Canceling signups is a destructive operation. Especially if the signup form has fields, you're losing data entered by the user. Now that #55168: tracking actual attendance is in, I can easily see situations where a site might want to empower a role to be able to record attendance at events, but not necessarily give them power to destroy signup data by canceling signups. So, it seems like splitting the cancel powers off of the usual "adminster signups" permission into a separate "cancel signups" perm.

CommentFileSizeAuthor
#1 348559_cancel_signups_perm.1.patch3.84 KBdww

Comments

dww’s picture

dww
we/he/they
commented
Status: Active » Needs review
StatusFileSize
new 348559_cancel_signups_perm.1.patch3.84 KB

The final two hunks of this patch against includes/node_admin.inc might be overkill, but I figured in the land of tamperdata and the like, it can't hurt to be a little extra paranoid, and chx couldn't give me a straight answer on if this was needed or not. Better safe than sorry. ;)

dww’s picture

dww
we/he/they
commented
Version: 6.x-2.x-dev » 6.x-1.x-dev
Status: Needs review » Fixed

Committed to HEAD and DRUPAL-6--1, along with a bunch of updates to the docs (UPGRADE.txt, INSTALL.txt, etc).

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for two weeks with no activity.