Problem/Motivation

Currently we only check if user can access the node.
This means anonymous users could sometimes access the MJML template. It is not a security problem (we do check they can see the node content) but it could be confusing.

Steps to reproduce

Proposed resolution

Add a new permission that restricts access to the routes of this module.

Remaining tasks

User interface changes

API changes

Data model changes

Command icon Show commands

Start within a Git clone of the project using the version control instructions.

Or, if you do not have SSH keys set up on git.drupalcode.org:

Comments

prudloff created an issue. See original summary.

prudloff’s picture

Status: Active » Fixed

Now that this issue is closed, review the contribution record.

As a contributor, attribute any organization that helped you, or if you volunteered your own time.

Maintainers, credit people who helped resolve this issue.

  • prudloff committed bc54c6fc on 1.x
    feat: #3566175 Require a permission
    
    By: prudloff
    

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.