

» Needs work

Hm. I'm not so sure about this.

I think a better way to go about this would be to add general functions to user.module that allow adding or deleting a permission from a given role, and have the tests that need that call those instead. This would be useful in far more than just SimpleTest... install profiles, for example.

Moshe thinks it's not fair to ask for that in this patch since it's about something very specific. But it'd be way more awesome if it were generalized. :D

Also, Moshe pointed out:

one caveat about clearing permissions is that you have to do a new request to have that take effect
user_access() has a static cache
so, this function should call user_access(NULL, NULL, TRUE)
depends on what the tst is doing
It might not want to clear for the current logged in user

So probably need a $reset param.

Log in or register to post comments

Comment #8

boombatower CreditAttribution: boombatower commented 23 September 2008 at 02:42

Title:	DrupalWebTestCase should deny all permissions from authenticated users	» Provide function to add/delete permisions from a given role
Component:	simpletest.module	» user.module
Assigned:	cwgordon7	» Unassigned
Category:	task	» feature

Once this feature is decided upon and patch created, lets create tests as well.

Log in or register to post comments

Comment #9

Dave Reid

he/him

English

Nebraska USA

CreditAttribution: Dave Reid commented 14 February 2009 at 23:46

I'd invite anyone from this issue to take a look at #300993: User roles and permissions API where I've done a lot of work trying to improve the role and permissions API, as well as implemented a few improvements from this issue. Maybe we should mark one of these as a duplicate?